Well, I was hoping I wouldn't have to write this post. The exam kicked my butt. Bad.

I was hoping this post would be more like, "Yo! I got my OSCP!"

I studied quite a bit and felt like I was steamrolling the lab machines. They weren't terribly difficult and each seemed to focus on maybe one or two things from the material: i.e. LFI, File Upload, etc.

When I got into the exam, I popped the buffer overflow in about an hour. Took my notes as I worked on it so I didn't have to backtrack.  Went to the 20s, made little to no progress. Figured I should do the 10 for a quick confidence boost. Blew it out of the way in about 15 minutes, and reworked it a second time to capture better notes, screenshots, etc. So maybe a total of 30 spent on that.

Things kinda stopped working from there. I couldn't make any headway. My usual bag of tricks didn't seem to be doing anything for me. While I can't go over specifics, I am positive there's something I didn't see.

In theory, if at the end of the exam they said, "well, here's why you screwed up," I'm positive it would be a simple solution that I just never saw or overlooked. I just need to practice up a bit.

A friend helped me get a general sense of strengths and weaknesses, and put together this:

What Went Well

===============

  • BOF - Easily got this one.
  • Stuck it through (stuck to it until they cut my vpn)
  • Running autorecon in the background (while doing other manual tasks)

Improve

========

  • Use a timer (This will help me know when to move on if I'm not making progress)
  • Checklist (enum-type checklist, services, etc.)
  • Pastables / tool switches (pastable commands that will make it less likely that I have to fumble with syntax and args)