Skip to content
oscp study
C Python Perl Shell ASP ColdFusion
Branch: master
Clone or download
Pull request Compare This branch is 21 commits behind ferreirasc:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.

Oscp study

Notes of my Offensive Security Certified Professional (OSCP) study plan.

Last updated: 2018-01-21

OSCP-like VMs on Vulnhub:

  • Beginner friendly:
    • Kioptrix: Level 1 (#1) [ok]
    • Kioptrix: Level 1.1 (#2) [ok]
    • Kioptrix: Level 1.2 (#3) [ok]
    • Kioptrix: Level 1.3 (#4) [ok]
    • FristiLeaks: 1.3 [ok]
    • Stapler: 1 [ok]
    • PwnLab: init [ok]
  • Intermediate:
    • Kioptrix: 2014 [ok]
    • Brainpan: 1 (Part 1 of BO is relevant to OSCP. egghunting is out of scope though)
    • Mr-Robot: 1 [ok]
    • HackLAB: Vulnix [ok]
    • Not so sure (Didn't solve them yet):
    • VulnOS: 2
    • SickOs: 1.2
    • /dev/random: scream
    • pWnOS: 2.0
    • SkyTower: 1
    • IMF
    • Lord of the Root 1.0.1
    • Tr0ll
    • Pegasus
  • Windows
    • Metasploitable 3
    • /dev/random: Sleepy (Uses VulnInjector, need to provide you own ISO and key.)
    • Bobby: 1 (Uses VulnInjector, need to provide you own ISO and key.)

(credits for @abatchy)

Link to download VMs: (HTB)

I strongly recommend the boxes on the to study for OSCP cert. HTB have a good set of windows boxes to training: Devel, Optimum, Bastard, Grandpa and Blue.

PS: It's necessary solve a little "challenge" to obtain the invite.

Recommended books:

Penetration Testing: A Hands-On Introduction to Hacking (+Highly recommended for beginners)
Hacking: The Art of Exploitation, 2nd Edition
Rtfm: Red Team Field Manual
The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws
The Hacker Playbook: Practical Guide To Penetration Testing

Links: [Linux privilege escalation] [Windows privilege escalation] [+Scripts] [RECOMMENDED reading]

My write-ups

Kioptrix level 1
Kioptrix level 1.1
Kioptrix level 1.2

You can’t perform that action at this time.