When people heard OSCP, they think the exam like a beast or a monster which will tear them apart. Yes, i did think like them in the past but with proper preparation, any beast or exam can be defeated. I took oscp exam on 27th August 2020 and passed on 31st August 2020. Today i will share you about my experience in the OSCP journey.
What is OSCP?
OSCP (called Offensive Security Certified Professional) is a well known certification in Cyber Security. It is famous for its 100% hands on exam which is really quite challenging. The exam duration is 24 hour(precisely 23 hour & 45 minute). In the exam, you have to do penetration testing on 5 boxes (means 5 computer servers),so the timing is also very important.If you want to know details about oscp, you can google it cuz i’m not going to explain in details.
Before doing OSCP, i spent most of my time solving the netsecfocus OSCP like machines from vulnhub and hackthebox. I completed 85% of the machines. Then I decided to purchase the OSCP course on june 27 and got access to labs and materials on july 5. In 20 days, I solved 35 machines from oscp labs including the big 4 which are considered to be difficult but not much difficult as hackthebox hard machines :C . Then i worried about my windows privilege escalation skill and decided to purchase the Tib3rius’s windows privilege escalation course which is really good for beginners.I did that course and just went roughly through the tryhackme oscp learning path. Then i decided to schedule my exam date on 27th August and relax my mind for 5 days before the exam.
For netsecfocus OSCP like machines
Tib3rius’s windows privilege escalation course
Tryhackme OSCP path
I scheduled my time at 7:30 am. A morning time is refreshing and is the best time to start. Due to my poor internet connection, i started at 7:50 am. The internet connection is very important for this exam. The exam is proctored. The proctorer checked the passport for identification and i had to show around the room, under the desk as they asked. I had to screenshare and allowed access protector to my webcam. So i recommend to check the screensharing and webcam before taking exam. As usual i did all the scanning on all boxes while doing bufferoverflow. Before starting exam, I started my windows 7 virutal box on my kali for preparation but it turned out to be very disadvantageous. My laptop was super slow and laggy. I was nervous bcuz of time late and the immunity dubugger was very laggy on my machine. Due to nervous,i made mistakes. I did the bufferoverflow patiently and after one and a half hours i got the flag. Then i saw my masscan did not get any output from one of the machines. I decided to scan it again and then my laptop got hanged. I had to restart my laptop in hurry and emailed the OSCP support about my problems. I reconnected to the exam panel and told about my problems. Then i resumed my exam but sadly i did not output any scan results. So, i decided to scan and did the boxes one after one. At sharp 1:30 pm, I had done 4 boxes and decided to get lunch. After lunch, i decided to do the reporting first because i’m bad at reporting and worried about my screenshots. After checking my report several times and i ended my exam. In the next morning, I submitted my report and got my exam result on 31st August. I passed the OSCP exam on my 1st attempt.
Tips on taking OSCP exam
- Enumeration is the key [ Once you got access to OSCP student forum, i recommend to read the Alpha & Beta writeups ]
- Taking screenshots as many as you can
- Practise reporting
- Practise boxes without writeups
- Don’t get very nervous if something happens
- Proper Preparation
- Good Laptop, best internet and a good chair
- “Try Harder”
- “Practice makes perfect”
- “Every battle is won before it is fought”