-
It’s been a while since I detailed some progress on the CPTS, so here’s where we’re at: I’ve just finished the module titled: ‘Pivoting, Tunneling, Port Forwarding‘. It was challenging to learn and internalize a lot of the techniques that were taught so this post is basically my notes from experimenting with pivoting and a short tutorial on how to establish a pivot and double pivot with Ligolo-NG. Note: the skills assessment for the HTB module is what I used…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Jumping right into it this week: This module really wasn’t too difficult, although I did run into some trouble with the skills assessment. To quickly summarize, this module covered some surface level web hacking techniques, namely enumeration and digging through hidden directories to establish a viable target list. Below is a rough outline and what I learned from each section: Skills assessment | lessons learned The skills assessment here should have been simple, but just as the previous ones I…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Diving right into it, I finished the ‘Network Enumeration with Nmap‘ section over the weekend and am dragging my feet on the ‘Footprinting’ module this week so I decided to write a short post about the Nmap module and how it is shaping my enumeration methodology. For those who don’t know, NMAP is a free and open source network mapping utility for network discovery and security auditing. It is capable of many things, primarily host and port enumeration, which is…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Welcome to my blog. Today, 5 Jan ’25, is the first day of my mission to obtain both HackTheBox’s Certified Penetration Testing Specialist (CPTS) and OffSec’s ‘Offensive Security Certified Professional’ (OSCP) certifications. I figure I’ll detail things that I’ve learned and general tips here, although user beware my writeups and any opinions or suggestions therein contained are entirely my own, and can be at times erratic, terse, and generally unhelpful. This is something I aim to address as I progress…
NordbySec 