OSEP
Last updated
Was this helpful?
Last updated
Was this helpful?
Prior knowledge for OSEP (Guide)
This is a repository of notes and material that I consider necessary in advance to opt for the course and the OSEP certification (Techniques of Evasion and Breaching Defenses)
This compilation of material is very much influenced by nullg0re (GIT) and more!
Contents
Programming languages
For this certification it is very important to have a knowledge base in the following programming languages:
Operating System
Win32 API's
Windows Registry
Client Side Code Execution
Process Injection and Migration
Process Injection:
DLL Injection:
Introduction to Antivirus Evasion
Advanced Antivirus Evasion
ASB Bbypass:
Application Whitelisting
Bypassing Network Filters
Domain Fronting:
DNS Tunneling
Linux Post-Exploitation
Kiosk Breakouts
Windows Credentials
Hardening the Local Admin Account (LAPS):
Windows Lateral Movement
Linux Lateral Movement
Microsoft SQL Attacks
MS SQL Enumeration:
NC Path Injection
Active Directory Exploitation
Unconstrained Delegation:
Constrained Delegation:
Resource-Based Constrained Delegation:
Active Directoy Inter-Forest Exploitation:
##Tools & Scripts:
Bash:
Python:
PowerShel:
C#:
Introduction to VBA:
Offensive P/Invoke:
Process Injection:
Wiki for .NET developers:
Win register:
Staged VS Stageless handlers (Payloads):
HTML Smuggling:
Embed in HTML:
Macro Malware:
Automatically Macro:
Working Windows API in VBA:
Powershell Shellcode:
Code Execution in VBA Macro:
MSBuild Generator:
PowerShell & Windows API:
PowerSploit:
PowerShell in Memory:
DelegateType Reflection:
Get Delegate:
Proxy-Aware PowerShell Communications:
PowerShell Proxy with Authentication:
JScript Execution:
JScript Basic Dropper:
Payload Creation and Obfuscation:
SharpShooter:
Reflective DLL Injection:
DLL Injection via PowerShell:
Process Hollowing:
Metasploit Encryptors:
Payload Encryption:
Antiscan.me:
Intro:
Bypasses:
Command List:
Kiosk Breakouts / Attacks:
Kiosk Windows:
Shared DLL Hijacking: :
MITRE:
SAM Dump:
LAPSPasswords:
Microsoft Defender Lateral Movement Paths:
Offensive Lateral Movement:
Restricting SMB:
MITRE:
Lateral Movement with shell:
Post exploit:
BloodHound:
Ingestors:
Abusing Object Security Permissions:
BloodHoundL:
CrackMapExec:
JAWS:
Linux priv checker: