Start with running newKali.sh to download tools needed.
OSCP 2022 Exam:
Active Directory set of 2 host and domain controller (40 points, no partial points)
Box 1 (20 points)
Box 2 (20 points)
Box 3 (20 points)
Bonus Points (10 points)
*One of the standalone boxes may be a buffer overflow
*Bonus points: complete 80% of the topic exercises for each topic, submit proof.txt for at least 30 lab machines.
Go through and add to notes:
https://raphaelrichard-sec.fr/learning-notes
Windows - https://github.com/bertvv/cheat-sheets/blob/master/docs/Windows.md
Tunneling - https://github.com/opsdisk/the_cyber_plumbers_handbook
https://github.com/sdcampbell/Internal-Network-Pentest-MindMap/blob/main/Internal%20Network%20Pentest%20MindMap.pdf
https://github.com/ihebski/A-Red-Teamer-diaries
https://github.com/t3l3machus/pentest-pivoting
https://github.com/rmusser01/Infosec_Reference/blob/master/Draft/Active_Directory.md
https://github.com/S3cur3Th1sSh1t/Pentest-Tools
https://github.com/0x4D31/awesome-oscp
https://github.com/tasooshi/pentesting-cookbook
Courses to do:
TCM Security Practical Ethical Hacking Course
TCM Windows Priv Esc
TCM Linux Priv Esc
TCM Movement, Pivoting and Persistence
Go back thru Tiberius Win / Lin priv esc courses
John Hammond Active Directory youtube videos - https://www.youtube.com/watch?v=pKtDQtsubio&list=PL1H1sBF1VAKVoU6Q2u7BBGPsnkn-rajlp
OSCP Boxes to do:
Hack the Box - TJ_Nulls OSCP Prep List Walkthroughs
Scratch notes (organize):
Win persistence - https://in.security/2019/04/03/an-intro-into-abusing-and-identifying-wmi-event-subscriptions-for-persistence/ (WMI events)
Article series - https://pentestlab.blog/category/red-team/persistence/