How I Passed the OSCP in 8 Hours (On My First Attempt!)
Vložit
- čas přidán 3. 07. 2024
- Join the Hack Smarter community: hacksmarter.org
--- I passed the OSCP exam on my first attempt in 8 hours. In this video, I share about three things:
1. My general experience during the exam -- what I did right and what I did wrong.
2. My notetaking process for the OSCP and beyond when I am hacking a machine.
3. The specific resources that were key to me passing the exam.
-----------
List of Resources I Mentioned:
1. Hack Smarter Community (Formerly Work Smarter)
hacksmarter.org
2. TCM Security
academy.tcm-sec.com/
3. TryHackMe
tryhackme.com/
4. HTB Academy
academy.hackthebox.com/
5. PG Practice
www.offensive-security.com/la...
6. HTB
www.hackthebox.com/
7. PWK Labs/PEN-200 Course
www.offensive-security.com/pw... - Věda a technologie
Dude! Like your note section just 180'd my world understanding for some reason. I was struggling hard with figuring out a good way to organize all this and this looks like GOLD!!!! THANK YOU!!!
Awesome ... Congrats on your achievement and thanks for all the information and resources you provided ❤
Your review brings back memories of my OSCP journey in 2019. A lot has changed in the exam, but it is still one of the best out there. One of the reasons this certification is so respected is because of the challenges, the setbacks, and the months of sleepless nights invested to achieve it. I'm now preparing for OSED, one last hurdle to become an OSCE3. Looking back, I can't believe I would have developed this mindset if I hadn't taken OSCP. Congrats!
Wow! Keep up the great work!
Wahey! Top man! Many congratulations and thanks for being so open and sharing.
No problem and thank you!
Fantastic stuff , I look forward to more of your honest down to earth videos, Brilliant well done !!!!❤ ❤
a huge congrats and welcome to the club, I'm sure this makes for a great Christmas present!
Absolutely! Thank you!
Congratulations! Thank you for the nmap tips first time I ever seen it this way!
Glad you found it helpful! I stumbled my way into that after trying many different methods.
Tyler, this is a great breakdown! Thanks!
Thank you!
This will help a lot of folks! Great explanation, keep making more and more videos.
Thank you for the kind words!
I really appreciate your note taking method, I'll make sure to put this to use next time.
I knew you were going to nail it. Congrats!
I appreciate the kind words!
Thank you so much brother this will help a lot on the exam! Reminds me of my PJPT!
Great video. Really like your positive attitude that you brought to the whole thing. This is something that I will incorporate going forward. I also like how nice and positive the people in your discord are. Best wishes -Charlie
Congratulations bro, your video motivated me to start studying again and hopefully grab the oscp cert eventually on my journey.
Thank you!
Thanks for the resources!!!
Thanks for the video. Considering an attempt at OSCP early next year
i'm about to start my OSCP courses, thanks for all this information!
No problem. Goodluck!
Inspiring. Am following ur path. Take TCM, THM, HTB then OSCP. Tqvm
Thank you.
Great Overview
Thank you!
congrats!! well deserved!!!
Thank you!
@@TylerRamsbey ur craaaZy going into the exam with barely doing any of the oscp resources and no bonus points sir ur 1337!
congrats Bro!!!!💯
Thank you!
congrats man!!
Thank you man!!!
Congrats Tyler !
Thank you!
Congratz!
🎉
Thanks brotha!
Amazing vid. 😊
Congratulations Tyler!!! I knew you could do it.
Great video and advice. This is my goal for 2023.
Good luck sir!
Appreciate this video. I’m a full time pentester (going on 2 years) and I’ve failed the OSCP twice, although I did better the second time. My next attempt is coming up, and it’s my first attempt at the new format. I have the 10 extra points, but I’m still super nervous. I’m gonna check out HTB’s AD module. I’ve done literally everything else you mentioned, from PG practice to THM Throwback to VHL to TJ Null’s list etc. In my experience, I agree that the PEN200 lab network and course material is garbage. Many machines in PEN200 require brute forcing with rockyou and I think, especially as a pro tester, that’s a huge waste of time and a lazy teaching method. HTB/THM/VHL and Heath’s Udemy courses (I bought his stuff before he made TCM), altogether taught me the most about becoming a good pentester.
Hello how was the thrid attempt ?
I hope you passed your exam
@@masteroftheworld001 I'd like to know too
Bro, excellent vid on this topic. I appreciate the blunt honesty and the fact you discussed what’s necessary to succeed on the exam without extraneous fluff. Per another comment, I added you on LinkedIn and looks like we attended the same college. I almost feel like I spoke to you once. Was at the IT helpdesk. I ran some slmgr commands to show I’d wiped the campuses license keys off my PC and replaced with my own since I was keeping it. If I recall correctly, you mentioned some of the certs you were working on and things you aspired to do. Looks like you’ve done well!
Yooo!!! Yup I remember that! It was the IT Manager there for awhile. Now I am a Pentester with Rhino Security Labs. Thanks for the comment sir! Small world!!
@@TylerRamsbey for sure man. I got in with Lockheed Martin, but have been looking into revisiting OSCP to enhance my knowledge as a security analyst
@@Huberdoggy Do you use Discord? Rhino just recently launched a Discord that I started. The whole focus is offering free training on pentesting concepts and to hire future pentesters. Feel free to join!
discord.gg/8vFE7ucx9W
@@TylerRamsbey haha I’m doing it now. I had only used Discord in the past for a previous job, but you convinced me to return 😂
Dropping straight knowledge bombs on these peeps Tyler! Keep it up! 7k + views in 3 days?!?!?! 🔥🔥🔥🔥🔥
I'M FAMOUS
@@TylerRamsbey 16k+ views?!?!?!
GOOD JOB!🎉🎉
Thank you!
congrats tyler⚡
Thanks man!
For anyone asking for the notes, I highly recommend that you take your own notes!
Not only will you know exactly where to find the note youre looking for, but you'll make a habit of note-taking and structuring!
You'll also feel more confident looking at your OWN notes and seeing how much progress you've made.
also trying to explain a topic is the best way to see if you can understand it. writing a field guide is also good practice
Subbed & congrats :)
Thank you!
Congrats!
"-p-" with T5 you will start missing ports on some boxes. one can instead write a script to first run T5 and run -A on the ports found (so you can get to work) and then run nmap -Pn -p 0-65535 --open -v IP again to make sure you arent missing any ports. then run -A on the slow scan ports as well if more are found
Bravo! :)
Thank you!
very good brother ❤❤❤❤
Thanks!!
Congratulations Tyler! So what's next? OSEP perhaps?
Thank you.
i heard a sleep expert say that they tested different sleep schedules on athletes and the difference between good and bad sleep in athletes is bigger than the difference between athletes that did and didnt take performance enhancing drugs ... that means that propper sleep is more important than anything when it comes to performance and same goes for mental performance
Awesome video! Appreciate the review. Hearing all the resources that you recommend before the actual PWK course is slightly disappointing when considering buying the learn one course and exam for $2000. They need to offer the exam only or the 30 days of lab time + exam again. The prices are set to increase again in 2023 though, so I doubt this will be the case.
I agree. I was very disappointed with the official course for the price.
You don't have to take up OSCP, it sucks, their AD is crap nd as in this vid as he mentions TCM Sec, all you have to do is the PNPT, OSCPs materials ain't enough to pass the exam, it's a highly profit driven cert, bloody 1499$ nd only 1 exam attempt, instead of taking this crappy OSCP which falls short in many practical aspects just take up the PNPT
@@manavgkrishna4766 I agree. PNPT seems great. Unfortunately, it isn’t nearly as recognized or consider by hiring companies.
very very good liufe advice
Congratulations brother!!! I have scheduled my exam on 13th Dec. I gotta say this particular video of yours just boosted my confidence. Any kind of tip would be appreciated....
Yo! Good luck with it
Good luck my friend! My best tip, although it's cliche, is to do your best to have fun with the exam. Forget passing it, focus on enjoying it :)
How was the exam bro
how's the exam
Hey shashank are you taking it in india? How much is it cost wise
Congratulations
Thank you!
Great work my man! Proud of ya! Not sure if we're suppose to ask but, is buffer overflow a thing in OSCP these days?
Yes. They actually say in the exam guide that you may or may not have buffer overflow as a low privilege vector. It is no longer 25 points -- you still have to elevate your privileges after doing the buffer overflow.
That being said, I am not allowed to say whether I got one or not.
@@TylerRamsbey thanks a bunch for the reply! Will get that studied up just incase. Wish you luck in your hacking career 🙏🏼🙏🏼
Congratulations Tyler! Did you have any IT job experience before the pentest role / passing the OSCP? Or was it all through self study through the resources mentioned?
Hey Matt! Yes, I did have IT experience before my pentest role and passing the OSCP. Feel free to add me on LinkedIn and you can see my background for context!
www.linkedin.com/in/tyler-ramsbey-86221643/
I usually do the “nmap -sS -p- ” to do a syn scan for enumeration. Then i do the aggressive scan on the specific open ports. Is there a downside to this as opposed to just the normal nmap scan of all ports?
I know this is different for each individual, but how long did you study for the exam before taking it?
would you recomment studying all your ressources appart from the 7. PWK LAbs/Pen-200 Course in order to pass OSCP exam ? (because of very expensive course)
Good job man! I have a question. Did you do anything else outside of what’s mentioned in the video ? Was that enough to prepare for the OSCP or have you been working in cyber security for awhile ? I currently have sec+. My plan is to do the ejpt and then restart my peh(tcm course) journey. Next, I plan to start working towards the oscp. I need a bit of guidance, however.
Yes, it was enough but cybersecurity has always been a fascination of mine. That being said, no, I did not have experience working in cyber. I spent some time doing IT Support... then I was an IT Support Manager for about a year... and then I worked as a security analyst for only about 6 months before taking the exam. Now I am officially a penetration tester! :)
@@TylerRamsbey Congrats! Cyber security is quite fascinating, indeed. I’m starting my 1st job in cyber security soon. I’m looking forward to that official title as well.
Hi!
That car from the AD set that caused the difficulty,
Are there similar machines on HTB or THM?
Or were they completely exclusive?
there is nothing exclusive ,they will use vulnerability exist everywhere but in different setup ... u just have to understand how they work and how to find them
@4:50 what info was missing in the AD set?
i'm just getting started studying for certs in general and i need help with how you got your onenote so pimped out, i opened it and it doesn't look anything like how you have it.
Solve the box with the help of walkthrough is Right?
By running T5 in nmap, can running it so fast miss any open ports?
I just got my CLSSP and OSCP is next on my mission
I got "pay harder" email for 60 + partial AD
One of the few that didn't have to "try harder" after the first try
Hi I have network engineering and information security and chfi what I have to take next to become a pro hacker
hey tyler how much time you spend a day in front of your computer
Too much :D
the cringey thumbnail almost made me not click on the video but Im glad I did :) lots of useful info you shared, thanks
hahahaha! Glad you watched! :)
Based on your experience, would you say using an ARM64 M1 Mac would make the test more difficult?
I'm not sure -- sorry. I'd assume it would be fine though.
Yep lots of restriction on VM.
I passed it too
FYI The discord link doesn't work anymore. Can you provide a new link? would love to join
Good catch!
discord.gg/work-smarter-956006303061393428
Do i need experience to give this exam or my cybersecurity degree could fill the requirement?
Anybody can take this exam
can you tell how many windows hosts and linux on exam? thank you
Sorry, Offsec will be upset if I answer that question :(
the stand alone machines were from OSCP exam or just a random HTB?.
For practice? The ones on "Proving Grounds Practice" were the best prep in my opinion. This is a subscription service through Offsec that is around $20/month.
@@TylerRamsbey are you allowed to do other things while doing the exam? isn't it monitored?
Tyler is it possible to oscp in 8 hours
How 🤔 ❓ can do you done the exam in 8 hours
Haha! Good enumeration and some luck I think!
can we get your notes?
Sorry, I need to re-sort my notes. I cannot share OSCP-specific things of course so I need to go through them before I share them again.
For the men. Semen retention is important before the exam.
hi.. can i get your note sir?
Sorry, I need to re-sort my notes. I cannot share OSCP-specific things of course so I need to go through them before I share them again.
@@TylerRamsbey yeah ofc.. Just htb or other public machine stuff..
9at the helt
Now tell Rhino that you are past the "associate" level. :)
Ha! I'm still a total noob! :)
Hey bro can you share your notes that contain commands (OneNote) ❤️
Sorry, I need to re-sort my notes. I cannot share OSCP-specific things of course so I need to go through them before I share them again.
@@TylerRamsbey I'll be waiting sir
Tcm literally stole copy-write oscp material lol
What material did they steal?
pls share your oscp notes :)
Sorry, I took a lot of my notes from the course and am not allowed to share :(
please send with your machion reports please brother i am waiting for reply
What do you mean by machine reports?
are you a vampire?
hahahaha - what a strange question. I don't think so 🤣
@@TylerRamsbey my, what well developed canines you have grandma! :P congratz on your certification man. cheers
Noob. 😂
Only if I had $1499 which will increase to $1599 in January 23 🥲 This cert is not for Indians😔
Idts
hey tyler can you please share tryhackme AD rooms link wich you have metioned in the video | the discription you have metioned tryhackme website
Highly recommend looking at eLearnSecurity/INE courses they're terrific