| Channel | Publish Date | Thumbnail & View Count | Download Video |
|---|---|---|---|
 | Publish Date not found |  0 Views |
You can also find a link to the playlist with the individual videos below. For those who would like to have everything in one place instead, I created this video instead.
————————-
RESOURCES
– Github repository: https://github.com/LeonardoE95/OSCP
– OSCP guide article: https://blog.leonardotamiano.xyz/tech/oscp-technical-guide/
– OSCP Guide Playlist: https://youtu.be/9mrf-WyzkpE?si1sgYae3pebqkaJkp
– PEN 200 course: https://www.offsec.com/courses/pen-200/
————————-
TIME STAMP
########## OSCP 01 – My exam experience
00:00:00 Introduction
00:01:53 My experiences studying for certification
00:08:53 Exam schedule
00:18:13 General tips
########## OSCP 02 – Prerequisites
00:26:17 Introduction
00:27:32 Requirements
00:35:37 Scenario No. 1: Mainstay with directory traversal
00:39:17 Scenario No. 2: Privilege escalation through PATH injection
00:41:30 Scenario #3: Kerberoasting in Active Directory
00:43:57 Read HTB Bashed report
00:46:27 Port scan with nmap
00:49:37 List directories with dirsearch
00:52:17 Privilege escalation with sudo -l
00:54:23 Cronjob analysis with pspy64
00:56:17 Conclusion
########## OSCP 03 – Internet
00:59:35 Introduction
01:01:15 OSCP web content
01:04:30 SQL injection
01:05:30 Directory traversal
01:08:50 Local File Integration (LFI)
01:11:14 Remote File Integration (RFI)
01:12:50 File upload vulnerabilities
01:15:45 OS command injection
01:18:50 Cross-site scripting (XSS)
01:20:50 Auto-exploitation tools are not allowed
01:24:00 Cheat Sheet – General List
01:28:25 Cheat Sheet – Brute Forcing
01:30:45 Cheat Sheet – HTTP Enumeration
01:36:00 Cheat Sheet – SMB Listing
01:38:15 Cheat Sheet – SNMP Listing
01:42:12 Conclusion
########## OSCP 04 – Linux
01:42:51 Introduction
01:44:51 via the terminal
01:50:51 Main techniques
02:03:14 Enumeration scripts
02:06:04 Conclusion
########## OSCP 05 – Windows
02:07:11 Introduction
02:09:21 In OSCP, Windows has more structure
02:12:26 Basic enumeration
02:21:02 Basic enumeration commands
02:31:14 Technique 1 – Abuse of SeImpersonatePrivilege
02:33:56 Technology 2 – Service Hijacking
02:37:11 Technique 3 – Unquoted service path
02:40:46 Example of file transfer
02:42:11 Conclusion
########## OSCP 06 – Password Attacks
02:44:30 Introduction
02:46:15 Password hashing
02:58:15 Cracking the password
03:05:52 Brute-force authentication mechanisms
03:09:40 Using Hydra to brute force logins
03:15:20 Conclusion
########## OSCP 07 – Using existing exploits
03:16:26 Introduction
03:17:31 Simple exploitation
03:21:21 Custom Exploitation
03:32:26 Practical example – CVE-2021-41773
03:47:31 Conclusion
########## OSCP 08 – Port forwarding and pivoting
03:48:09 Introduction
03:48:59 Port forwarding in the OSCP test
03:54:04 Port forwarding techniques
03:55:29 Practical example – Local port forwarding
04:04:54 Cheat Sheet Commands
04:08:19 Conclusion
########## OSCP 09 – Client-side attacks
04:08:44 Introduction
04:09:32 Client-side attacks
04:17:04 Email phishing attack
04:20:04 Example 1 – Reverse Shell under Windows
04:22:20 Example 2 – Stored XSS on WebApp
04:29:54 Conclusion
########## OSCP 10 – Active Directory
04:31:09 Introduction
04:32:30 Read section AD
04:42:49 Tools and attacks
04:56:54 Authentication protocols and attacks
04:58:10 Keep things simple
05:00:44 AD Cheat Sheet for Enumeration, Exploitation and Lateral Movement
05:11:39 Practical example – Kerberoasting in Active Directory
05:19:19 Kerberoasting Summary
########## OSCP 11 – Reporting
05:21:26 Introduction
05:22:36 Writing is an important skill
05:26:11 Part 1 – Notes during the exam
05:30:56 Example of a description with Org mode
05:36:37 Part 2 – Structure of the final report
05:44:16 Identify the weak points
05:46:06 Part 3 – Tools for preparing the final report
05:50:26 Folder structure for the final exam
05:53:56 Using Markdown to generate a report
05:57:14 Analysis of the generation script
05:59:46 Overview and conclusion
########## OSCP 12 – Expectations and methods for the examination
06:02:27 Introduction
06:03:17 Various modules
06:06:07 Challenge Labs
06:11:33 Exam expectations
06:21:47 Exam structure
06:23:42 Examination methodology
06:27:02 Bonus points
06:30:03 Establishment of supervision
06:32:07 Conclusion
————————-
CONTACTS
– Technical blog: https://blog.leonardotamiano.xyz/
– Github: https://github.com/LeonardoE95?tabrepositories
– Support my work: https://www.paypal.com/donate/?hosted_button_idT49GUPRXALYTQ
Please take the opportunity to connect with your friends and family and share this video with them if you find it useful.
