Apocalypse Eve

Today was the last day of preparation prior to taking the OSCP certification exam. Tomorrow I enter the arena, square off against five targets, and see if I’ve got what it takes to take home the prize. The following day will be spent revising my report and ensuring everything is in good order before finally sending it off to be judged. Within 48 hours, I’ll have a pretty good sense of how well I did.
Read more →

HTB FriendZone Walkthrough

For this walkthrough, I decided to target FriendZone. This particular machine took me three days to complete, and I was cursing its creator the entire time. What’s worse? They retired the machine while I was sleeping, the night before I beat the machine, so I got no points for the accomplishment. Fake internet points aren’t as important as real-world experience. But it would have been nice to get the points.
Read more →

HTB Legacy Walkthrough

My PWK lab access has ended, but I haven’t stopped preparing for the upcoming OSCP examination. I’ve been practicing on the HTB labs to sharpen my skills, and working on writing buffer overflow exploits so that I’m more comfortable with the process. I hope to write more tutorials once I’ve finished my OSCP journey, but for now I’m focusing primarily on studying. That doesn’t mean I’m going to leave you all high and dry, though.
Read more →

Has It Already Been Two Months?

Happy July 4 to everyone in the United States. Today is the last day of my PWK course. It’s been intense, and in the practice labs I did better than I expected, but not as well as I’d hoped. Considering the fact that 99% of my “training” has been self-study—poring through books, websites, “text-philez”, PDFs, online courses, and (occasionally) videos on YouTube—I think I did fairly well. I’m no longer a Novice, not quite Adept, but well along my way as an Apprentice.
Read more →

PWK: Week One Rundown

What a busy week it’s been! Until yesterday the course has largely been a review of concepts I already understood (though the review definitely helped), with a few new nuggets of wisdom thrown in for good measure. The only gripe I have so far is that the videos are older than the PDF, and the PDF is a little outdated compared to the course, and certain changes in the lab and the Kali VM weren’t reflected in the course material, which caused a bit of a headache as I tried to piece everything together.
Read more →