+ Reply to Thread
Page 2 of 3 First 12 3 Last
Results 26 to 50 of 69
  1. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #26
    Made some small progress last night and got a low privileged shell on Bob. I've been bouncing around enumerating and trying exploits on a number of machines before putting some time in on Bob. I feel like even though I have a low priv shell this may not have been the easiest way to attack this box. I should have another free evening tonight to hopefully finish this box. Things have been moving pretty slow due to personal life and not making this a priority. I will probably take a 90 day extension while it's pretty affordable.
    Reply With Quote Quote  

  2. SS
  3. Senior Member
    Join Date
    Mar 2012
    Location
    Houston, TX
    Posts
    104

    Certifications
    CISSP, Net+, Sec+, OSWP
    #27
    You really have to dedicate the time to this. I went through 150 days and never made much progress, this has to become a major part of your life during your lab time. I'll finish it one day...
    Reply With Quote Quote  

  4. Member
    Join Date
    Jan 2017
    Posts
    98
    #28
    how many average hours would you both suggest to complete a 90 day run?
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #29
    Quote Originally Posted by Dr. Fluxx View Post
    how many average hours would you both suggest to complete a 90 day run?
    I'm 60 days in and have not done nearly enough. In a perfect world I would suggest at a minimum 30 hours a week.
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #30
    Alright, have some good news to report. After working on bob for a few days I took a break from him yesterday and got to work on another machine. After 4 hours I had system on Ralph. Definitely could have had it sooner but I was focused on doing it a certain way before going for an easier method.

    With my newfound optimism I got straight to work on Mike. Mike was a lot of fun. Very different compared to the rest of the boxes I've done--definitley my favorite for now. Again, I think there may have been a quicker way but I was having a hard time getting it to work. I ended up getting system by thinking "differently". Thinking like a different job description than I had been. It was actually really straightforward at that point.

    Hopefully I can keep up the steam. So far I've rooted Alice, Barry, Ralph, and Mike. I have a low priv shell on bob and will need to come back to him sometime soon. Might try another machine or two first though.
    Reply With Quote Quote  

  7. Junior Member
    Join Date
    Feb 2017
    Posts
    17
    #31
    Priv Esc on Bob is not as easy as it seems!!!!
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #32
    Wow, wow, wow.

    Just spent a few hours last night and this morning on Payday. Finally have root and contents of proof.txt.

    Seriously? lol
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #33
    Lab time expired end of July. Took a break during Blackhat/Defcon week and started WGU same time. After I knockout Secure Software Design I'll get warmed back up and I'll purchase another 30 days. Exam has been set for 10/20!
    Reply With Quote Quote  

  10. Member
    Join Date
    Aug 2017
    Posts
    78

    Certifications
    A+, Net+, Sec+, Linux+, LPIC-1, C|EH, CCNA R&S, OSCP, OSWP, Pentest+
    #34
    Good luck on the upcoming exam. How many boxes have you popped so far?
    Reply With Quote Quote  

  11. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #35
    Exam was pushed back to 11/24. I am far from prepared as I have been working on my MS since 8/3. Will take exam, finish my Capstone and then in January buy some more lab time and focus 100% on this journey.
    Reply With Quote Quote  

  12. Senior Member
    Join Date
    Feb 2017
    Posts
    199
    #36
    Quote Originally Posted by Blucodex View Post
    Exam was pushed back to 11/24. I am far from prepared as I have been working on my MS since 8/3. Will take exam, finish my Capstone and then in January buy some more lab time and focus 100% on this journey.
    You sound busy Blucodex! Good luck with it all

    Quick question for you...

    I know you can get more lab time. But can you let your current lab time expire and then return in say 6 weeks time and buy 30 more days access?

    I wasn't sure if they let you stop and then start again or whether it had to be continuous time with extensions
    My Aims
    2017: OSCP -
    COMPLETED
    2018: CISSP -
    in progress

    Possible Others: OSCE, MCSA




    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #37
    Quote Originally Posted by CyberCop123 View Post
    You sound busy Blucodex! Good luck with it all

    Quick question for you...

    I know you can get more lab time. But can you let your current lab time expire and then return in say 6 weeks time and buy 30 more days access?

    I wasn't sure if they let you stop and then start again or whether it had to be continuous time with extensions
    My lab time expired a couple months ago. I can still buy:

    1 month: $250
    2 months: $450
    3 months $600
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Feb 2017
    Posts
    199
    #38
    Did you do your exam then or was it pushed back again?
    My Aims
    2017: OSCP -
    COMPLETED
    2018: CISSP -
    in progress

    Possible Others: OSCE, MCSA




    Reply With Quote Quote  

  15. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #39
    Quote Originally Posted by CyberCop123 View Post
    Did you do your exam then or was it pushed back again?
    I'm locked in for 2/24. So, trying to finish my MS by Xmas then buy 2 more months of lab time to get ready.
    Reply With Quote Quote  

  16. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #40
    Almost time to continue this journey. I completed my MS from WGU in 5 months. I didn't realize that it's been that long since I started my OSCP journey but I am really excited to be back. Since I paused this journey I've completed my MS and have started a new position as a SOC Analyst in a large corporation. Definitely a different day to day than I was used to as a medium-sized business Security Admin (Architect, Engineer, Admin).

    I'm all set to purchase 60 more days of lab time on 12/26. That will end on 2/23 and my exam starts the next day on 2/24.

    My plan is to start going over the PDF again starting today and to work the following list of VulHubs:

    Kioptrix: Level 1 (#1)
    Kioptrix: Level 1.1 (#2)
    Kioptrix: Level 1.2 (#3)
    Kioptrix: Level 1.3 (#4)
    FristiLeaks: 1.3
    Stapler: 1
    PwnLab: init
    Kioptrix: 2014
    Brainpan: 1
    Mr-Robot: 1
    HackLAB: Vulnix
    VulnOS: 2
    SickOs: 1.2
    /dev/random: scream
    pWnOS: 2.0
    SkyTower: 1
    IMF

    Lets go!!!
    Reply With Quote Quote  

  17. Senior Member
    Join Date
    Feb 2017
    Posts
    199
    #41
    Good luck!!!
    My Aims
    2017: OSCP -
    COMPLETED
    2018: CISSP -
    in progress

    Possible Others: OSCE, MCSA




    Reply With Quote Quote  

  18. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #42
    Alright, re-upped my lab time and was able to get my legs back under me last night. Started off where I left off back in July--a low priv. shell on Bob/Bob2 after figuring out how I got it in the first place, kinda tricky because I needed to access something on the machine before my exploit would work. Tonight I'll spend some time on the priv. escalation part after going over a few blogs today.

    Rooted (6): Alice, Barry, DJ, Mike, Payday, Ralph
    Last edited by Blucodex; 12-28-2017 at 10:56 PM.
    Reply With Quote Quote  

  19. Senior Member
    Join Date
    Feb 2017
    Posts
    199
    #43
    Great progress and good blog so far! Keep up the good work.

    People say "enumeration enumeration enumeration" etc...

    It took me ages to work out what that meant. It just meant to keep digging. For example, if you have more than one HTTP web service, then make sure you do nikto on both, make sure you do dirb on both, check robots.txt on both.

    Try http://10..... and also https://10.... as sometimes they vary.

    Look at wireshark as sometimes something weird is happening

    Identify version numbers as soon as you can

    Always check source code just in case

    Don#t bother with brute forcing logins, it's not part of the OSCP (that's not a spoiler, it's widely publicised).


    Forum help

    Honestly, the jury is out on this one. I've used the forums and have two mindsets:

    1) you're here to learn, so use the forums to guide you. No point in being stuck for weeks. If after 4-5 hours you're still stuck then look at the forum!!

    2) avoid it if you can as it's just helping you, you won't have that in the exam

    My exam is in 14 days and I can probably say which one of these is right. Honestly thouhg, I think it's more than likely that number 1 is right. It's a learning experience, don't waste weeks on one machine. If you can have a hint like "look at port XXXX" then great - but obviously look at this after say 3-4-5 hours of trying.

    Also, after about 10 machines I found that I started instinctively identifying ports of interest. I almost knew which ports were a bit pointless in starting with.

    Other advice is to always post enumerate. I have paid the price and I am still paying the price. GEt the user account details, get the passwrods, get the IP detalis and route detalis, search for *network-secret*, etc.....


    Good luck for the rest of the labs
    My Aims
    2017: OSCP -
    COMPLETED
    2018: CISSP -
    in progress

    Possible Others: OSCE, MCSA




    Reply With Quote Quote  

  20. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #44
    I was finally able to get Bob2 this morning. Know that I know what to do it was not nearly has hard as I made it. Just needed to stop and do some critical thinking around the techniques and services. I spent a lot of time on this box. Probably 15-20 hours during all of my lab time but most recently I only spent probably 3 hours. Woke up this morning with new direction and had him within 45 minutes.

    I think this box is going to be very helpful going forward and on the exam.

    Rooted (7): Alice, Barry, Bob2, DJ, Mike, Payday, Ralph
    Reply With Quote Quote  

  21. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #45
    And down goes bob. Time to move on and pop more shells.

    Rooted (eight): Alice, Barry, Bob, Bob2, DJ, Mike, Payday, Ralph
    Reply With Quote Quote  

  22. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #46
    Down goes JD! Super easy box.

    Rooted (9): Alice, Barry, Bob, Bob2, DJ, JD, Mike, Payday, Ralph
    Reply With Quote Quote  

  23. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #47
    And down goes Master. This one should have a lot of goodies to investigate. I think I'll spend some time here.

    Rooted (10): Alice, Barry, Bob, Bob2, DJ, JD, Master, Mike, Payday, Ralph
    Reply With Quote Quote  

  24. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #48
    Helpdesk Down.

    I didn't expect boxes to start dropping so fast but I must be rolling the dice on some easy ones. Won't be updating until later next week. Have a happy New Year everyone.

    Rooted (11): Alice, Barry, Bob, Bob2, DJ, Helpdesk, JD, Master, Mike, Payday, Ralph
    Reply With Quote Quote  

  25. Senior Member
    Join Date
    Feb 2017
    Posts
    199
    #49
    Great progress, keep it up!

    I always found it easier to keep remembering there is a place to go.... there is a hacking point.... just keep digging!

    Keep going!
    My Aims
    2017: OSCP -
    COMPLETED
    2018: CISSP -
    in progress

    Possible Others: OSCE, MCSA




    Reply With Quote Quote  

  26. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    362

    Certifications
    CISSP, C|EH, C|HFI, CCNA Cyber Ops, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #50
    Been awhile since I last updated.

    Been really busy the last few weeks but I've managed to work through about about 60% of the PWK. Like others have said, DO THIS FIRST. These will help you immensely in the lab.

    Looking to wrap this PDF up by the weeks end and then I'll have 2 weeks to hit the lab, gather notes, and sit for the exam on 2/24.
    Reply With Quote Quote  

+ Reply to Thread
Page 2 of 3 First 12 3 Last

Social Networking & Bookmarks