Not The Hidden Wiki
Just some loose compilation of tools and blogposts that can help you deepen your knowledge on the topics that are discussed in the course. Treat it as addendum made from experience of many students before you.
- Octoberfest7's OSEP Tools Compilation - link
- Caleb Stewart's Powershell Constrained Language Mode Bypass - link
- Alexander Sturz's adPEAS - link
- Swisskyrepo's AMSI Bypasses from Internal All The Things - link
- Using GadgetToJScript for Evasion - link
- Using encoders in msfvenom to evade static detection - link
- Attacking MSSQL - link
- PowerUpSQL - link
- LD_PRELOAD Exploitation - link
- Forged Kerberos Tickets - link
- UAC-BOF-Bonanza - link
- Bypassing Defender with ThreatCheck & Ghidra - link
- Exploring WinAPIs, C#, and Payload Encryption in Shellcode Runners - link
- Essential Windows Evasion Techniques - link
- How to Bypass Application Whitelisting & AV - link
- Meterpreter SSL Certificate Validation - link
- Dumping Lsass without Mimikatz with MiniDumpWriteDump - link
- How to pass OSEP for the first time - link
- OSEP-Notes - link
- Active Directory Penetration Testing Using Impacket - link
- Active Directory Pentesting Using Netexec Tool - link
- All notes on DACL abuses in AD - link
- All notes on Delegation abuses in AD - link
- All notes on trusts abuses in AD relationships - link