Tuesday, 21 March 2023

OSCP / OSWP Certificate Pentests - Intro

Information

  • OSCP
    • Requires information gathering
    • Web vulnerabilities version checks
    • Bypass specific tweak flawed
    • Knowledge of exploiting flaws
  • OSWP
    • Requires WiFi pentest techniques
    • Tools for WiFi capture traffic
    • Exploiting vulnerabilities in WiFi
    • Tools cracking hashes found

Exploit

  • OWASP Top 10 knowledge
    • SQL inject
    • Cross site script
    • Local file include
    • Remote file include
    • Information gather files
  • OSCP syllabus knowledge
  • OSWP syllabus knowledge
  • Kali Linux tools usage
    • Nikto
    • Dirb
    • Metasploit
    • Burpsuite Free Edition
    • NMap
at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Friday Fun Pentest Series - 16 - Stored XSS with Filter Bypass - blogenginev3.3.8

Description - It was found that the application was vulnerable to Stored XSS via specific payload that bypassed the filtering in place. Stor...