More Lab Practice

• Offensive Security Proving Grounds (Practice) - At $20/month,

  Proving Grounds Practice was the best external resource I encountered to simulate like boxes. I also found it to be much more helpful than the course labs for the following reasons:

  • Boxes designed and vetted by Offensive Security that mirror the exam boxes, both difficulty rating and techniques required.

  • Dedicated (i.e. not shared like OSCP labs)

  • Clear difficulty rating of easy, medium, and hard. These ratings were in line with the exam boxes I encountered.

  • Box hints for initial access and privilege escalation that don't give the answer away but give direction of what to focus on.

  • Box walkthroughs which I found to be much more helpful than the Offensive Security forums. The walkthroughs are very thorough and helped me understand why I missed something.

Buffer Overflow

• Tib3rius Buffer Overflow Pentest Cheatsheet - Learn to use the Mona Immunity debugger, which saves a lot of time in testing for badchars.

• Tib3rius' TryHackMe buffer overflow prep room - This room provides 10 buffer overflow challenges that are very similar to the buffer overflow encountered on the exam.

Windows and Linux Privilege Escalation

• Tib3rius has created the following Udemy courses for $20 each and they are well worth the money. The OffSec coursework touches on both Linux and Windows privesc but the Udemy courses cover most all privesc techniques likely to be required in the exam.

  • Windows Privilege Escalation for OSCP & Beyond!

  • Linux Privilege Escalation for OSCP & Beyond!

Pentesting Techniques/Resources

• Books.hacktricks.xyz

Shells

• Github PayloadsAllTheThings