OSCP--Jumping in the ocean without knowing how to swim (#Ain't_Never_Scared)
22306
Member Posts: 223 ■■□□□□□□□□
Thats the motto I personally follow. so i signed up for the OSCP (90) days.
What did i do for prep? NOTHING, i tried my best to read books(after couple pages i stopped), watch the Georgia series from Cybrary (her voice is annoying so i stopped), practice on VMs (since i am paying for this course to give me the knowledge that i need to comprise VMs, Machines in the future, this didnt go that well, since i dont have that knowledge yet....,) I don't see a reason for me to prepare for a course that is supposed to prepare me.
so i plan on reading the PDF, watch the videos and do all the exercises within the first 2 weeks and then attack the lab.
there are about 376 pages (i am planning on reading about 27 pages per day) and about 8 hours of videos( i plan to watch the videos while at work)
so i plan to do majority of this while at work (about 8 hours a day)
so during the week i will dedicate about 8 hours a day and on the weekends about 10 on sat and 10 on Sunday.
This is how i quickly finished WGU (CCNA RS (2 parts) CCNA Sec, A+ and so on)
i will try to update this on a daily bases.
What did i do for prep? NOTHING, i tried my best to read books(after couple pages i stopped), watch the Georgia series from Cybrary (her voice is annoying so i stopped), practice on VMs (since i am paying for this course to give me the knowledge that i need to comprise VMs, Machines in the future, this didnt go that well, since i dont have that knowledge yet....,) I don't see a reason for me to prepare for a course that is supposed to prepare me.
so i plan on reading the PDF, watch the videos and do all the exercises within the first 2 weeks and then attack the lab.
there are about 376 pages (i am planning on reading about 27 pages per day) and about 8 hours of videos( i plan to watch the videos while at work)
so i plan to do majority of this while at work (about 8 hours a day)
so during the week i will dedicate about 8 hours a day and on the weekends about 10 on sat and 10 on Sunday.
This is how i quickly finished WGU (CCNA RS (2 parts) CCNA Sec, A+ and so on)
i will try to update this on a daily bases.
Comments
I just enrolled in PWK myself 90 days will be starting 4 Mar, the book by Georgia Weidman is a very good resource for preparation I am using it, I don't have any experience in Pen-testing but I figured I could at least "Try Harder" and get the PWK course and OSCP Cert done. I am also in the NOVA area 22314 if you wanted to collaborate on getting it done let me know. Good luck
sure PM me
I guess you will be upset that the whole concept of "try harder" is geared towards doing your own research and filling in the gaps that was purposely left out in the material. Every OSCP reviewer/blogger stated that in one way or another, they had to research elsewhere using other materials.
Good luck!
2023 Cert Goals: SC-100, eCPTX
researching is part of learning.
Security Engineer/Analyst/Geek, Red & Blue Teams
OSCP, GCFA, GWAPT, CISSP, OSWP, AWS SA-A, AWS Security, Sec+, Linux+, CCNA Cyber Ops, CCSK
2021 goals: maybe AWAE or SLAE, bunch o' courses and red team labs?
i will be using vmware workstation 12 pro (thanks to wgu got it for free)
once i downloaded the VM they provided me. i powered it on (created a shared folder between host and guest, makes it easy to share files) and once i had everything configured, i created a snapshot (for you all who are using the player, you can just create a backup of the vm folder and when you need to revert back. just delete the current vm folder and use the back up)
they provide all the instructions that you need to follow.
i started reading the pdf and watching the videos that correspond. reading the PDF itself might not make sense or it might be boring. so i am doing both at the same time. also having more than one monitor helps! trust me. i have 3 monitors and one is running the video and the other is running the PDF and the third one has word open for note taking.
so far the PDF has been nice. they get right to the point. No fluff and also the dudes voice isnt as annoying as Georgia's. his tone shows that he enjoys teaching.
page 61
Associate of Science - Computer Information Systems
PS: a trick that always pushes me to try harder is that i schedule the exam before i start studying. so i already scheduled my exam date. Hopefully this will push me to learn and try even harder. i paid for 90 days so when exam day comes and if i feel that i am not ready, i might reschedule but i normally would take the exam (so far this has worked for me and i never rescheduled any exam and always passed)
PDF page 107
I like your style!
Current Goal: CCSE
Continuous Education Plan: AWS-SAA, OSCP, CISM
Book/CBT/Study Material: Max Power
You might have more balls than brains...just like me! Good luck
Second, stick to your first exam date. When you re-up for more lab time, you get another exam take along with it. You'll want to read the FAQ or forums to verify that, but I'm pretty certain that's how it works. With every re-up, an exam take should be spent. Good luck!
And bonus...probably 20% of this course is about finding and honing your own style of note-taking, system attacking, and report-building. Start honing that early before going too wild in the labs. A good, thorough student, imo, will end up pwning many boxes several times, either to do better post-root looting, to do it more manually (as opposed to using only Metasploit), or to discover multiple ways in.
Security Engineer/Analyst/Geek, Red & Blue Teams
OSCP, GCFA, GWAPT, CISSP, OSWP, AWS SA-A, AWS Security, Sec+, Linux+, CCNA Cyber Ops, CCSK
2021 goals: maybe AWAE or SLAE, bunch o' courses and red team labs?
PS: its very very hard fighting the urge to just attack the lab! but Everyone advises to fight the urge and finish the PDF and videos first and that is what i will do.
PS PS: if you are planning on taking the course and you want to prepare, i think the best thing for you to do is download this PDF and read it and learn the basics from every sections mentioned. DON'T WASTE YOUR TIME LEARNING PYTHON AND other languages. Yes python is good but it is not needed for this course. YES it will be a plus but IT IS NOT NEEDED. so far the course went over a very simple python script and he explained it. even tho this course is hard but it is still considered an entry level cert. BTW this is my opinion so please don't try to argue with me about it.
https://www.offensive-security.com/documentation/penetration-testing-with-kali.pdf
page 132
Right there with you buddy.
No way in hell im going to do that.
Once i complete my pre studies, of which im having alot of fun with learning btw, python, metaspoit, Georgia W book, Vulnhubs and a few other books, forgot to mention brushing up on my bash scripting, then ill go for it.
I dont want to set myself up for failure.
But then again, we dont know what the OPs prior experience (IT/proffesional) is.
BTW, Linux + is a cakewalk. As in too easy. But, is a bulletpoint I suppose.
BTW OP, how did you like WGU?
Online Schools sort of scare me (ITT Technical Institute anyone?) unless its your standard type University Of Georgia/UCLA etc.
This actually might be the wrong place to ask that question tho lol
PS: yes having basic understanding on how to use linux is good and will help you (things like LS, PWD,CD ./, CHMOD and so on)
lol i hope i dont get slapped on the face once i start attacking the labs.
PS PS: WGU and ITT Tech dont compare. one is non profit and the other is for profit one is regionally accredited and the other is nationally. you can save money and do BS with WGU and then do masters with a known school like penn state, GMU, ..etc
Page 160ish
PS: hopefully once i conquer the test. i will post a detailed post with resources and tons of info!
Reading: SANS SEC560
Upcoming Exam: GPEN
2023 Cert Goals: SC-100, eCPTX
You have to have registered for the course at some point in time in the past. I personally did it when it was still PWBv3. Otherwise, there is no requirement to compromise any boxes in the lab. The lab report is completely optional. It's only the exam report that is mandatory.
its set on private but pm and i will send you the url
How do I pm you?!? I can't see the appropriate icon
I think you have to have more activity before you can PM people. Probably a feature to keep spammers from creating accounts and buggering people. You need some more posts before people can PM you.
In Progress: Linux+/LPIC-1, Python, Bash
Upcoming: eJPT, C|EH, CSA+, CCNA-Sec, PA-ACE
could you send me an invite to discord? mrqs202 on gmail