A collection of OffSec PG labs, HTB Labs and HTB prob labs I used for OSCP preparation.
It is a partial combination of Lainkusanagi OSCP Like and NetSecFocus Trophy Room with extra boxes.
NOTE: As required by OffSec this repo will not contain actual writeups.
Use this as a check list or reference for OSCP.
A writeup template is included, feel free to download and use it to document each box.
A README template is also included, use it to track progress.
For HTB write-ups please visit: https://github.com/Ch4os1/WriteUps-HTB
| Category | Completed | Progress |
|---|---|---|
| 🟢 Easy - PGP | 8 / 8 | ██████████ 100% |
| 🟡 Intermediate - PGP | 29 / 29 | ██████████ 100% |
| 🔴 Hard - PGP | 31 / 31 | ██████████ 100% |
| 🤯 Very Hard - PGP | 22 / 22 | ██████████ 100% |
| 🔵 AD - PGP | 8 / 8 | ██████████ 100% |
| ⛓️💥 Chains (Mini Prolab on HTB) | 6 / 6 | ██████████ 100% |
| 🟩 Additional Practice - Windows Based (HTB) | 0 / 3 | |
| 🟩 Additional Practice - SQLi Focused Boxes (Mixed Platform) | 0 / 7 | |
| 🟩 Additional Practice - Web Focused Boxes (Mixed Platform) | 0 / 10 | |
| 🟩 Additional Practice - Phishing Focused Boxes (Mixed Training) | 0 / 2 | |
| 🟩 Additional Practice - Linux Based (PGP) | 0 / 17 | |
| Total: 137 Standalone + 6 Chains | 143 |
Boxes that's marked with difficulties and AD boxes are all from PGP as it close to the exam style. And its collected from NetSecFocus Trophy Room andLainkusanagi OSCP Like
Chains, additional practice and targeted training are mixed from both PGP and HTB. It's more so to practice a single vector.
Chains aka Mini Prolabs are a good way to practice for AD portion of OSCP. The chains referenced are 2 to 3 machines joined AD domain. I would also recommend doing Dante, Zephyr if you want to get a good understanding of AD overall.
It is difficult to determine when ones ready for the exam since everyone is different, the best way is to do enough practice that you feel confident when tackling a box or a set of boxes.
In additional practice will expose you to more vulnerabilities/techniques which hopefully gives you enough width and depth for the exam.
Prior to OSCP I've passed CPTS if you are curious about the prep I did check out the check list here: https://github.com/Ch4os1/WriteUps-HTB
Click to expand
Linux
- Levram (Completed)
- Gaara (Completed)
- ClamAV (Completed)
- Crane (Completed)
- Hub (Completed)
Windows
- Kevin (Completed)
- Internal (Completed)
- Algernon (Completed)
Click to expand
Linux
- Pelican (Completed)
- Payday (Completed)
- Snookums (Completed)
- Bratarina (Completed)
- Nibbles (Completed)
- ZenPhoto (Completed)
- Cockpit (Completed)
- Extplorer (Completed)
- Walla (Completed)
- Sorcerer (Completed)
- Astronaut (Completed)
- Bullybox (Completed)
- Exfiltrated (Completed)
- QuackerJack (Completed)
- Wombo (Completed)
- Flu (Completed)
- Mzeeav (Completed)
- Ochima (Completed)
- SpiderSociety (Completed)
- FunboxEasyEnum (Completed)
- Loly (Completed)
- Potato (Completed)
- Law (Completed)
- RubyDome (Completed)
- Pwned1 (Completed)
- Geisha (Completed)
- Twiggy (Completed)
- Zino (Completed)
Windows
- Slort (Completed)
Click to expand
Linux
- Pebbles (Completed)
- Nukem (Completed)
- Sybaris (Completed)
- Peppo (Completed)
- Fanatasitc (Completed)
- Roquefort (Completed)
- LaVita (Completed)
- Xposedapi (Completed)
- Fired (Completed)
- Vmdak (Completed)
- Zab (Completed)
- Amaterasu (Completed)
- Stapler (Completed)
- Blogger (Completed)
- Blackgate (Completed)
- InsantiyHosting (Completed)
- Exghost (Completed)
- Muddy (Completed)
Windows
- Jacko (Completed)
- Craft (Completed)
- Squid (Completed)
- Nickel (Completed)
- MedJed (Completed)
- Billyboss (Completed)
- Shenzi (Completed)
- AuthBy (Completed)
- DVR4 (Completed)
- Mice (Completed)
- Fish (Completed)
AD
- Hutch (Completed)
- Vault (Completed)
Click to expand
Linux
- Hetemit (Completed)
- Clue (Completed)
- Postfish (Completed)
- Hawat (Completed)
- Apex (Completed)
- Hunit (Completed)
- Readys (Completed)
- Marketing (Completed)
- Zipper (Completed)
- Scrutiny(Completed)
- SPX (Completed)
- Mantis (Completed)
- BitForge (Completed)
- WallpaperHub (Completed)
Windows
- Hepet (Completed)
- Monster (Completed)
AD
- Access (Completed)
- Resourced (Completed)
- Nagoya (Completed)
- Hokkaido (Completed)
- Nara (Completed)
- Heist (Completed
Click to expand
- POO (Completed)
- Heron (Completed)
- Tengu (Completed)
- Trusted (Completed)
- Reflection (Completed)
- Intercept (Completed)
Click to expand
More on Windows - HTB (0/3)
- Markup - Easy
- Heist - Easy
- Eighteen - Easy
More on SQLi (0/7)
- Europa - HTB
- Sneaky - HTB
- Writeup - HTB
- Cronos - HTB
- Jarvis - HTB
- Sea - PGP
- Robust - PGP
More on Web Attack (0/10)
- Giddy - HTB
- MonitorsFour - HTB
- MonitorsThree - HTB
- Aragog - HTB
- Love - HTB
- Bounty - HTB
- Katana - PGP
- Booleann - PGP
- Codo - PGP
- Plum - PGP
More on Phishing (0/2)
- Job - HTB
- SneakyMailer - HTB
More on Linux Based - PGP (0/17)
- Image
- Press
- Workaholic
- PyLoader
- Jordak
- CVE-2023-6019
- Election 1
- Monitoring
- Vegeta 1
- SoSimple
- DC-9
- Tre
- Seppuku
- FunBox
- DriftingBlue6
- Sams
- BRTSys2.1
Additional Chains (HTB Prolabs and Mini ProLabs)
- Dante - Completed
- Zephyr - Completed
- Offshore - 20% Completed
- Ascension - Post OSCP practice
- Hades - Post OSCP practice for OSEP or CAPE
- Kaiju - Heavy on evasion (out side of scope)
- Sidecar - Heavy on evasion (out side of scope)
- Body of Knowledge - OSCP
- Exam Guide - Read before exam
- Exam Restrictions