Cette page vous donne les différences entre la révision choisie et la version actuelle de la page.
oscp_pwk [2019/08/30 13:10] M0N5T3R créée |
oscp_pwk [2023/03/29 16:22] (Version actuelle) M0N5T3R |
||
---|---|---|---|
Ligne 1: | Ligne 1: | ||
- | https://github.com/0x4D31/awesome-oscp | + | **OSCP tools** |
+ | SPARTA is a python GUI application which simplifies network infrastructure penetration testing by aiding the penetration tester in the scanning and enumeration phase. It allows the tester to save time by having point-and-click access to his toolkit and by displaying all tool output in a convenient way. If little time is spent setting up commands and tools, more time can be spent focusing on analysing results. | ||
+ | https://sparta.secforce.com/ | ||
- | http://0xc0ffee.io/blog/OSCP-Goldmine | ||
+ | A reconnaissance tool made for the OSCP engagements to automate information gathering and service enumeration whilst creating a directory structure to store results, findings and exploits used for each host.. https://github.com/mikaelkall/massrecon | ||
- | https://github.com/nairuzabulhul/RoadMap | ||
- | https://www.netsecfocus.com/oscp/2019/03/29/The_Journey_to_Try_Harder-_TJNulls_Preparation_Guide_for_PWK_OSCP.html | + | A reconnaissance tool made for the OSCP labs to automate information gathering and service enumeration whilst creating a directory structure to store results, findings and exploits used for each host, recommended commands to execute and directory structures for storing loot and flags. https://github.com/codingo/Reconnoitre |
- | OSCP Review https://www.keiththome.com/oscp-course-review/ | ||
- | OSCP Prep http://www.abatchy.com/2017/03/how-to-prepare-for-pwkoscp-noob | + | The main goal for this script is to automate all of the process of recon/enumeration that is run every time, and instead focus our attention on real pen testing. https://github.com/rkhal101/nmapAutomator |
+ | |||
+ | |||
+ | |||
+ | |||
+ | JAWS is PowerShell script designed to help penetration testers (and CTFers) quickly identify potential privilege escalation vectors on Windows systems https://github.com/411Hall/JAWS | ||
+ | |||
+ | https://github.com/m8r0wn/nullinux | ||
+ | Nullinux is an internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB | ||
+ | |||
+ | Usefull list of Hacking Windows tools https://xz.aliyun.com/t/6498 | ||
+ | |||
+ | |||
+ | |||
+ | **OSCP notes** | ||
+ | |||
+ | https://github.com/sphinxs329/OSCP-PWK-Notes-Public | ||
+ | |||
+ | https://github.com/tbowman01/OSCP-PWK-Notes-Public | ||
+ | |||
+ | http://hackingandsecurity.blogspot.ca/2016/04/oscp-related-notes.html | ||
+ | |||
+ | |||
+ | https://oscp.infosecsanyam.in/ | ||
+ | |||
+ | |||
+ | http://sejalivre.org/OSCP/OSCP_Notes.html | ||
+ | |||
+ | https://securism.wordpress.com/oscp-notes-exploitation/ | ||
+ | |||
+ | https://securism.wordpress.com/oscp-notes-buffer-overflow/ | ||
+ | |||
+ | https://medium.com/@falconspy/useful-oscp-notes-commands-d71b5eda7b02 | ||
+ | |||
+ | https://github.com/hermit-hacker/OSCP-Study-Notes/find/master?q= | ||
+ | |||
+ | https://github.com/tagnullde/OSCP | ||
+ | |||
+ | |||
+ | OSCP Notes : https://github.com/kyawthiha7/oscp_notes | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | **OSCP Survival Guide** | ||
+ | |||
+ | https://github.com/Sturmrufer/OSCP-Survival-Guide_ | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | **Cheatsheets** | ||
+ | |||
+ | https://github.com/slyth11907/Cheatsheets | ||
+ | |||
+ | https://github.com/OlivierLaflamme/Cheatsheet-God | ||
+ | |||
+ | https://github.com/akenofu/OSCP-Cheat-Sheet | ||
+ | |||
+ | https://github.com/mohitkhemchandani/OSCP_BIBLE | ||
+ | |||
+ | |||
+ | **OSCP Tools** | ||
+ | |||
+ | https://github.com/cokebottle/oscp-tools | ||
+ | |||
+ | **OSCP preparation** | ||
+ | |||
+ | https://github.com/burntmybagel/OSCP-Prep | ||
+ | |||
+ | |||
+ | OSCP preparation - Buffer Overflows for OSCP https://appsecradar.net/posts/simplifying-buffer-overflows-for-oscp/ | ||
+ | https://github.com/V1n1v131r4/OSCP-Buffer-Overflow | ||
+ | |||
+ | OSCP preparation https://github.com/RihaMaheshwari/OSCP-Preparation-Material | ||
+ | |||
+ | OSCP Review | ||
+ | http://thor-sec.com/review/oscp/oscp_review/ | ||
+ | |||
+ | OSCP Review | ||
+ | https://h0mbre.github.io/OSCP/# | ||
+ | |||
+ | OSCP Review | ||
+ | https://www.offensive-security.com/testimonials-and-reviews/ | ||
+ | |||
+ | OSCP Review | ||
+ | https://www.youtube.com/watch?v=AwOEPI0KkCs | ||
+ | |||
+ | OSCP-Prep | ||
+ | https://github.com/yeahhub/OSCP-Prep | ||
+ | |||
+ | OSCP-like Vulnhub/HTB VMs | ||
+ | https://www.tiny.cc/OSCP_PREP/ | ||
+ | |||
+ | OSCP-like Vulnhub/HTB VMs - 2020 | ||
+ | https://docs.google.com/spreadsheets/u/1/d/1dwSMIAPIam0PuRBkCiDI88pU3yzrqqHkDtBngUHNCw8/htmlview# | ||
+ | |||
+ | |||
+ | |||
+ | OSCP-like Vulnhub/HTB VMs | ||
+ | https://www.abatchy.com/2017/02/oscp-like-vulnhub-vms | ||
+ | |||
+ | OSCP-like Vulnhub/HTB VMs | ||
+ | http://www.netmux.com/blog/purple-rain-attack | ||
+ | |||
+ | OSCP like VM for the exam (set of 5 VMs) | ||
+ | https://github.com/ajdumanhug/oscp-practice | ||
+ | |||
+ | |||
+ | OSCP-like HTB VMs writeup | ||
+ | https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA | ||
+ | |||
+ | USEFULL OSCP MATERIAL | ||
+ | http://futureoscp.blogspot.com/2017/10/usefull-oscp-material.html | ||
+ | |||
+ | |||
+ | |||
+ | How to prepare for PWK/OSCP, a noob-friendly guide | ||
+ | https://www.abatchy.com/2017/03/how-to-prepare-for-pwkoscp-noob | ||
+ | |||
+ | A curated list of awesome OSCP resources | ||
+ | https://github.com/0x4D31/awesome-oscp | ||
+ | |||
+ | OSCP-Goldmine | ||
+ | http://0xc0ffee.io/blog/OSCP-Goldmine | ||
+ | |||
+ | GitBook: OSCP RoadMap | ||
+ | https://github.com/nairuzabulhul/RoadMap | ||
+ | |||
+ | The Journey to Try Harder: TJnull’s Preparation Guide for PWK/OSCP | ||
+ | https://www.netsecfocus.com/oscp/2019/03/29/The_Journey_to_Try_Harder-_TJNulls_Preparation_Guide_for_PWK_OSCP.html | ||
+ | OSCP Handy Commands https://pastebin.com/VEHVMzc6 | ||
+ | A Detailed Guide on OSCP Preparation – From Newbie to OSCP | ||
+ | http://niiconsulting.com/checkmate/2017/06/a-detail-guide-on-oscp-preparation-from-newbie-to-oscp/ | ||
- | Detail Guide on OSCP http://niiconsulting.com/checkmate/2017/06/a-detail-guide-on-oscp-preparation-from-newbie-to-oscp/ | ||
- | OSCP like VMs http://www.netmux.com/blog/purple-rain-attack | + | OSCP Stack BOF Practice |
- | OSCP Stack BOF Practice https://www.vortex.id.au/2017/05/pwkoscp-stack-buffer-overflow-practice/ | + | https://www.vortex.id.au/2017/05/pwkoscp-stack-buffer-overflow-practice/ |
- | Centos 4.8 vm https://drive.google.com/open?id=1n24ZltpJHwG7i_zzdtjLnBEs9VcKhp5m | + | |
- | Precompile Exploits https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack | + | Precompile Exploits |
+ | https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack | ||
- | Enumeration for Linux https://github.com/Kabot/LinEnum | + | Enumeration for Linux |
+ | https://github.com/Kabot/LinEnum | ||
- | Web app fuzzing https://github.com/minimaxir/big-list-of-naughty-strings | + | Web app fuzzing |
+ | https://github.com/minimaxir/big-list-of-naughty-strings | ||
- | XSS Evasion list https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet | + | XSS Evasion list |
+ | https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet | ||
- | PHP webshells https://n0where.net/php-webshells | + | PHP webshells |
+ | https://n0where.net/php-webshells | ||
- | Create shells https://netsec.ws/?p=331 | + | Create shells |
+ | https://netsec.ws/?p=331 | ||
- | OSCP Cheat Sheets http://thor-sec.com/review/oscp/oscp_review/ | ||
- | Shell info / system enum https://www.ixsystems.com/blog/100-unix-commands-pen-testing-and-audit-part-3/ | + | Shell info / system enum |
+ | https://www.ixsystems.com/blog/100-unix-commands-pen-testing-and-audit-part-3/ | ||
- | OSCP FTP BOF Practice http://proactivedefender.blogspot.com/2013/05/understanding-buffer-overflows.html?m=1 | + | OSCP FTP BOF Practice |
+ | http://proactivedefender.blogspot.com/2013/05/understanding-buffer-overflows.html?m=1 | ||
- | Holy bible for exploit shortcut https://guif.re/ | + | Holy bible for exploit shortcut |
+ | https://guif.re/ | ||
- | great video series for walkthroughs https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA | + | great video series for walkthroughs |
+ | https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA | ||