Dude! Like your note section just 180'd my world understanding for some reason. I was struggling hard with figuring out a good way to organize all this and this looks like GOLD!!!! THANK YOU!!!
Your review brings back memories of my OSCP journey in 2019. A lot has changed in the exam, but it is still one of the best out there. One of the reasons this certification is so respected is because of the challenges, the setbacks, and the months of sleepless nights invested to achieve it. I'm now preparing for OSED, one last hurdle to become an OSCE3. Looking back, I can't believe I would have developed this mindset if I hadn't taken OSCP. Congrats!
Appreciate this video. I’m a full time pentester (going on 2 years) and I’ve failed the OSCP twice, although I did better the second time. My next attempt is coming up, and it’s my first attempt at the new format. I have the 10 extra points, but I’m still super nervous. I’m gonna check out HTB’s AD module. I’ve done literally everything else you mentioned, from PG practice to THM Throwback to VHL to TJ Null’s list etc. In my experience, I agree that the PEN200 lab network and course material is garbage. Many machines in PEN200 require brute forcing with rockyou and I think, especially as a pro tester, that’s a huge waste of time and a lazy teaching method. HTB/THM/VHL and Heath’s Udemy courses (I bought his stuff before he made TCM), altogether taught me the most about becoming a good pentester.
For anyone asking for the notes, I highly recommend that you take your own notes! Not only will you know exactly where to find the note youre looking for, but you'll make a habit of note-taking and structuring! You'll also feel more confident looking at your OWN notes and seeing how much progress you've made.
Wow, super inspiring story of pushing through at the 5 hour mark! Great case study in the power and importance of mindset, in addition to skills and methods.
Thanks for the video! I'd like you to talk about OSCP tips, but for people who already have experience in pentesting (e.g. 5 years) but most of their experience is in whitebox or appsec, and not so much experience in evading, pivoting, or AD. Thanks!
Great video. Really like your positive attitude that you brought to the whole thing. This is something that I will incorporate going forward. I also like how nice and positive the people in your discord are. Best wishes -Charlie
Bro, excellent vid on this topic. I appreciate the blunt honesty and the fact you discussed what’s necessary to succeed on the exam without extraneous fluff. Per another comment, I added you on LinkedIn and looks like we attended the same college. I almost feel like I spoke to you once. Was at the IT helpdesk. I ran some slmgr commands to show I’d wiped the campuses license keys off my PC and replaced with my own since I was keeping it. If I recall correctly, you mentioned some of the certs you were working on and things you aspired to do. Looks like you’ve done well!
Yooo!!! Yup I remember that! It was the IT Manager there for awhile. Now I am a Pentester with Rhino Security Labs. Thanks for the comment sir! Small world!!
@@Huberdoggy Do you use Discord? Rhino just recently launched a Discord that I started. The whole focus is offering free training on pentesting concepts and to hire future pentesters. Feel free to join! discord.gg/8vFE7ucx9W
Congrats! "-p-" with T5 you will start missing ports on some boxes. one can instead write a script to first run T5 and run -A on the ports found (so you can get to work) and then run nmap -Pn -p 0-65535 --open -v IP again to make sure you arent missing any ports. then run -A on the slow scan ports as well if more are found
Congratulations brother!!! I have scheduled my exam on 13th Dec. I gotta say this particular video of yours just boosted my confidence. Any kind of tip would be appreciated....
i heard a sleep expert say that they tested different sleep schedules on athletes and the difference between good and bad sleep in athletes is bigger than the difference between athletes that did and didnt take performance enhancing drugs ... that means that propper sleep is more important than anything when it comes to performance and same goes for mental performance
Awesome video! Appreciate the review. Hearing all the resources that you recommend before the actual PWK course is slightly disappointing when considering buying the learn one course and exam for $2000. They need to offer the exam only or the 30 days of lab time + exam again. The prices are set to increase again in 2023 though, so I doubt this will be the case.
You don't have to take up OSCP, it sucks, their AD is crap nd as in this vid as he mentions TCM Sec, all you have to do is the PNPT, OSCPs materials ain't enough to pass the exam, it's a highly profit driven cert, bloody 1499$ nd only 1 exam attempt, instead of taking this crappy OSCP which falls short in many practical aspects just take up the PNPT
Yes. They actually say in the exam guide that you may or may not have buffer overflow as a low privilege vector. It is no longer 25 points -- you still have to elevate your privileges after doing the buffer overflow. That being said, I am not allowed to say whether I got one or not.
i'm just getting started studying for certs in general and i need help with how you got your onenote so pimped out, i opened it and it doesn't look anything like how you have it.
Congratulations Tyler! Did you have any IT job experience before the pentest role / passing the OSCP? Or was it all through self study through the resources mentioned?
Hey Matt! Yes, I did have IT experience before my pentest role and passing the OSCP. Feel free to add me on LinkedIn and you can see my background for context! www.linkedin.com/in/tyler-ramsbey-86221643/
I usually do the “nmap -sS -p- ” to do a syn scan for enumeration. Then i do the aggressive scan on the specific open ports. Is there a downside to this as opposed to just the normal nmap scan of all ports?
there is nothing exclusive ,they will use vulnerability exist everywhere but in different setup ... u just have to understand how they work and how to find them
would you recomment studying all your ressources appart from the 7. PWK LAbs/Pen-200 Course in order to pass OSCP exam ? (because of very expensive course)
For practice? The ones on "Proving Grounds Practice" were the best prep in my opinion. This is a subscription service through Offsec that is around $20/month.
Good job man! I have a question. Did you do anything else outside of what’s mentioned in the video ? Was that enough to prepare for the OSCP or have you been working in cyber security for awhile ? I currently have sec+. My plan is to do the ejpt and then restart my peh(tcm course) journey. Next, I plan to start working towards the oscp. I need a bit of guidance, however.
Yes, it was enough but cybersecurity has always been a fascination of mine. That being said, no, I did not have experience working in cyber. I spent some time doing IT Support... then I was an IT Support Manager for about a year... and then I worked as a security analyst for only about 6 months before taking the exam. Now I am officially a penetration tester! :)
@@TylerRamsbey Congrats! Cyber security is quite fascinating, indeed. I’m starting my 1st job in cyber security soon. I’m looking forward to that official title as well.
I loved ur review, ur to honest and realistic Sry if it sounds weird, but it is just because I love u and I feel u need it as I do, Please read Quran, explore it, it will help you a lot
I sit for the OSCP in 2 weeks. What setup do you use from which to take the exam? A Windows box with VMWare and Kali on that? All the tools I need on both Windows and Linux?
Small investment if it sky rockets your career, if you are doing it just for fun then yeah maybe not. SANS courses are over $8,000 but they can get you jobs. Do you spend $30k for a degree or $10k on certs and actually learn something.
Dude! Like your note section just 180'd my world understanding for some reason. I was struggling hard with figuring out a good way to organize all this and this looks like GOLD!!!! THANK YOU!!!
Your review brings back memories of my OSCP journey in 2019. A lot has changed in the exam, but it is still one of the best out there. One of the reasons this certification is so respected is because of the challenges, the setbacks, and the months of sleepless nights invested to achieve it. I'm now preparing for OSED, one last hurdle to become an OSCE3. Looking back, I can't believe I would have developed this mindset if I hadn't taken OSCP. Congrats!
Wow! Keep up the great work!
a huge congrats and welcome to the club, I'm sure this makes for a great Christmas present!
Absolutely! Thank you!
Appreciate this video. I’m a full time pentester (going on 2 years) and I’ve failed the OSCP twice, although I did better the second time. My next attempt is coming up, and it’s my first attempt at the new format. I have the 10 extra points, but I’m still super nervous. I’m gonna check out HTB’s AD module. I’ve done literally everything else you mentioned, from PG practice to THM Throwback to VHL to TJ Null’s list etc. In my experience, I agree that the PEN200 lab network and course material is garbage. Many machines in PEN200 require brute forcing with rockyou and I think, especially as a pro tester, that’s a huge waste of time and a lazy teaching method. HTB/THM/VHL and Heath’s Udemy courses (I bought his stuff before he made TCM), altogether taught me the most about becoming a good pentester.
Hello how was the thrid attempt ?
I hope you passed your exam
@@H4ck3er01 I'd like to know too
For anyone asking for the notes, I highly recommend that you take your own notes!
Not only will you know exactly where to find the note youre looking for, but you'll make a habit of note-taking and structuring!
You'll also feel more confident looking at your OWN notes and seeing how much progress you've made.
also trying to explain a topic is the best way to see if you can understand it. writing a field guide is also good practice
Wow, super inspiring story of pushing through at the 5 hour mark! Great case study in the power and importance of mindset, in addition to skills and methods.
Wahey! Top man! Many congratulations and thanks for being so open and sharing.
No problem and thank you!
Congratulations bro, your video motivated me to start studying again and hopefully grab the oscp cert eventually on my journey.
Thank you!
I knew you were going to nail it. Congrats!
I appreciate the kind words!
Inspiring. Am following ur path. Take TCM, THM, HTB then OSCP. Tqvm
i'm about to start my OSCP courses, thanks for all this information!
No problem. Goodluck!
I really appreciate your note taking method, I'll make sure to put this to use next time.
This will help a lot of folks! Great explanation, keep making more and more videos.
Thank you for the kind words!
Thanks for the video! I'd like you to talk about OSCP tips, but for people who already have experience in pentesting (e.g. 5 years) but most of their experience is in whitebox or appsec, and not so much experience in evading, pivoting, or AD. Thanks!
Great video. Really like your positive attitude that you brought to the whole thing. This is something that I will incorporate going forward. I also like how nice and positive the people in your discord are. Best wishes -Charlie
Thank you so much brother this will help a lot on the exam! Reminds me of my PJPT!
Congratulations! Thank you for the nmap tips first time I ever seen it this way!
Glad you found it helpful! I stumbled my way into that after trying many different methods.
Thanks for the video. Considering an attempt at OSCP early next year
Tyler, this is a great breakdown! Thanks!
Thank you!
Bro, excellent vid on this topic. I appreciate the blunt honesty and the fact you discussed what’s necessary to succeed on the exam without extraneous fluff. Per another comment, I added you on LinkedIn and looks like we attended the same college. I almost feel like I spoke to you once. Was at the IT helpdesk. I ran some slmgr commands to show I’d wiped the campuses license keys off my PC and replaced with my own since I was keeping it. If I recall correctly, you mentioned some of the certs you were working on and things you aspired to do. Looks like you’ve done well!
Yooo!!! Yup I remember that! It was the IT Manager there for awhile. Now I am a Pentester with Rhino Security Labs. Thanks for the comment sir! Small world!!
@@TylerRamsbey for sure man. I got in with Lockheed Martin, but have been looking into revisiting OSCP to enhance my knowledge as a security analyst
@@Huberdoggy Do you use Discord? Rhino just recently launched a Discord that I started. The whole focus is offering free training on pentesting concepts and to hire future pentesters. Feel free to join!
discord.gg/8vFE7ucx9W
@@TylerRamsbey haha I’m doing it now. I had only used Discord in the past for a previous job, but you convinced me to return 😂
Awesome ... Congrats on your achievement and thanks for all the information and resources you provided ❤
Congrats!
"-p-" with T5 you will start missing ports on some boxes. one can instead write a script to first run T5 and run -A on the ports found (so you can get to work) and then run nmap -Pn -p 0-65535 --open -v IP again to make sure you arent missing any ports. then run -A on the slow scan ports as well if more are found
Fantastic stuff , I look forward to more of your honest down to earth videos, Brilliant well done !!!!❤ ❤
congrats!! well deserved!!!
Thank you!
@@TylerRamsbey ur craaaZy going into the exam with barely doing any of the oscp resources and no bonus points sir ur 1337!
congrats tyler⚡
Thanks man!
Thanks for the resources!!!
Congratulations Tyler!!! I knew you could do it.
Dropping straight knowledge bombs on these peeps Tyler! Keep it up! 7k + views in 3 days?!?!?! 🔥🔥🔥🔥🔥
I'M FAMOUS
@@TylerRamsbey 16k+ views?!?!?!
congrats Bro!!!!💯
Thank you!
Congrats Tyler !
Thank you!
congrats man!!
Thank you man!!!
Congratulations brother!!! I have scheduled my exam on 13th Dec. I gotta say this particular video of yours just boosted my confidence. Any kind of tip would be appreciated....
Yo! Good luck with it
Good luck my friend! My best tip, although it's cliche, is to do your best to have fun with the exam. Forget passing it, focus on enjoying it :)
How was the exam bro
how's the exam
Hey shashank are you taking it in india? How much is it cost wise
Great video and advice. This is my goal for 2023.
Good luck sir!
Can you please do a updated version of this video for 2024 - 2025 with some resources ☺️☺️☺️☺️
i heard a sleep expert say that they tested different sleep schedules on athletes and the difference between good and bad sleep in athletes is bigger than the difference between athletes that did and didnt take performance enhancing drugs ... that means that propper sleep is more important than anything when it comes to performance and same goes for mental performance
Congratz!
🎉
Thanks brotha!
Thank you.
Great Overview
Thank you!
GOOD JOB!🎉🎉
Thank you!
Congratulations Tyler! So what's next? OSEP perhaps?
Amazing vid. 😊
Awesome video! Appreciate the review. Hearing all the resources that you recommend before the actual PWK course is slightly disappointing when considering buying the learn one course and exam for $2000. They need to offer the exam only or the 30 days of lab time + exam again. The prices are set to increase again in 2023 though, so I doubt this will be the case.
I agree. I was very disappointed with the official course for the price.
You don't have to take up OSCP, it sucks, their AD is crap nd as in this vid as he mentions TCM Sec, all you have to do is the PNPT, OSCPs materials ain't enough to pass the exam, it's a highly profit driven cert, bloody 1499$ nd only 1 exam attempt, instead of taking this crappy OSCP which falls short in many practical aspects just take up the PNPT
@@manavgkrishna4766 I agree. PNPT seems great. Unfortunately, it isn’t nearly as recognized or consider by hiring companies.
One of the few that didn't have to "try harder" after the first try
very good brother ❤❤❤❤
Thanks!!
I just got my CLSSP and OSCP is next on my mission
Great work my man! Proud of ya! Not sure if we're suppose to ask but, is buffer overflow a thing in OSCP these days?
Yes. They actually say in the exam guide that you may or may not have buffer overflow as a low privilege vector. It is no longer 25 points -- you still have to elevate your privileges after doing the buffer overflow.
That being said, I am not allowed to say whether I got one or not.
@@TylerRamsbey thanks a bunch for the reply! Will get that studied up just incase. Wish you luck in your hacking career 🙏🏼🙏🏼
By running T5 in nmap, can running it so fast miss any open ports?
Bravo! :)
Thank you!
the cringey thumbnail almost made me not click on the video but Im glad I did :) lots of useful info you shared, thanks
hahahaha! Glad you watched! :)
i'm just getting started studying for certs in general and i need help with how you got your onenote so pimped out, i opened it and it doesn't look anything like how you have it.
Hi I have network engineering and information security and chfi what I have to take next to become a pro hacker
@4:50 what info was missing in the AD set?
Congratulations Tyler! Did you have any IT job experience before the pentest role / passing the OSCP? Or was it all through self study through the resources mentioned?
Hey Matt! Yes, I did have IT experience before my pentest role and passing the OSCP. Feel free to add me on LinkedIn and you can see my background for context!
www.linkedin.com/in/tyler-ramsbey-86221643/
I usually do the “nmap -sS -p- ” to do a syn scan for enumeration. Then i do the aggressive scan on the specific open ports. Is there a downside to this as opposed to just the normal nmap scan of all ports?
Congratulations
Thank you!
Thank you.
very very good liufe advice
Hi!
That car from the AD set that caused the difficulty,
Are there similar machines on HTB or THM?
Or were they completely exclusive?
there is nothing exclusive ,they will use vulnerability exist everywhere but in different setup ... u just have to understand how they work and how to find them
I got "pay harder" email for 60 + partial AD
Subbed & congrats :)
Thank you!
FYI The discord link doesn't work anymore. Can you provide a new link? would love to join
Good catch!
discord.gg/work-smarter-956006303061393428
I know this is different for each individual, but how long did you study for the exam before taking it?
Solve the box with the help of walkthrough is Right?
would you recomment studying all your ressources appart from the 7. PWK LAbs/Pen-200 Course in order to pass OSCP exam ? (because of very expensive course)
the stand alone machines were from OSCP exam or just a random HTB?.
For practice? The ones on "Proving Grounds Practice" were the best prep in my opinion. This is a subscription service through Offsec that is around $20/month.
@@TylerRamsbey are you allowed to do other things while doing the exam? isn't it monitored?
Good job man! I have a question. Did you do anything else outside of what’s mentioned in the video ? Was that enough to prepare for the OSCP or have you been working in cyber security for awhile ? I currently have sec+. My plan is to do the ejpt and then restart my peh(tcm course) journey. Next, I plan to start working towards the oscp. I need a bit of guidance, however.
Yes, it was enough but cybersecurity has always been a fascination of mine. That being said, no, I did not have experience working in cyber. I spent some time doing IT Support... then I was an IT Support Manager for about a year... and then I worked as a security analyst for only about 6 months before taking the exam. Now I am officially a penetration tester! :)
@@TylerRamsbey Congrats! Cyber security is quite fascinating, indeed. I’m starting my 1st job in cyber security soon. I’m looking forward to that official title as well.
hey tyler how much time you spend a day in front of your computer
Too much :D
Tyler is it possible to oscp in 8 hours
How 🤔 ❓ can do you done the exam in 8 hours
Haha! Good enumeration and some luck I think!
can you tell how many windows hosts and linux on exam? thank you
Sorry, Offsec will be upset if I answer that question :(
Based on your experience, would you say using an ARM64 M1 Mac would make the test more difficult?
I'm not sure -- sorry. I'd assume it would be fine though.
Yep lots of restriction on VM.
Do i need experience to give this exam or my cybersecurity degree could fill the requirement?
Anybody can take this exam
I passed it too
hi.. can i get your note sir?
Sorry, I need to re-sort my notes. I cannot share OSCP-specific things of course so I need to go through them before I share them again.
@@TylerRamsbey yeah ofc.. Just htb or other public machine stuff..
can we get your notes?
Sorry, I need to re-sort my notes. I cannot share OSCP-specific things of course so I need to go through them before I share them again.
Now tell Rhino that you are past the "associate" level. :)
Ha! I'm still a total noob! :)
Hey bro can you share your notes that contain commands (OneNote) ❤️
Sorry, I need to re-sort my notes. I cannot share OSCP-specific things of course so I need to go through them before I share them again.
@@TylerRamsbey I'll be waiting sir
Tcm literally stole copy-write oscp material lol
What material did they steal?
For the men. Semen retention is important before the exam.
pls share your oscp notes :)
Sorry, I took a lot of my notes from the course and am not allowed to share :(
please send with your machion reports please brother i am waiting for reply
What do you mean by machine reports?
9at the helt
It's extremely expensive dude, 1700$ big as fuck !
are you a vampire?
hahahaha - what a strange question. I don't think so 🤣
@@TylerRamsbey my, what well developed canines you have grandma! :P congratz on your certification man. cheers
I loved ur review, ur to honest and realistic
Sry if it sounds weird, but it is just because I love u and I feel u need it as I do,
Please read Quran, explore it, it will help you a lot
I sit for the OSCP in 2 weeks. What setup do you use from which to take the exam?
A Windows box with VMWare and Kali on that?
All the tools I need on both Windows and Linux?
Noob. 😂
Only if I had $1499 which will increase to $1599 in January 23 🥲 This cert is not for Indians😔
Idts
Or Egyptians😢😂
Small investment if it sky rockets your career, if you are doing it just for fun then yeah maybe not. SANS courses are over $8,000 but they can get you jobs. Do you spend $30k for a degree or $10k on certs and actually
learn something.
@eli_the_crypto_guy It's still an entry level cert at the end of the day and a lot of employers want way more than just OSCP.
@@t58beare Not what I said, I said spend the money and invest in yourself.
hey tyler can you please share tryhackme AD rooms link wich you have metioned in the video | the discription you have metioned tryhackme website
Highly recommend looking at eLearnSecurity/INE courses they're terrific