This is how I prepare for the PWK (Pentesting with Kali).
I allotted 2 months of researching, focusing on my weak points, joining CTF, rooting some boxes in Vulnhub.com, and asking people who took the course for more information and what to expect.
I focused on Privilege Escalation and Scripting (bash, powershell, C and Python).
During CTFs and attacking vulnerable boxes, I discovered that I often miss the low hanging fruits because I quickly jump into conclusion and focus on potential vulnerability. Because of this attitude, I usually get stuck in a rabbit hole.
Here are the list of books I read:
- Penetration Testing: A Hands-On Introduction to Hacking by Georgia Weidman
- Hacking: The Art of Exploitation by Jon Erickson
- The Web Application Hacker’s Handbook 2nd Edition by John Wiley & Sons, Inc.
Here is a list of resources I found very helpful for PWK/OSCP:
- How to prepare for PWK/OSCP, a noob-friendly guide – Abatchy
- Basic Linux Privilege Escalation – g0tmi1k
- OSCP Checklist – xapax
- OSCP Like VMs – Abatchy
- OSCP Exam Enumeration – Idtypethat
- OSCP Exam Guide – Offensive Security
I will be starting tomorrow. Goodluck. I’ll try harder.