TL;DR [^]

• Join Infosec Prep Discord server
• Create a methodology and remember it should evolve as you learn new stuff
• Create a documentation strategy and stick to it throughout your learning journey
• Learn and practice Buffer Overflow and Privilege Escalation techniques, own OSCPlike HackTheBox|TryHackMe|VulnHub machines
• Register for PWK → own the lab → read exam guide → own the exam

Read/Watch/Follow [^]

• @0xdf_: writeups
• @0xfalconspy: review
• @bond006_5: review, writeups
• @curlXx_: writeups
• @ippsec: playlist, search
• @joehelle: review, writeups
• @rana__khalil: review, writeups
• @sabebarker: writeups
• @thecybermentor: courses, playlists
• @TibSec: courses, review
• @TJ_Null: review, prepguide

Do [^]

Documentation

• OSCP - Taking Notes & Resources
• OSCP-MarkdownReportingTemplates
• OSCP-Exam-Report-Template-Markdown

Buffer Overflow

• Buffer Overflow Prep + Stack Based Buffer Overflow Prep

Privilege Escalation

• Linux Privilege Escalation for OSCP & Beyond! + Linux PrivEsc
• Windows Privilege Escalation for OSCP & Beyond! + Windows PrivEsc

Machines

• NetSecFocus Trophy Room
• Offensive Pentesting Learning Pathway
• oscp-practice (HackTheBox and TryHackMe machines)

Resources [^]

machinescli

This tool provides commandline access for HackTheBox, TryHackMe and VulnHub machines.

svachal

This tool provides an automation framework for machine writeups.

gsheet

This gsheet lists OSCPlike HackTheBox, TryHackMe and VulnHub machines curated from various sources.

notes

These are stats, TTPs and trend graphs created using metadata from completed OSCPlike machine writeups. The writeups.pdf file is a collection of all writeups and killchains.pdf is a collection of killchains (visual summaries). Blogpost entries listed below serve as online documentation for these writeups.

github:

files:

• killchains.pdf (sha256:0314dbed340e2a0c4e774c274ec4190f11e02560ef52ab33801430ef98466960)
• writeups.pdf (sha256:b428533d50331b3e0192e6d0166dd4c1a65313f7bc5e7055c02b0f4e023631e6)

writeups: