OSCP Day 1/100 — Intro/Installation
This is Shubham Khichi, a little bit of background of myself: Graduated with Information Systems, currently working as a Help Desk Specialist at a financial firm, got my Security+ during college. I work during the nights for the firm and during the day study for my OSCP. When I am not working or studying I am also a husband and a mountain climber :D.
OSCP cert didn't come on my desk out of the blue. A senior VP recommended me to get it in order to move up the ladder of cyber security and become a pentester. So here I am restricting myself to a 100-day challenge for OSCP. Hopefully, after 100 days I should be capable enough to learn Linux from scratch, utilize the tools of Kali and refer to at least 2 books and the pdf which comes with OSCP.
After hours of googling and redditing, I have decided to start with Penetration Testing: A Hands-On Introduction to Hacking I am also gonna document my every move throughout the book and publish on this medium. I will try my best to make this documentation comprehensive and detailed so that I can learn how to document better after my exam and leave a footprint for folk who wish to pursue this course in the future.
Tools and machines used:
- Mac mini {I am a mac person but once you are in the VM everything is the same}
- VM fusion {There is a 30-day trial but you can always pay $75 for a full version}
- Kali Linux Vmware 32bit 7z {I tried the Kali v1 in the book but most of the tools don’t work}
After you have installed the version of Kali i386.vmx, you will get the login screen
Username —root
Password — toor
Nessus Installation
Nessus needs to be downloaded from Tenable. After downloading to the Downloads Folder input the following command in the terminal.
#cd Downloads
#dpkg-i Ness{hit tab for autocomplete}
#service nessusd start
After the service has started, go to the website https: //localhost: 8834
You will get a screen saying “Your connection is not secure”
Click Advanced and add an exception
The Nessus website, create an account and you will be set.
Ming Compiler Installation
The ming complier in the book is outdated and the link doesn't work.
Try this:
#apt-get install mingw-w64
Hyperion Installation
Go to the browser and the link Hyperion and save the file in the downloads folder
#cd Downloads
#mv Hyperion-2.0.zip /root {because Hyperion needs to run from the root dir}
#pwd {to access root dir}
#unzip Hyper{hit tab}
#i686-w64-mingw32-c++ Hyperion-2.0/Src/Cryptor/*.cpp -o hyperion.exe {This will compile the program and give you a exe file in the root directory}
#git clone https://github.com/veil-Framework/veil-Evasion.git
{The book has a link which doesn’t work to create a Veil Evasion payload. Use the above command}
#ls {You should see the Veil-Evasion folder created in the root dir}
#cd veil-Evasion/
#ls {You should see the setup}
#cd setup/
# ./setup.sh {make sure to click “y” for installation}
Ettercap Installation
Since we are just editing the config file for ettercap I am gonna user nano {Sorry VIM users}
#nano /etc/ettercap/etter.conf/
The nano editor should come up looking like this
{Change the value of ec_uid = 0 and ec_gid = 0}
To use IP tables we need to remove the # signs before redir_command_on and redir_command_off just like the picture
{Make sure to save the file by clicking “Control O”, hit Enter key and then press “Control X” to exit}
That's it, for now, I will create another post where I will be posting more tools installation and then jumping into labs!
Thank you so much for reading. If you have any feedback feel free to comment.
