+ Reply to Thread
Page 1 of 2 1 2 Last
Results 1 to 25 of 33
  1. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    876

    Certifications
    A+, Network+,Security+, EMCISA v2, MCP, MTAx2 , MCPS, CCENT, CCNA R&S,C|EH,C|HFI,MCTS, Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH
    #1

    Default About to give up on OSCP

    Well after doing the course for almost 1.5 months, I completed all the required exercises and broke into 5 lab machines and got halfway through about 3 or 4 of them. I've been beating my head against some of these hosts for the past week and no progress has been made. To everyone who has OSCP, how did you make it through when you weren't making any progress in the labs for attacking hosts? The admins aren't of any help at all and I had to buy A LOT of extra lab time to make up for the lack of experience!!! Can anyone provide any insight into how they made it through OSCP?
    2017:E|CSA E|CSP,E|CIH,eLearnSecurity,CSA+ Courses 2018: C|ND,ICND2,CCSK,CISSP,CCNA-Security 2019: CWNA 2020: LPIC-2
    Reply With Quote Quote  

  2. SS -->
  3. Member
    Join Date
    Jul 2010
    Posts
    94

    Certifications
    CISSP, OSCP, GXPN, CSXP, CEHv7, CCNA, CCNA Security, GCED, CCSK, Net+, Sec+, Project+
    #2
    Have you looked at the walkthrough to Alpha?
    https://forums.offensive-security.co...ead.php?t=4689

    I'd suggest going through this walkthrough line-by-line to give you some ideas around methodology, including the multiple paths that lead to dead ends. For the forum machines you're stuck on, have you looked at any of the student forum posts about them? This can sometimes be helpful.

    If you're truly ready to give up after only a week of struggles, you may need to work on your "try-harder'ness" to be successful.
    You have a long way to go. There are quite a few machines in the network and they don't go in order. If you're stuck on the same few machines, take diligent notes as to what you've tried and where you left off, and move to another host.
    Reply With Quote Quote  

  4. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    876

    Certifications
    A+, Network+,Security+, EMCISA v2, MCP, MTAx2 , MCPS, CCENT, CCNA R&S,C|EH,C|HFI,MCTS, Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH
    #3
    disregard got in!!
    Last edited by kMastaFlash; 12-22-2016 at 09:29 PM.
    2017:E|CSA E|CSP,E|CIH,eLearnSecurity,CSA+ Courses 2018: C|ND,ICND2,CCSK,CISSP,CCNA-Security 2019: CWNA 2020: LPIC-2
    Reply With Quote Quote  

  5. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,779

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #4
    Easy: try harder

    Seriously, I know my limitations and the patience required for this cert is something I do not have. Therefore, I will never bother attempting it. I immensely respect those who go through it.
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    May 2006
    Posts
    1,871

    Certifications
    CISSP, CCSP, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #5
    Has happen many times when I'm about to post something or few minutes after asking a question to a vendor,right after to find the solution myself. Keep going!
    Reply With Quote Quote  

  7. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    876

    Certifications
    A+, Network+,Security+, EMCISA v2, MCP, MTAx2 , MCPS, CCENT, CCNA R&S,C|EH,C|HFI,MCTS, Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH
    #6
    Looks like the forums on OffSec are helpful!! I'll give this a go!! But overall I have learned a lot from this course. Kinda what cyberguypr said, it's the patience that you need and I'm not a very patient person!! But I thought doing this cert will make me more patient and keep me thinking rationally. let's just say sometimes I get a bit angry!! hahahaha.



    After days of nothing, got another host!!! Guess I need to TRY HARDER!!!

    I didn't even know about the forums!! Good to know!!
    Last edited by kMastaFlash; 12-22-2016 at 10:13 PM.
    2017:E|CSA E|CSP,E|CIH,eLearnSecurity,CSA+ Courses 2018: C|ND,ICND2,CCSK,CISSP,CCNA-Security 2019: CWNA 2020: LPIC-2
    Reply With Quote Quote  

  8. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    876

    Certifications
    A+, Network+,Security+, EMCISA v2, MCP, MTAx2 , MCPS, CCENT, CCNA R&S,C|EH,C|HFI,MCTS, Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH
    #7
    Well after looking on the forums for OSCP, I was able to exploit 3 machines in one night!!!!!! Making some good progress now!!
    2017:E|CSA E|CSP,E|CIH,eLearnSecurity,CSA+ Courses 2018: C|ND,ICND2,CCSK,CISSP,CCNA-Security 2019: CWNA 2020: LPIC-2
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    Dec 2007
    Location
    Grand Rapids, Michigan
    Posts
    1,835

    Certifications
    Network+ : A+ : Security+ : eJPT : Life+
    #8
    Don't give up on something you really want.
    It's kinda like giving up on yourself and it sucks.
    Booya!!
    ------------------------------------------------------------------------------------------
    WIP : | CISSP [2018] | CISA [2018] | CAPM [2018] | eCPPT [2018] | CRISC [2019] | TORFL (TRKI) B1 | Learning: | Russian | Farsi |
    *****You can fail a test a bunch of times but what matters is that if you fail to give up or not*****
    Reply With Quote Quote  

  10. Senior Member chrisone's Avatar
    Join Date
    Nov 2009
    Location
    Los Angeles
    Posts
    1,569

    Certifications
    SilentBreakSecurity - DarkSideOps, CISSP, CCDP, CCNP R/S, CCNP Security (Secure, FW) , C|EH , PA ACE
    #9
    It almost seems like if you are stuck and ready to quit, those are official signs that you are doing well in the class

    Id be worry if i flew through the class with little to no frustration.
    2017 Goals: Dark Side OPS: Custom Pentesting (complete), eCPPT (in progress), LFCS (in progress), OSCP (Ah next year...)
    Reply With Quote Quote  

  11. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Galloway, NJ
    Posts
    1,284

    Certifications
    A+, Network +, GSEC, GCIH, Lunatic+
    #10
    Quote Originally Posted by kMastaFlash View Post
    The admins aren't of any help at all and I had to buy A LOT of extra lab time to make up for the lack of experience!!!
    Just out of curiosity what did you do to prepare for attempting the OSCP.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  12. Are we having fun yet? UnixGuy's Avatar
    Join Date
    Mar 2008
    Posts
    3,329

    Certifications
    GCFA, eJPT, RHCE, Solaris 10, SNIA SCSP, Security+, Server+, ITILv3, CCNA (Expired)
    #11
    you are a star! and you were about to give up right before you were so close to finish!

    Keep it up! This is a very respectful Cert, and it will pay off!
    Goal: GCFA (DONE), GPEN
    Reply With Quote Quote  

  13. Senior Member si20's Avatar
    Join Date
    May 2014
    Location
    UK
    Posts
    409

    Certifications
    MCDST, MCP, BSc Computer Forensics, MTA: 98-366, OSWP, OSCP, FJSE, ACE, PGCert, Linux+
    #12
    Just to balance things out here, i'm going to be that guy and say: if you do end up ducking out of the OSCP - don't fret too much and let me tell you why. I just got rejected from a pen-testing role despite having the OSCP. The OSCP covers very little SQLi and almost no XSS - the pen-testing company I went for grilled me on SQLi and XSS and I didn't even get to the telephone interview stage - I lost out at the practical assessment (first stage). I was extremely angry with myself, but then, the OSCP was more focused on infrastructure.

    The OSCP is still a fantastic cert - I can't fault it too much (apart from I think the admins should definitely help more than they do). I get the "Try harder" but it really is a bit of a cop-out. Usually, you go to the admins when you've exhausted everything you can think of, even if it's not very much.

    My long-winded point being: you've clearly learned a lot anyway. If you do end up leaving the course, look at certs that revolve around web app pen-testing because they'll help you much more in the current environment I feel.

    But as others have said: try and stick with it. If you're just throwing away money buying labs, put it on the backburner for a while and do some offline reading and vulnhub practice, then return with a fresh mind. The OSCP was a real chore to get through. I found myself growing tired of it during the final week and only just made it through by the skin of my teeth.
    Plans for 2017: MTA Server Fundamentals
    Plans for 2017/Beyond: MCSA, MCSE
    Reply With Quote Quote  

  14. Junior Member
    Join Date
    Mar 2006
    Posts
    24
    #13
    Hey mate, don't quit. Just the fact you keep hitting roadblockes should provide you even Moore motivation. And provide even more of a personal victory and accomplishment for yoiyoiy once you have figured it out. Its not too hard for you yoiyoiu are just missing certain pieces to the puzzle needed to solve the riddle that's in front of you. Embrace it. Keep going over and over it no matter how many times and take each step one at a time and examine them differently till you figure it out. Like a rubix cube of sorts. Stick with it. Everyone is is going through the same trials and tribulations as yiuy are so don't feel as if you are alone
    Reply With Quote Quote  

  15. Junior Member
    Join Date
    Aug 2014
    Posts
    9
    #14
    i am having issues with the Alpha walk through myself. I have gone line by line and step by step with the videos but i can't get the alpha display. i know i am missing something small and if its pointed out it will be a massive face palm why didn't i think of or see that moment. i just wish i had a little better hints.
    Reply With Quote Quote  

  16. Certification Invigilator Forum Admin JDMurray's Avatar
    Join Date
    Jul 2003
    Location
    Surf City USA
    Posts
    10,597
    Blog Entries
    50

    Certifications
    GSEC, EnCE, CISSP, SSCP, CEH (ANSI), CASP, CCNA, CCENT, CWSP, CWNA, CWTS, Security+, Server+, Network+, A+, DHTI+, PDI+, MSIT InfoSec
    #15
    Quote Originally Posted by si20 View Post
    The OSCP covers very little SQLi and almost no XSS
    This is because these attacks are part of Web app pentesting. You'll find those skills in the Offensive Security Web Expert (OSWE) cert.
    Moderator of the InfoSec, CWNP, IT Jobs, Virtualization, Java, and Microsoft Developers forums at www.techexams.net
    --
    Blog: www.techexams.net/blogs/jdmurray
    LinkedIn: www.linkedin.com/in/jamesdmurray
    Twitter: www.twitter.com/jdmurray
    Reply With Quote Quote  

  17. Senior Member
    Join Date
    Nov 2013
    Location
    NoVa
    Posts
    217
    #16
    hey man join this discord group chat! a lot of us are taking oscp and trust me itll help you https://discord.gg/AQwaeGf (no cheating)
    Reply With Quote Quote  

  18. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Galloway, NJ
    Posts
    1,284

    Certifications
    A+, Network +, GSEC, GCIH, Lunatic+
    #17
    Quote Originally Posted by cyberguypr View Post
    Seriously, I know my limitations and the patience required for this cert is something I do not have. Therefore, I will never bother attempting it. I immensely respect those who go through it.
    When I attempt it, I'll go with the 3 month option, I know my limitations, and I know I'll need the extra lab time.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  19. Member
    Join Date
    Jan 2017
    Posts
    96
    #18
    Same here!
    Reply With Quote Quote  

  20. Senior Member
    Join Date
    Feb 2015
    Location
    Tampa, FL
    Posts
    270

    Certifications
    GPEN/GCIH/CEH
    #19
    I'll be honest, happened to me when I was attempting a challenge recently. Obviously beyond my knowledge, but I had a week to try it and I certainly thought several times that I was at my limit, but I kept going and trying things and while I didn't hit my goal, I got some things, and that may be what maters more than anything else.
    Reply With Quote Quote  

  21. Junior Member
    Join Date
    Nov 2015
    Location
    Midwestern US
    Posts
    11

    Certifications
    OSCP, LPT (Master), ECSA, CEH, CISSP, CSSLP, CHFI, CND, Sec+, CWAPT, CPT
    #20
    Don't rely too heavily on the forums. Sometimes, someone lets something slip that is "too helpful," and the admins don't catch it right away before censoring it. Or, if you privately ask a student for a "nudge," some of them will shove you all the way across the goal line, robbing you of the opportunity to "try harder" and really feel good about the box.

    If you rely on the forums to get a bunch of boxes, then go take your test, you will be in a world of hurt. The test requires you to "bulldog it" and keep working. The test also has built-in "time wasters," to try to distract you from focusing, which really gets hard to do anyway after about hour 16 or 17, no matter how good of progress you make up until then.

    I essentially passed the test at hour 17, with 10 point "easy" machine and one 25 point machine left... and I got neither of those. The homework and lab report pushed me over 70. Oh, and I got 53 out of 55 machines... but I probably should have completely ignored the forums and stuck with going completely alone. The victory wasn't quite as sweet after getting a machine from too generous of a forum hint.
    Reply With Quote Quote  

  22. Member
    Join Date
    Jan 2017
    Posts
    96
    #21
    Quote Originally Posted by dochood View Post
    Don't rely too heavily on the forums. Sometimes, someone lets something slip that is "too helpful," and the admins don't catch it right away before censoring it. Or, if you privately ask a student for a "nudge," some of them will shove you all the way across the goal line, robbing you of the opportunity to "try harder" and really feel good about the box.

    If you rely on the forums to get a bunch of boxes, then go take your test, you will be in a world of hurt. The test requires you to "bulldog it" and keep working. The test also has built-in "time wasters," to try to distract you from focusing, which really gets hard to do anyway after about hour 16 or 17, no matter how good of progress you make up until then.

    I essentially passed the test at hour 17, with 10 point "easy" machine and one 25 point machine left... and I got neither of those. The homework and lab report pushed me over 70. Oh, and I got 53 out of 55 machines... but I probably should have completely ignored the forums and stuck with going completely alone. The victory wasn't quite as sweet after getting a machine from too generous of a forum hint.
    I may be strange but that concerns me too about hints an such.
    Reply With Quote Quote  

  23. Senior Member kMastaFlash's Avatar
    Join Date
    Aug 2012
    Posts
    876

    Certifications
    A+, Network+,Security+, EMCISA v2, MCP, MTAx2 , MCPS, CCENT, CCNA R&S,C|EH,C|HFI,MCTS, Linux+,LPIC-1,E|CSS,E|CES,GPEN,OSWP,Server+,LPT,GCIH
    #22
    So I thought I would provide a small update on my OSCP journey. After this thread, I have pwned about 20 public servers and unlocked the IT network as of today 3/7/2017!!! I am thinking about attempting the exam and was hoping that someone can provide me with insight to "how to pass the exam" without any cheats just solid advice!!
    2017:E|CSA E|CSP,E|CIH,eLearnSecurity,CSA+ Courses 2018: C|ND,ICND2,CCSK,CISSP,CCNA-Security 2019: CWNA 2020: LPIC-2
    Reply With Quote Quote  

  24. California Kid JoJoCal19's Avatar
    Join Date
    Mar 2009
    Location
    Jacksonville, FL
    Posts
    2,324

    Certifications
    CISSP, CISM, CISA, CRISC, GCIA, GSEC, CEHv8, CHFIv8, ITIL-F, MSISA, BSBA
    #23
    If you're not in the OSCP Discord group, I highly recommend it. There's a couple of people who have passed it there, and a ton of people at different phases of prep for it. No cheats, just great discussion!
    Have: CISSP, CISM, CISA, CRISC, GCIA, GSEC, CEHv8, CHFIv8, ITIL-F, BSBA - University of Florida, MSISA - WGU
    Currently Working On: MS Cybersecurity, Learning Python
    Next Up:​ None
    Reading:​ Python Crash Course
    Reply With Quote Quote  

  25. Senior Member xmalachi's Avatar
    Join Date
    Mar 2010
    Posts
    547

    Certifications
    CISSP, MCITP:EA, Security+, VCA-DCV
    #24
    I've attempted several of the links posted for the Discord with no success. I get that the group doesn't exist or the invitation has expired. If anyone can get me in there, I'd appreciate it.
    Reply With Quote Quote  

  26. Senior Member
    Join Date
    Dec 2010
    Posts
    357

    Certifications
    VCA5-DCV, CEH, ECSA, CHFI, ITILv3, CND
    #25
    Good thread.
    Working on:
    1) MCSA 2012 - 410
    2) Cisco Cyber Ops 210-250 (SECFND)
    Reply With Quote Quote  

+ Reply to Thread
Page 1 of 2 1 2 Last

Social Networking & Bookmarks