admin

OSCP Proctored Exam Setup Checklist (2026): Disable Shared Clipboard, Drag-and-Drop & Shared Folders

by
OSCP VM lockdown checklist

OSCP Proctored Exam Environment Lockdown Three toggles. Two minutes of fail-tests. One calm check-in. This checklist is for the night-before moment when “Disabled” still feels like a guess—and guessing is what makes your hands shake at check-in. The problem isn’t skill. It’s uncertainty: shared clipboard, drag-and-drop, and shared folders can quietly stay available in VirtualBox … Read more

OSCP AD Enumeration Without BloodHound: A PowerView “ACLScanner → Proof → Pivot” Practice Loop

by
OSCP AD enumeration without BloodHound

Manual Active Directory Enumeration: The ACLScanner → Proof → Pivot Method When BloodHound is off-limits, AD doesn’t get “harder”—it gets noisier. The graph vanishes, and suddenly you’re staring at Windows output like it’s weather. If you’re doing OSCP AD enumeration without BloodHound, the real problem isn’t missing a tool. It’s losing a rhythm: what to … Read more

OSCP File Upload Bypass Checklist (Burp-Focused): Why Your Payload Never Reaches the Server

by
OSCP file upload bypass checklist

The Silent-Failure Zone: OSCP File Upload Bypass Most attempts fail because the backend never receives a real file. Stop guessing and start proving. This workflow is for the moments when the UI flashes green and Burp shows a 200, but your payload disappears like it hit drywall. Before you tweak extensions, verify the request shape, … Read more

Obsidian OSCP Notes: Turn Nmap XML Into a One-Page Host Snapshot (Template + Workflow)

by
Obsidian OSCP host template

Beyond the Scan: Mastering the One-Page OSCP Workflow If your Obsidian notes feel “full” but still don’t tell you what to do next, the problem isn’t Nmap—it’s shape. Raw scan data is honest, but it’s not readable when you’re tired. When you can’t retrieve that SMB host from two days ago, you don’t just lose … Read more

OSCP+ Points Blueprint: Turn Every Lab Box Into a 10-Point “Initial Access” Checklist

by
OSCP initial access checklist

Ten points. One target. Zero “I swear it worked last night.” If you’ve ever “owned” a lab box and then couldn’t recreate the path the next day without improvising, your problem isn’t intelligence—it’s a workflow that doesn’t survive fatigue. In OSCP/OSCP+ practice, that gap quietly burns time, confidence, and (when it matters) scorable proof. Keep … Read more

OSCP+ Pivoting Tool Choice: TUN (Ligolo-NG) vs SOCKS (Chisel) vs Transparent Proxy (sshuttle) — Which Fits Your Target Mix?

by
OSCP pivoting tool choice

Mastering the OSCP+ Pivot: Precision Over Guesswork The fastest way to lose half a day in an OSCP+ lab isn’t failing an exploit—it’s building a pivot that “works” for a browser and quietly breaks everything else. That pain has a shape: mixed traffic (HTTP + SMB/AD + RDP/WinRM), proxy-ignorant tools, and DNS behaving like a … Read more

Obsidian OSCP Enumeration Template (Per-Service) — SMB/HTTP/FTP Cards That Don’t Repeat Commands

by
Obsidian OSCP Enumeration Template

Obsidian OSCP Enumeration Template Most OSCP notes don’t fail because you “forgot a command.” They fail because, the next day, you can’t recreate what you proved—and your confidence turns into rework. This template is built for that exact moment: you’re tired, timeboxed, and one missing breadcrumb quietly costs you an hour. Keep guessing, and you … Read more

Kioptrix No IP Address in VirtualBox (Host-Only): The PCnet-PCI II Fix + Reset Checklist (2026)

by
Kioptrix VirtualBox host-only no IP

Troubleshooting Kioptrix: No IP Address in VirtualBox (Host-Only) If you’ve burned 20–45 minutes watching a Kioptrix VM boot perfectly—then sit there with no lease, no target, no IP—you already know the worst part: VirtualBox makes a broken Host-Only setup look “fine.” This guide fixes Kioptrix no IP address in VirtualBox (Host-Only) the reliable way: one … Read more

Kioptrix Level 1 Without Metasploit: Samba trans2open (CVE-2003-0201) Exploit Research + Validation

by
Kioptrix Level 1 Without Metasploit

Beyond the Banner: A Disciplined Approach to Kioptrix Level 1 The fastest way to fail a “simple” box is to treat a Samba banner like a contract—and a random PoC like a magic spell. Kioptrix Level 1 Without Metasploit is where that illusion dies: the version looks old, the exploit link looks tempting, and then … Read more

OSCP Rabbit Hole Rule: The 20-Minute Enumeration Timebox (With a Reset Checklist)

by
OSCP Rabbit Hole Rule

The OSCP Rabbit Hole Rule The rule is simple and brutal: time is a vulnerability, and it will be exploited—by indecision. One “quick scan” becomes a museum of terminal output, and somehow you’re farther from a foothold than when you started. Definition: A 20-minute enumeration timebox that forces a decision at the buzzer. Run a … Read more