OSCP Preparation... Try Harder!!!

-



Hello All,

It's long time I didn't posted on blogger due some busy job schedule + OSCP preparation. I will not write long article about it. I just wanted to share some useful resources and walkthrough links for OSCP like Virtual Machine on Vulnhub and Hack The Box. Try harder!!!


Hack The Box OSCP-like Windows VMs
S.No Windows Boxes: Walkthrough Links
1 legacy https://www.pathtoroot.net/l/hackthebox-legacy-writeup/ 
2 Blue https://medium.com/@ranakhalil101/hack-the-box-blue-writeup-w-o-metasploit-572c6042feb8 
3 Devel https://medium.com/vulnerables/hackthebox-devel-ecf86cf7822f 
4 Optimum https://medium.com/@nmappn/htb-optimum-writeup-9680466f01f7 
5 Bastard https://medium.com/@ranakhalil101/hack-the-box-bastard-writeup-w-o-metasploit-78cceac4b9f4 
6 granny https://www.pathtoroot.net/l/hackthebox-granny-writeup/ 
7 Arctic https://www.absolomb.com/2017-12-29-HackTheBox-Arctic-Writeup/ 
8 grandpa https://www.pathtoroot.net/l/hackthebox-grandpa-writeup/ 
9 silo https://www.pathtoroot.net/l/hackthebox-silo-writeup/ 
10 bounty https://www.pathtoroot.net/l/hackthebox-bounty-writeup/ 
11 jerry https://initinfosec.com/writeups/htb/2020/01/17/jerry-htb-writeup/ 
12 conceal https://0xrick.github.io/hack-the-box/conceal/ 
13 chatterbox https://infosecjunky.com/hack-the-box-chatterbox-writeup-without-metasploit/ 
14 Forest https://hackso.me/forest-htb-walkthrough/ 
15 BankRobber https://snowscan.io/htb-writeup-bankrobber/# 
16 secnotes https://0xrick.github.io/hack-the-box/secnotes/ 
17 Bastion https://infosecjunky.com/hack-the-box-bastion-writeup-without-metasploit/ 
18 Jeeves https://infosecjunky.com/hack-the-box-jeeves-writeup-without-metasploit/ 
19 Devel https://infinitelogins.com/2020/01/20/hack-the-box-write-up-devel-without-metasploit/ 
20 Bobby https://rastating.github.io/how-i-hacked-bobby/
21 Bart https://0xdf.gitlab.io/2018/07/15/htb-bart.html
22 Tally https://offsecdeer.gitlab.io/post/htb-writeup-tally/ 
23 Active https://0xrick.github.io/hack-the-box/active/ 
24 Sniper https://www.nav1n.com/2019/12/hack-the-box-sniper-writeup-and-detailed-walkthrough-10-10-10-151/





Hack The Box OSCP-like Linux VMs
S.No Linux Boxes: Walkthrough Links
1 Lame https://medium.com/bugbountywriteup/htb-lame-writeup-e47100aea88b 
2 brainfuck https://medium.com/@ranakhalil101/hack-the-box-brainfuck-writeup-w-o-metasploit-5075c0c55e93 
3 shocker https://medium.com/@ranakhalil101/hack-the-box-shocker-writeup-w-o-metasploit-feb9e5fa5aa2 
4 bashed https://medium.com/secjuice/hackthebox-bashed-write-up-eceb6b9f6d6f 
5 nibbles https://medium.com/ctf-writeups/nibbles-write-up-htb-784e6b887f7d 
6 beep https://medium.com/@hussaini.faisal/hackthebox-writeup-beep-41c30e74297f
7 cronos https://medium.com/swlh/hack-the-box-cronos-writeup-w-o-metasploit-7b9453e557d0 
8 nineveh https://medium.com/@ranakhalil101/hack-the-box-nineveh-writeup-w-o-metasploit-1e84173ba485 
9 sense https://www.absolomb.com/2018-03-24-HackTheBox-Sense/ 
10 solidstate https://medium.com/@ranakhalil101/hack-the-box-solidstate-writeup-w-o-metasploit-c43063c9ca8e 
11 node https://medium.com/@ranakhalil101/hack-the-box-node-writeup-w-o-metasploit-3dfb48ee4a9 
12 valentine https://medium.com/ctf-writeups/valentine-write-up-htb-a4d3c950fa6d 
13 poison https://www.secjuice.com/hackthebox-poison/ 
14 sunday https://initinfosec.com/writeups/htb/2020/01/24/sunday-htb-writeup/  
15 tartarsauce https://0xdf.gitlab.io/2018/10/20/htb-tartarsauce.html 
16 Irked https://0xrick.github.io/hack-the-box/irked/ 
17 Friendzone https://0xrick.github.io/hack-the-box/friendzone/ 
18 Swagshop https://medium.com/@bigb0ss/htb-swagshop-write-up-50a560aa7a56 
19 Networked https://0xrick.github.io/hack-the-box/networked/ 
20 jarvis https://0xrick.github.io/hack-the-box/jarvis/ 
21 Mirai https://resources.infosecinstitute.com/hack-the-box-htb-machines-walkthrough-series-mirai/ 
22 Popcorn https://resources.infosecinstitute.com/hack-the-box-htb-walkthrough-popcorn/ 
23 Haircut https://resources.infosecinstitute.com/hack-the-box-htb-machines-walkthrough-series-haircut/ 
24 Blocky https://gist.github.com/berzerk0/1a6270d3cacf30c3b5cff82c7f53bf4c
25 Frolic https://0xrick.github.io/hack-the-box/frolic/ 
26 Postman https://medium.com/bugbountywriteup/hackthebox-postman-2f539f63aa 
27 Mango https://medium.com/@bigb0ss/htb-mango-write-up-52fdd7e67cc6 
28 Traverxec https://www.secjuice.com/traverxec-walkthrough-htb/ 
29 OpenAdmin https://medium.com/bugbountywriteup/openadmin-hackthebox-writeup-ffbc3f9c84c9 
30 DC-1  https://medium.com/bugbountywriteup/vulnhub-writeup-dc-1-37dcf92b456a 




Vulnhub OSCP-like VMs
S.No Linux Boxes Walkthrough Link
1 Kioptrix-4 https://jhalon.github.io/vulnhub-kioptrix4/ 
2 Kioptrix-3 https://jhalon.github.io/vulnhub-kioptrix3/ 
3 Kioptrix-2 https://jhalon.github.io/vulnhub-kioptrix2/ 
4 Kiptrix-5 https://jhalon.github.io/vulnhub-kioptrix5/ 
5 Mr. Robot https://jhalon.github.io/vulnhub-mr-robot1/ 
6 Vulnix https://mrh4sh.github.io/vulnix-solution 
7 Kioptrix-1 https://www.abatchy.com/2016/11/kioptrix-1-walkthrough-vulnhub.html
8 VulnOS-2 https://www.hackingarticles.in/hack-the-vulnos-2-0-vm-ctf-challenge/
9 Stapler  https://www.hackingarticles.in/hack-stapler-vm-ctf-challenge/ 
10 Fristileaks https://www.hackingarticles.in/hack-fristileaks-vm-ctf-challenge/ 
11 SickOS 1.2 https://medium.com/@shofemiraz/sickos-1-2-writeup-vulnhub-eb0803578c34
12 Misdirection 1  https://www.vulnhub.com/entry/misdirection-1,371/
13 Sar 1 https://www.vulnhub.com/entry/sar-1,425/
14 Djinn 1 https://www.vulnhub.com/entry/djinn-1,397/
15 EVM 1 https://www.vulnhub.com/entry/evm-1,391/
16 DerpNStink 1 https://www.vulnhub.com/entry/derpnstink-1,221/
17 RickdiculouslyEasy 1 https://www.vulnhub.com/entry/rickdiculouslyeasy-1,207/
18 Tommy Boy 1 https://www.vulnhub.com/entry/tommy-boy-1,157/
19 Breach 1 https://www.vulnhub.com/entry/breach-1,152/
20 Breach 2.1 https://www.vulnhub.com/entry/breach-21,159/
21 Breach 3.0.1 https://www.vulnhub.com/entry/breach-301,177/
22 NullByte https://www.vulnhub.com/entry/nullbyte-1,126/
23 Bob 1.0.1 https://www.vulnhub.com/entry/bob-101,226/
24 Toppo 1 https://www.vulnhub.com/entry/toppo-1,245/
25 W34kn3ss 1  https://www.vulnhub.com/entry/w34kn3ss-1,270/
26 GoldenEye 1 https://www.vulnhub.com/entry/goldeneye-1,240/

Comments

Post a Comment

Popular posts from this blog

Intercepting Signalling System No. 7 (SS7) - Practical Lab

-
Image
Introduction  This is my first blog on blogger.com. I want it to be very interesting for people who are interested in information security field and also want learn new things. I will try to share good reads and intersting articles on my blogs. Lets begin with my favorite one here. Please note that english is not my native language I will apologize for my bad english in advance 😀. It was an awesome experience while playing around Immersive labs machines during the past month, there are much to learn from hands-on practical labs. But one lab I liked the most was Signalling System No. 7 (SS7) interception practical lab, which is used to exchange data between devices in telecommunication networks. We will use it to gain access to a fictional user’s bank account and successfully transfer funds. There are many good tutorials and online resources available for SS7, therefore I will keep it short here.   Introduction to SS7 Interception There have been a number of attacks r
Read more

ZoomEye IoT Search Engine

-
Image
IoT Search Engines There are many known search engines for IoT such as Shodan , IoT Crawler , Thingful and Censys etc. but I will share some interesting features of a very powerful Chinese IoT search engine ZoomEye .  What is ZoomEye ZoomEye is a Cyberspace Search Engine recording information of devices, websites, services and components etc. ZoomEye has two powerful detection engines Xmap and Wmap aiming at devices and websites in the cyberspace. It can be used to identify all the services and components through 24/7 continuous detection. Therefore it is easier for researchers to understand the component coverage and the damage scope of vulnerabilities. Although being regarded as a "hacker-friendly" search engine, ZoomEye is not designed to initiate attacks towards network devices or websites. The recorded data is for security research use only. It is more like a navigational chart in the cyberspace. What ZoomEye Show You can search Zoo
Read more

OSCP Buffer Overflow Practice

-
Image
What is Buffer Overflow?     A buffer overflow occurs when data written to a buffer also corrupts data values in memory addresses adjacent to the destination buffer due to insufficient bounds checking. This can occur when copying data from one buffer to another without first checking that the data fits within the destination buffer.  I am learning buffer overflow and I just screen record my buffer overflow practice and shared with you. It might help you as well.  Try Harder!!!   Part 1       Part 2
Read more