Abstract image of a woman sitting on books and studying on a laptop

My pwk & oscp journey

M.Syarifudin, ST, OSCP, OSWP , profile picture
M.Syarifudin, ST, OSCP, OSWP

This document outlines the author's journey to obtain the OSCP (Offensive Security Certified Professional) certification. It discusses completing the PWK (Penetration Testing with Kali Linux) training course, which includes learning materials, lab exercises, and penetration testing internal labs and exam servers. The author emphasizes focusing on each step, never giving up, and finishing the internal labs and exercises before taking the exam. The certification process involves penetration testing targets in the exam environment within a 24-hour period to achieve a minimum of 70 points.

Education
1 of 14
Downloaded 173 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
PWK & OSCP JOURNEY OF MINE Created by : Syarif | @fl3xu5 August 27, 2015 1
What’s That ? ★ About PWK & OSCP ★ The Online Training Workflow ★ My Journey to Obtain the OSCP ★ Lesson learned / Tips 2
About PWK & OSCP • PWK ( Penetration Testing with Kali Linux) is a Penetration Testing Course created by Offensive Security • OSCP ( Offensive Security Certified Professional ) is The Certification for PWK • More information : • https://www.offensive-security.com/information-security- training/penetration-testing-training-kali-linux/ • https://www.offensive-security.com/information-security- certifications/oscp-offensive-security-certified-professional/ • https://www.offensive-security.com/faq/ 3
The Online Training Workflow Register & Download PWK Materials Connect to the Offsec Labs The OSCP Certification 4
My PWK & OSCP Journey Learning the PWK Materials 5 Doing the Lab Exercises Writing the PWK Report Penetration Testing the Exam Servers Penetration Testing the Internal Labs
Learning the PWK Materials • PWK Materials Contain of : • 149 PWK Videos • 350 Pages of PWK .pdf Guide • Learn the Materials ( Videos .pdf ) • Practice them ( Hands-on ) • Write a “Study Notes” on the Keepnote 6
Doing the Lab Exercises • Do all of the Lab Exercises Correctly • Write the Results on the Keepnote 7
Penetration Testing the Internal Labs • Offensive Security Team will give : • A Lab Connectivity Guide + a VPN Credential • Kali Linux VM Image • PWK Report Template • Connect to the Labs through VPN • Use that VM to Pentest the Internal Lab • ONLY for Penetration Testing • Don’t Update the Metasploit / others Software 8
Penetration Testing the Internal Labs • Hack all of the Target Machines • Write the Walkthrough Completely • Take the Screenshot and Grab the Proof files • Write the Pentest Report on the Keepnote 9
Penetration Testing the Exam Servers • About the Challenge ( Exam ) : • 24 Hours Exam Time • Minimum 70 Points Total to Pass • Submit “PWK Report” within Next 24 Hours • Read the Exam Guide Carefully 10
Penetration Testing the Exam Servers • Connect to the OSCP Exam Lab through VPN • Hack the Target machines with the Highest Points first • Write the Walkthrough Completely • Take the Screenshot and Grab the Proof files • Write the Pentest Report on the Keepnote 11
Writing the PWK Report • Compiling the Report ( Keepnote PWK Report ) • The PWK Report contains of : • All of the Lab Exercises • Internal Lab Pentest Report • Exam Pentest Report 12
Lesson Learned & Tips • Always Praying to the God • Focus on Each Steps of the Journey • Keep Calm & Never Give Up • Use Offensive Security Motto : “Try Harder” • Finish the Internal Labs & the Lab Exercises Report before Taking the Exam 13
References : • https://www.offensive-security.com/information- security-training/penetration-testing-training-kali-linux/ • https://www.offensive-security.com/information- security-certifications/oscp-offensive-security- certified-professional/ • https://www.offensive-security.com/faq/ • https://www.offensive-security.com/offsec/say-try- harder/

More Related Content

PDF
Oscp preparation
Manich Koomsusi
 
PPTX
Oscp - Journey
Vandana Verma
 
ODP
Automating OWASP ZAP - DevCSecCon talk
Simon Bennetts
 
ODP
2014 ZAP Workshop 2: Contexts and Fuzzing
Simon Bennetts
 
PDF
When the internet bleeded : RootConf 2014
Anant Shrivastava
 
PDF
Intro to DefectDojo at OWASP Switzerland
Matt Tesauro
 
ODP
OWASP WTE - Now in the Cloud!
Matt Tesauro
 
PPTX
The OWASP Zed Attack Proxy
Aditya Gupta
 
Oscp preparation
Manich Koomsusi
 
Oscp - Journey
Vandana Verma
 
Automating OWASP ZAP - DevCSecCon talk
Simon Bennetts
 
2014 ZAP Workshop 2: Contexts and Fuzzing
Simon Bennetts
 
When the internet bleeded : RootConf 2014
Anant Shrivastava
 
Intro to DefectDojo at OWASP Switzerland
Matt Tesauro
 
OWASP WTE - Now in the Cloud!
Matt Tesauro
 
The OWASP Zed Attack Proxy
Aditya Gupta
 

What's hot (20)

ODP
2014 ZAP Workshop 1: Getting Started
Simon Bennetts
 
ODP
BSides Manchester 2014 ZAP Advanced Features
Simon Bennetts
 
PPTX
Zap vs burp
Tomasz Fajks
 
ODP
OWASP 2015 AppSec EU ZAP 2.4.0 and beyond..
Simon Bennetts
 
ODP
OWASP 2013 APPSEC USA Talk - OWASP ZAP
Simon Bennetts
 
PDF
Automated Security Testing
seleniumconf
 
ODP
JavaOne 2014 Security Testing for Developers using OWASP ZAP
Simon Bennetts
 
ODP
BlackHat 2014 OWASP ZAP Turbo Talk
Simon Bennetts
 
PDF
Virtual Security Lab Setup - OWASP Broken Web Apps, Webgoat, & ZAP
Michael Coates
 
PDF
Owasp tds
snyff
 
ODP
JoinSEC 2013 London - ZAP Intro
Simon Bennetts
 
ODP
OWASP Zed Attack Proxy Demonstration - OWASP Bangalore Nov 22 2014
gmaran23
 
PDF
“Sensu and Sensibility” - The Story of a Journey From #monitoringsucks to #mo...
Puppet
 
PDF
[OWASP Poland Day] Security knowledge framework
OWASP
 
ODP
OWASP 2014 AppSec EU ZAP Advanced Features
Simon Bennetts
 
ODP
OWASP 2013 APPSEC USA ZAP Hackathon
Simon Bennetts
 
ODP
OWASP 2013 AppSec EU Hamburg - ZAP Innovations
Simon Bennetts
 
PDF
The Final Frontier, Automating Dynamic Security Testing
Matt Tesauro
 
PDF
N Different Strategies to Automate OWASP ZAP - OWASP APPSec BUCHAREST - Oct 1...
gmaran23
 
PDF
[OWASP Poland Day] A study of Electron security
OWASP
 
2014 ZAP Workshop 1: Getting Started
Simon Bennetts
 
BSides Manchester 2014 ZAP Advanced Features
Simon Bennetts
 
Zap vs burp
Tomasz Fajks
 
OWASP 2015 AppSec EU ZAP 2.4.0 and beyond..
Simon Bennetts
 
OWASP 2013 APPSEC USA Talk - OWASP ZAP
Simon Bennetts
 
Automated Security Testing
seleniumconf
 
JavaOne 2014 Security Testing for Developers using OWASP ZAP
Simon Bennetts
 
BlackHat 2014 OWASP ZAP Turbo Talk
Simon Bennetts
 
Virtual Security Lab Setup - OWASP Broken Web Apps, Webgoat, & ZAP
Michael Coates
 
Owasp tds
snyff
 
JoinSEC 2013 London - ZAP Intro
Simon Bennetts
 
OWASP Zed Attack Proxy Demonstration - OWASP Bangalore Nov 22 2014
gmaran23
 
“Sensu and Sensibility” - The Story of a Journey From #monitoringsucks to #mo...
Puppet
 
[OWASP Poland Day] Security knowledge framework
OWASP
 
OWASP 2014 AppSec EU ZAP Advanced Features
Simon Bennetts
 
OWASP 2013 APPSEC USA ZAP Hackathon
Simon Bennetts
 
OWASP 2013 AppSec EU Hamburg - ZAP Innovations
Simon Bennetts
 
The Final Frontier, Automating Dynamic Security Testing
Matt Tesauro
 
N Different Strategies to Automate OWASP ZAP - OWASP APPSec BUCHAREST - Oct 1...
gmaran23
 
[OWASP Poland Day] A study of Electron security
OWASP
 
Ad

Viewers also liked (7)

PDF
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Information gath
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Social Network Security & Backdooring email
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Wireless LAN Security-Bimtek Kominfo
M.Syarifudin, ST, OSCP, OSWP
 
PDF
Prepare Yourself to Become Infosec Professional
M.Syarifudin, ST, OSCP, OSWP
 
PDF
IPTV Security
M.Syarifudin, ST, OSCP, OSWP
 
PDF
iCrOSS 2013_Pentest
M.Syarifudin, ST, OSCP, OSWP
 
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
Information gath
M.Syarifudin, ST, OSCP, OSWP
 
Social Network Security & Backdooring email
M.Syarifudin, ST, OSCP, OSWP
 
Wireless LAN Security-Bimtek Kominfo
M.Syarifudin, ST, OSCP, OSWP
 
Prepare Yourself to Become Infosec Professional
M.Syarifudin, ST, OSCP, OSWP
 
IPTV Security
M.Syarifudin, ST, OSCP, OSWP
 
iCrOSS 2013_Pentest
M.Syarifudin, ST, OSCP, OSWP
 
Ad

Similar to My pwk & oscp journey (12)

PDF
OSCP Preparation Guide @ Infosectrain
InfosecTrain
 
PDF
OSCP Preparation Guide @ Infosectrain
InfosecTrain
 
DOCX
Unlocking Your Cybersecurity Potential with OSCP Certification (1).docx
Oscp Training
 
PDF
Penetration Testing With Kali Linux V101 Offensive Security
shileyluisda
 
PDF
Advanced-Penetration-TestinAPT With KALI Linux Course Content.pdf
Mansi Kandari
 
PDF
Advanced-Penetration-Testing_course_content
priyanshamadhwal2
 
PDF
ADVANCED PENETRATION TESTING.pdf
Cert Hippo
 
PDF
offsec PEN-200 12 week learning plan.pdf
yimigi3533
 
PDF
offsec PEN-200 12 week learning plan.pdf
yimigi3533
 
PDF
offsec PEN-200 12 week learning plan.pdf
yimigi3533
 
DOCX
Master PEN-200 Penetration Testing with Kali Linux_ A Complete Guide.docx
Oscp Training
 
DOCX
Master PEN-200 Penetration Testing with Kali Linux_ A Complete Guide (1).docx
Oscp Training
 
OSCP Preparation Guide @ Infosectrain
InfosecTrain
 
OSCP Preparation Guide @ Infosectrain
InfosecTrain
 
Unlocking Your Cybersecurity Potential with OSCP Certification (1).docx
Oscp Training
 
Penetration Testing With Kali Linux V101 Offensive Security
shileyluisda
 
Advanced-Penetration-TestinAPT With KALI Linux Course Content.pdf
Mansi Kandari
 
Advanced-Penetration-Testing_course_content
priyanshamadhwal2
 
ADVANCED PENETRATION TESTING.pdf
Cert Hippo
 
offsec PEN-200 12 week learning plan.pdf
yimigi3533
 
offsec PEN-200 12 week learning plan.pdf
yimigi3533
 
offsec PEN-200 12 week learning plan.pdf
yimigi3533
 
Master PEN-200 Penetration Testing with Kali Linux_ A Complete Guide.docx
Oscp Training
 
Master PEN-200 Penetration Testing with Kali Linux_ A Complete Guide (1).docx
Oscp Training
 

Recently uploaded (20)

PDF
English Textual Question & Ans (12th Class).pdf
javaidpaswal33
 
PDF
M.Tech in Aerospace Engineering | BIT Mesra
BIT Mesra
 
PDF
Journal of Dental Science - UDMY (2021).pdf
Nay Aung
 
PDF
MBA _Common_ 2nd year Syllabus _2021-22_.pdf
DrAnubha4
 
PPTX
Module on health assessment of CHN. pptx
GurdeepSingh626704
 
PDF
HVAC Specification 2024 according to central public works department
amitrobanipl
 
PDF
Environmental Education MCQ BD2EE - Share Source.pdf
Dr Raja Mohammed T
 
PDF
My India Quiz Book_20210205121199924.pdf
AtandraDey2
 
PDF
LEARNERS WITH ADDITIONAL NEEDS ProfEd Topic
Johnlloyd489543
 
PDF
Myanmar Dental Journal, The Journal of the Myanmar Dental Association (2013).pdf
Nay Aung
 
PPTX
ELIAS-SEZIURE AND EPilepsy semmioan session.pptx
eyoba2172
 
PDF
Climate and Adaptation MCQs class 7 from chatgpt
AkashDTejwani
 
PDF
CRP102_SAGALASSOS_Final_Projects_2025.pdf
City and Regional Planning, METU
 
PPTX
Core Concepts of Personalized Learning and Virtual Learning Environments
Dr. Bushra Sumaiya
 
PDF
1.Salivary gland disease.pdf 3.Bleeding and Clotting Disorders.pdf important
MichaelShawky5
 
PPTX
Education and Perspectives of Education.pptx
Central University of South Bihar, Gaya, Bihar
 
PDF
Civil Department's presentation Your score increases as you pick a category
OperaVill
 
PDF
semiconductor packaging in vlsi design fab
KarpoorasundariK
 
PDF
FORM 1 BIOLOGY MIND MAPS and their schemes
arcade5
 
PDF
LIFE & LIVING TRILOGY - PART - (2) THE PURPOSE OF LIFE.pdf
sureshkumarsoni26
 
English Textual Question & Ans (12th Class).pdf
javaidpaswal33
 
M.Tech in Aerospace Engineering | BIT Mesra
BIT Mesra
 
Journal of Dental Science - UDMY (2021).pdf
Nay Aung
 
MBA _Common_ 2nd year Syllabus _2021-22_.pdf
DrAnubha4
 
Module on health assessment of CHN. pptx
GurdeepSingh626704
 
HVAC Specification 2024 according to central public works department
amitrobanipl
 
Environmental Education MCQ BD2EE - Share Source.pdf
Dr Raja Mohammed T
 
My India Quiz Book_20210205121199924.pdf
AtandraDey2
 
LEARNERS WITH ADDITIONAL NEEDS ProfEd Topic
Johnlloyd489543
 
Myanmar Dental Journal, The Journal of the Myanmar Dental Association (2013).pdf
Nay Aung
 
ELIAS-SEZIURE AND EPilepsy semmioan session.pptx
eyoba2172
 
Climate and Adaptation MCQs class 7 from chatgpt
AkashDTejwani
 
CRP102_SAGALASSOS_Final_Projects_2025.pdf
City and Regional Planning, METU
 
Core Concepts of Personalized Learning and Virtual Learning Environments
Dr. Bushra Sumaiya
 
1.Salivary gland disease.pdf 3.Bleeding and Clotting Disorders.pdf important
MichaelShawky5
 
Education and Perspectives of Education.pptx
Central University of South Bihar, Gaya, Bihar
 
Civil Department's presentation Your score increases as you pick a category
OperaVill
 
semiconductor packaging in vlsi design fab
KarpoorasundariK
 
FORM 1 BIOLOGY MIND MAPS and their schemes
arcade5
 
LIFE & LIVING TRILOGY - PART - (2) THE PURPOSE OF LIFE.pdf
sureshkumarsoni26
 

My pwk & oscp journey

  • 1. PWK & OSCP JOURNEY OF MINE Created by : Syarif | @fl3xu5 August 27, 2015 1
  • 2. What’s That ? ★ About PWK & OSCP ★ The Online Training Workflow ★ My Journey to Obtain the OSCP ★ Lesson learned / Tips 2
  • 3. About PWK & OSCP • PWK ( Penetration Testing with Kali Linux) is a Penetration Testing Course created by Offensive Security • OSCP ( Offensive Security Certified Professional ) is The Certification for PWK • More information : • https://www.offensive-security.com/information-security- training/penetration-testing-training-kali-linux/ • https://www.offensive-security.com/information-security- certifications/oscp-offensive-security-certified-professional/ • https://www.offensive-security.com/faq/ 3
  • 4. The Online Training Workflow Register & Download PWK Materials Connect to the Offsec Labs The OSCP Certification 4
  • 5. My PWK & OSCP Journey Learning the PWK Materials 5 Doing the Lab Exercises Writing the PWK Report Penetration Testing the Exam Servers Penetration Testing the Internal Labs
  • 6. Learning the PWK Materials • PWK Materials Contain of : • 149 PWK Videos • 350 Pages of PWK .pdf Guide • Learn the Materials ( Videos .pdf ) • Practice them ( Hands-on ) • Write a “Study Notes” on the Keepnote 6
  • 7. Doing the Lab Exercises • Do all of the Lab Exercises Correctly • Write the Results on the Keepnote 7
  • 8. Penetration Testing the Internal Labs • Offensive Security Team will give : • A Lab Connectivity Guide + a VPN Credential • Kali Linux VM Image • PWK Report Template • Connect to the Labs through VPN • Use that VM to Pentest the Internal Lab • ONLY for Penetration Testing • Don’t Update the Metasploit / others Software 8
  • 9. Penetration Testing the Internal Labs • Hack all of the Target Machines • Write the Walkthrough Completely • Take the Screenshot and Grab the Proof files • Write the Pentest Report on the Keepnote 9
  • 10. Penetration Testing the Exam Servers • About the Challenge ( Exam ) : • 24 Hours Exam Time • Minimum 70 Points Total to Pass • Submit “PWK Report” within Next 24 Hours • Read the Exam Guide Carefully 10
  • 11. Penetration Testing the Exam Servers • Connect to the OSCP Exam Lab through VPN • Hack the Target machines with the Highest Points first • Write the Walkthrough Completely • Take the Screenshot and Grab the Proof files • Write the Pentest Report on the Keepnote 11
  • 12. Writing the PWK Report • Compiling the Report ( Keepnote PWK Report ) • The PWK Report contains of : • All of the Lab Exercises • Internal Lab Pentest Report • Exam Pentest Report 12
  • 13. Lesson Learned & Tips • Always Praying to the God • Focus on Each Steps of the Journey • Keep Calm & Never Give Up • Use Offensive Security Motto : “Try Harder” • Finish the Internal Labs & the Lab Exercises Report before Taking the Exam 13
  • 14. References : • https://www.offensive-security.com/information- security-training/penetration-testing-training-kali-linux/ • https://www.offensive-security.com/information- security-certifications/oscp-offensive-security- certified-professional/ • https://www.offensive-security.com/faq/ • https://www.offensive-security.com/offsec/say-try- harder/