OSCP Training VM’s hosted on Vulnhub.com

Andrew Hilton
2 min readApr 20, 2017

*****UPDATE****
I have been spending a lot of time recently over on HTB, I have written a companion post to this one listing the boxes over no HTB that you can use to practice for your OSCP exam. If you prefer their lab environment instead of Vulnhub VM’s.

You can read that post HERE.

Thanks to Holocircuit for this little tip. We were speaking about the OSCP exam and lab time and I was asking him about some VM’s that could be used for practice before I paid for official OffSec Lab time.

He very kindly pointed me in the direction of the #VulnHub channel on Freenode where you can run a command and pull off a list of the OSCP “Themed” VM’s that are hosted on there. It was a bit if a pain signing up and joining the channel. But I would highly recommend you do it as the knowledge in the forum is amazing.

Anyway I decided to post this quick post listing the 11 VM’s.

(#1) Kioptrix: 2014 https://www.vulnhub.com/entry/kioptrix-2014-5,62/
(#2) FristiLeaks: 1.3 https://www.vulnhub.com/entry/fristileaks-13,133/
(#3) Stapler: 1 https://www.vulnhub.com/entry/stapler-1,150/
(#4) VulnOS: 2 https://www.vulnhub.com/entry/vulnos-2,147/
(#5) SickOs: 1.2 https://www.vulnhub.com/entry/sickos-12,144/
(#6) Brainpan: 1 ttps://www.vulnhub.com/entry/brainpan-1,51/ ←(THIS ONE IS GREAT FOR BoF PRACTICE)
(#7) HackLAB: Vulnix https://www.vulnhub.com/entry/hacklab-vulnix,48/
(#8) /dev/random: scream https://www.vulnhub.com/entry/devrandom-scream,47/
(#9) pWnOS: 2.0 https://www.vulnhub.com/entry/pwnos-20-pre-release,34/
(#10) SkyTower: 1 https://www.vulnhub.com/entry/skytower-1,96/
(#11) By special request from dud3z DC416 CTF “Basement” https://www.vulnhub.com/series/dc416,99/

*****************************************************************
UPDATED 15.07.19 with Vulnhub boxes added from other sources

Kioptrix: Level 1 https://www.vulnhub.com/entry/kioptrix-level-1-1,22/
Kioptrix: Level 1.1 https://www.vulnhub.com/entry/kioptrix-level-11-2,23/
Kioptrix: Level 1.2 https://www.vulnhub.com/entry/kioptrix-level-12-3,24/
Kioptrix: Level 1.3 https://www.vulnhub.com/entry/kioptrix-level-13-4,25/
PwnLab: init https://www.vulnhub.com/entry/pwnlab-init,158/
Mr Robot https://www.vulnhub.com/entry/mr-robot-1,151/
HackLab: Vulnix https://www.vulnhub.com/entry/hacklab-vulnix,48/
IMF https://www.vulnhub.com/entry/imf-1,162/

NOT VULNHUB BUT GREAT FOR BoF PRACTICE
https://github.com/justinsteven/dostackbufferoverflowgood
https://www.vortex.id.au/2017/05/pwkoscp-stack-buffer-overflow-practice/
https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/
https://www.tenouk.com/Bufferoverflowc/Bufferoverflow1.html
https://raw.githubusercontent.com/m0nad/Papers/master/buffer_overflow_iniciantes.txt

*****************************************************************

If like me you’re looking to book the OSCP exam and some Lab time, check these VM’s out first and get a VERY small flavour of what to expect.

If you found this article helpful, please give it some 👏 and share it with anyone who you think might find it helpful too! + Feedback and coffees are always welcome! 😄

Take care and hopefully I’ll see you back here soon for more content and walkthroughs.

--

--

Andrew Hilton

Tactical Threat Manager @ FinTech | Purple Team | Offensive Operations