Prep-For-OSCP

A collection of resources and a guide for OSCP preparation.

What is OSCP?

Offensive Security Certified Professional (OSCP) is an ethical hacking certification offered by Offensive Security that teaches penetration testing methodologies and the use of the tools included with the Kali Linux distribution (successor of BackTrack). The OSCP is a hands-on penetration testing certification, requiring holders to successfully attack and penetrate various live machines in a safe lab environment. It is considered more technical than other ethical hacking certifications, and is one of the few certifications that requires evidence of practical penetration testing skills.

Read more: https://en.wikipedia.org/wiki/Offensive_Security_Certified_Professional

Who is the course for?

• Infosec professionals transitioning into penetration testing
• Pentesters seeking an industry-leading certification
• Security professionals
• Network administrators
• Other technology professionals

Course prerequisites

• Solid understanding of TCP/IP networking
• Reasonable Windows and Linux administration experience
• Familiarity with basic Bash and/or Python scripting

Course syllabus

• Penetration Testing: What You Should Know
• Getting Comfortable with Kali Linux
• Command Line Fun
• Practical Tools
• Bash Scripting
• Passive Information Gathering
• Active Information Gathering
• Vulnerability Scanning
• Web Application Attacks
• Introduction to Buffer Overflows
• Windows Buffer Overflows
• Linux Buffer Overflows
• Client-Side Attacks
• Locating Public Exploits
• Fixing Exploits
• File Transfers
• Antivirus Evasion
• Privilege Escalation
• Password Attacks
• Port Redirection and Tunneling
• Active Directory Attacks
• The Metasploit Framework
• PowerShell Empire
• Assembling the Pieces: Penetration Test Breakdown
• Trying Harder: The Labs

YouTube channels that can help you prepare for OSCP

• Bitten tech
• John hammond
• The Cyber Mentor
• Elevate Cyber
• Conda
• Info Ck
• Busra Demir
• JSON SEC
• IppSec
• Tib3rius
• Cristi Vlad
• HackerSploit

Write ups

• https://www.netsecfocus.com/oscp/2019/03/29/The_Journey_to_Try_Harder-_TJNulls_Preparation_Guide_for_PWK_OSCP.html
• https://areyou1or0.it/index.php/2021/02/10/finally-oscp-may-the-force-be-with-you
• https://arnavtripathy98.medium.com/my-oscp-struggle-210a4496ffe8
• https://isroot.nl/2018/07/09/post-exploitation-file-transfers-on-windows-the-manual-way
• https://www.abatchy.com/2017/03/osce-study-plan
• https://falconspy.medium.com/unofficial-oscp-approved-tools-b2b4e889e707
• https://infosecwriteups.com/how-i-passed-my-oscp-exam-first-try-with-no-prior-hacking-experience-19029432e7b9
• https://cd6629.gitbook.io/ctfwriteups/oscp-cheatsheet-unfinished
• https://johnjhacking.com/blog/the-oscp-preperation-guide-2020/
• https://github.com/0x4D31/awesome-oscp
• https://infosecwriteups.com/how-i-passed-oscp-with-100-points-in-12-hours-without-metasploit-in-my-first-attempt-dc8d03366f33
• https://github.com/burntmybagel/OSCP-Prep
• https://medium.com/@galolbardes/passing-the-oscp-while-working-full-time-29cb22d622e0
• https://niiconsulting.com/checkmate/2017/06/a-detail-guide-on-oscp-preparation-from-newbie-to-oscp/
• https://rana-khalil.gitbook.io/hack-the-box-oscp-preparation/my-oscp-journey-a-review
• https://www.tripwire.com/state-of-security/security-awareness/oscp-journey/
• https://ltsirkov.medium.com/oscp-preparation-2021-learning-path-41a88eb1a4b

Learn Kali linux

Videos

• Learn Ethical Hacking With Kali Linux | Ethical Hacking Tutorial | Kali Linux Tutorial | Edureka
• Linux for Ethical Hackers (Kali Linux Tutorial)
• Kali Linux Full Course in One Video | Full Tutorial for Beginners to Expert [Hindi]
• Learn Kali Linux in One Video! Kali Linux Full Course 2021 For Beginners | Kali Linux For Hackers!
• Kali Linux Full Course in Hindi | Kali Linux For Ethical Hacking || Linux Full Course For Beginners
• The Complete Kali Linux Course
• Kali Linux Full Course One Video in Hindi ||2021|| Beginner to advanced| Become master in kali

Courses

• kali-linux-tutorial-for-beginners

Other

• Kali-linux-tutorial

Awesome tools for OSCP

1. Automated Recon & enumeration tools

• AutoRecon
• nmapAutomator

2. Vulnerability scanners

• Nikto

3. Exploitation frameworks

• Metasploit

4. Directory Brute forcing and Fuzzing

• DirBuster
• gobuster
• wfuzz
• dirsearch
• feroxbuster

5. File transfer

• updog

6. Collection of Wordlists

• SecLists

7. Payload generators

• revshellgen
• MSFvenom

8. Exploits

• exploit-db
• windows kernel exploits
• Linux kernel exploits

9. Password crackers

• hashcat
• John the Ripper

10. Privilege escalation

• linux-smart-enumeration
• LinEnum
• linprivchecker.py
• Powerless
• PowerUp
• linux-exploit-suggester
• windows exploit suggester
• winPEAS
• linPEAS

This is a awesome website for privilege escalation stuff : https://gtfobins.github.io/

Buffer overflow

Learn

• Buffer overflow attack - computerphile
• Buffer overflows - Bitten tech
• Buffer overflows made easy - The Cyber Mentor
• Basic Buffer overflow - John Hammond

Practice

• vulnserver
• vulnerserver-linux
• bufferoverflowprep

Privilege escalation

Windows

• Windows-privilege-escalation

Linux

• Linux-privilege-escalation

Play Ctfs

• Offensive Security Proving Grounds
• Virtualhackinglabs
• HackTheBox
• vulnhub
• root-me
• TryHackMe
• Overthewire

Web Application Attacks

• cross-site scripting (XSS)
• SQL Injection
• File Inclusion Vulnerabilities

Thank you and if you find this repo helpful then please give a star on this repo