OSCP Journey – Week 4

Unfortunately I didn’t finish the course material this past week as I had originally planned. I have about 100 pages left, which should be manageable to finish this coming week. Primarily the past week was spent on attacking Web Applications and starting to get into password cracking. Web Applications are fairly interesting to attack since they can be a good vector to get inside of a system. SQL Injection (SQLi), Local File Inclusion (LFI), and Remote File Inclusion (RFI) are all definitely entertaining in their own way when you get that root shell. I also found a nice writeup on getting a shell with sqlmap here.

Course Pages: 282 / 380

Lab Shells Popped: 0