OSCP Study Material Study Guide - Join Offincive CTF Training At Cyber Security Research Blogs

Nmap scanning cheatsheet for beginners

All Blog, OSCP Study material 14th July 202114th July 2021 blog_h4ck

This nmap scanning cheatsheet is a comprehensive guide for absolute beginners . At the end of the blog some useful tricks are given for practicalContinue readingNmap scanning cheatsheet for beginners

Regular Expressions quick cheatsheet for pentesters – 101

The Regular Expressions quick cheatsheet for pentesters topic in code review is explained by Jonny Fox . The entire credit goes to him for thisContinue readingRegular Expressions quick cheatsheet for pentesters – 101

Mysql UDF Basics and Exploitation

OSCP Study material 28th December 202028th December 2020 blog_h4ck

So what is a UDF? It is a way to extend MySQL with a new function that works like a native (built-in) MySQL function; i.e.,Continue readingMysql UDF Basics and Exploitation

MSSQL Injection

All Blog, OSCP Study material 15th August 202013th July 2021 blog_h4ck

(((0x1 :- Basic Recon Stage))) -1 union all select 1,2– -1 union all select null,2– null union all select 1,null– 1 union all select 1,null–Continue readingMSSQL Injection

Tools Allowed in OSCP

OSCP Study material, All Blog 19th February 202010th October 2023 blog_h4ck

PWK/OSCP Prep Discord Server ( https://discord.gg/ ) These are merely tools suggested by other users that are deemed “approved” for the exam. There will be some toolsContinue readingTools Allowed in OSCP

Wfuzz- The power of evil

OSCP Study material 26th January 202013th July 2021 blog_h4ck

WfFuzz is a web application brute forcer that can be considered an alternative to Burp Intruder as they both have some common features. It ́sContinue readingWfuzz- The power of evil

Pivoting and SSH Port forwarding Basics -Part 1

OSCP Study material, All Blog 23rd December 201923rd September 2021 blog_h4ck

First and foremost, what is SSH tunneling and how does it work? SSH tunneling is a technique that allows traffic to be routed through anContinue readingPivoting and SSH Port forwarding Basics -Part 1

RCE with log poisoning Attack Methodologies

OSCP Study material, All Blog 19th December 201913th July 2021 blog_h4ck

Some of the important log files are the following :- http://example.com/index.php?page=/var/log/apache/access.log http://example.com/index.php?page=/var/log/apache/error.log http://example.com/index.php?page=/var/log/nginx/access.log http://example.com/index.php?page=/var/log/nginx/error.log http://example.com/index.php?page=/var/log/vsftpd.log http://example.com/index.php?page=/var/log/sshd.log http://example.com/index.php?page=/var/log/auth http://example.com/index.php?page=/var/log/mail http://example.com/index.php?page=/var/log/httpd/error_log http://example.com/index.php?page=/usr/local/apache/log/error_log http://example.com/index.php?page=/usr/local/apache2/log/error_log It is important toContinue readingRCE with log poisoning Attack Methodologies

Msfvenom All in One cheatsheet

Linux privilege escalation, OSCP Study material 5th December 201913th July 2021 blog_h4ck

One of the most powerful utilities of Metasploit is its payload module. Its abilities are underutilized ( by the beginners ) mostly, due to lackContinue readingMsfvenom All in One cheatsheet

SUID Executables- Linux Privilege Escalation

Linux privilege escalation, OSCP Study material 27th November 201913th July 2021 blog_h4ck

Set User ID is a sort of permission which is assigned to a file and enables users to execute the file with the permissions ofContinue readingSUID Executables- Linux Privilege Escalation

Category: OSCP Study material