The honest gap between OSCP and OSEP from someone who passed OSCP in 2017 and OSEP while actively working as a red teamer. What enterprise environments actually demand and why evasion changes everything.
Extract cached AD hashes and enumerate domain groups, users and machine accounts from SSSD on domain-joined Linux. Extended fork of ricardojoserf/SSSD-creds with domain enumeration added during OSEP exam preparation.
HTB machines mapped to every PEN-300 syllabus topic. From Office macros to Kerberos delegation — covers client-side execution, AV evasion, AD exploitation, MSSQL, lateral movement and more.
PHP dangerous function reference for source code review and exploitation. Covers command execution, code evaluation, callbacks, filesystem, and information disclosure — with grep/semgrep patterns and PHP version compatibility notes.
Practical implementation of CBC and CTR modes: IV management, nonce-based encryption, padding schemes (TLS), and security bounds.
Week 2-3: Block ciphers, PRP security, one-time key modes (ECB/DET-CTR), many-time key modes (CBC/CTR), IV/nonce-based encryption.
Complete OSWE/AWAE preparation guide from someone who passed in 2020. Curated resources by vulnerability class, exam strategy, and what actually matters.
Tutorial-level walkthrough of Microcorruption CTF on MSP430 microcontroller with debugger techniques and vulnerability identification.
Week 1 foundations: stream ciphers, PRG security definitions, birthday paradox, attacks on OTP/RC4/CSS, and Salsa20 construction.