Hackthebox¶
- Start learning to Try harder here. Don’t fully skip hackthebox some boxes have important concepts that are rare even in PG practice like SNMP and Keepass also AD ones are pretty good practice even if harder than OSCP in some ways. At the very least watch ippsec videos and take notes
| Linux | Windows | Active Directory and Networks |
|---|---|---|
| Lame | Jerry | Active |
| Nibbles | Netmon | Forest |
| Solidstate | Servmon | Sauna |
| Poison | Chatterbox | Monteverde |
| Knife | Jeeves | Timelapse |
| Sunday | Sniper | Flight |
| Keeper | Querier | Return |
| Pilgrimage | Acute | Cascade |
| Cozyhosting | Bounty | |
| Codify | Artic | ProLabs |
| Tartarsauce | Remote | Dante |
| Jarvis | Buff | |
| Tabby | Love | |
| Falafel | Secnotes | |
| Mentor | Access | |
| Devvortex | Aero | |
| Irked | Mailing | |
| Popcorn | ||
| Bashed | ||
| Broker | ||
| Analytics | ||
| Networked | ||
| UpDown | ||
| Swagshop | ||
| Nineveh | ||
| Pandora | ||
| OpenAdmin | ||
| Precious | ||
| Busqueda | ||
| Monitored | ||
| BoardLight | ||
| Magic | ||
| Help | ||
| Editorial | ||
| # Tryhackme | ||
| - More guided and friendly approach for some rooms but still great boxes and rooms for prep. Active Directory ones here are very good practice for the OSCP. |
| Linux | Windows | Active Directory and Networks |
|---|---|---|
| Mr Robot | Steel Mountain | Attacktive Directory |
| Thompson | Year of the Owl | Corp |
| Kenobi | Retro | Attacking Kerberos |
| GameZone | Alfred | Wreath Network (A must do) |
| Skynet | Relevant | |
| Daily Bugle | Blueprint | |
| Lazy Admin | Hackpark | |
| Tomghost | Weasel | |
| Rootme | AllSignsPoint2Pwnage | |
| CMesS | Anthem | |
| Ultratech | ||
| Internal | ||
| Zeno | ||
| Boiler CTF | ||
| Wonderland | ||
| ## Proving Grounds Practice | ||
| - The real OSCP like boxes, this is just a list with the ones that are best practice and removing the overly complicated ones that are too out of scope and those that were boxes meant to be mostly for OSEP and OSED (example Kyoto and Nara) that were in TJNull list plus adding some new ones |
| Linux | Windows | Windows Active Directory |
|---|---|---|
| ClamAV | Kevin | Access |
| Pelican | Internal | Heist |
| Payday | Helpdesk | Resourced |
| Snookums | Algernon | Vault |
| Bratarina | Jacko | Nagoya |
| Pebbles | Craft | Hokkaido |
| Nibbles | Squid | |
| Hetemit | Nickel | |
| ZenPhoto | MedJed | |
| Nukem | Billyboss | |
| Cockpit | Shenzi | |
| PyLoader | AuthBy | |
| Clue | Slort | |
| Extplorer | Hepet | |
| Boolean | DVR4 | |
| Postfish | ||
| Hawat | ||
| Walla | ||
| PC | ||
| Apex | ||
| Sorcerer | ||
| Sybaris | ||
| Peppo | ||
| Hunit | ||
| Readys | ||
| Astronaut | ||
| Bullybox | ||
| Marketing | ||
| Exfiltrated | ||
| Fanatastic | ||
| QuackerJack | ||
| Wombo | ||
| Flu | ||
| Roquefort | ||
| Levram | ||
| Mzeeav | ||
| LaVita | ||
| Xposedapi | ||
| Zipper | ||
| Ochima | ||
| ## Virtual Hacking Labs | ||
| - Very under rated platform with very OSCP like machines, people that have used it really recommend it for OSCP including me. It has been very crucial help for those that have failed attempts to be able to pass and they are good practice for standalones. |
| Linux | Windows |
|---|---|
| Techblog | Steven |
| Backupadmin V2 | Aaron |
| Web01-Dev V2 | Anthony |
| Web01-Prd V2 | Jennifer |
| Forum | WinAS01 |
| Quick | AS45 |
| Tiki | Trace |
| Helpdesk V2 | React |
| VPS1723 V2 | |
| CMS02 V2 | |
| Records | |
| Trails | |
| Dolphin V2 | |
| Crash | |
| Natural | |
| Mantis | |
| Fed V2 | |
| CMS01 | |
| Tracking | |
| JS01 | |
| PBX | |
| Code V2 | |
| Teamspeak | |
| CMS101 | |
| FW01 | |
| Core | |
| Websrv01 | |
| Mon02 | |
| Graphs01 | |
| PM V2 | |
| Tracker | |
| ## Proving Grounds Play | |
| - Mostly boxes from vulnhub hosted by offsec for free |
| Linux | |
|---|---|
| Amaterasu | |
| Loly | |
| Potato | |
| Stapler | |
| BBScute | |
| Gaara | |
| Blogger |