# About this Gitbook

This GitBook is dedicated to documenting my journey through the Certified Penetration Testing Specialist (CPTS) path on Hack The Box Academy as I prepare for the OSCP exam. The course covers 28 modules and 490+ sections, diving deep into real-world pentesting techniques, tools, and methodologies.

I'll be sharing the key takeaways from each module, along with notes on the boxes I successfully pwn along the way. It’s a mix of theory and hands-on experience, and I’ll be updating it regularly as I keep learning and progressing.

~~<mark style="color:red;">**STILL WORK UNDER PROGRESS (97.15% )**</mark>~~**&#x20;-&#x20;**<mark style="color:green;">**100% COMPLETE**</mark>

Currently doing retired boxes for preparation - [Write Ups](https://htb.anonmak9.com/)

<figure><img src="https://4221272138-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FTPGd7ZFaIK7aZCeIcXSw%2Fuploads%2FdMo6mPqKw6TAhtk745wp%2Fimage.png?alt=media&#x26;token=9dc115a1-5d7a-4963-99b9-2106d5512493" alt=""><figcaption></figcaption></figure>

**Modules Finished On HTB Academy - In Chronological Order:**

* [x] [Web Requests](https://academy.hackthebox.com/achievement/402273/35)
* [x] [Information Gathering - Web Edition](https://academy.hackthebox.com/achievement/402273/144)
* [x] [Introduction to Active Directory](https://academy.hackthebox.com/achievement/402273/74)
* [x] [Active Directory Enumeration & Attacks](https://academy.hackthebox.com/achievement/402273/143)
* [x] [Network Enumeration with Nmap](https://academy.hackthebox.com/achievement/402273/19)
* [x] [Penetration Testing Process](https://academy.hackthebox.com/achievement/402273/90)
* [x] [Vulnerability Assessment](https://academy.hackthebox.com/achievement/402273/108)
* [x] [File Transfers](https://academy.hackthebox.com/achievement/402273/24)
* [x] [Getting Started](https://academy.hackthebox.com/achievement/402273/77)
* [x] [Footprinting](https://academy.hackthebox.com/achievement/402273/112)
* [x] [Shells and Payloads](https://academy.hackthebox.com/achievement/402273/115)
* [x] [Using the Metasploit Framework](https://academy.hackthebox.com/achievement/402273/39)
* [x] [Password Attacks](https://academy.hackthebox.com/achievement/402273/147)
* [x] [Attacking Common Services](https://academy.hackthebox.com/achievement/402273/116)
* [x] [Pivoting, Tunneling and Port Forwarding](https://academy.hackthebox.com/achievement/402273/158)
* [x] [Using Web Proxies](https://academy.hackthebox.com/achievement/402273/110)
* [x] [Attacking Web Applications with Ffuf](https://academy.hackthebox.com/achievement/402273/54)
* [x] [Login Brute Forcing](https://academy.hackthebox.com/achievement/402273/57)
* [x] [SQL Injection Fundamentals](https://academy.hackthebox.com/achievement/402273/33)
* [x] [SQLMap Essentials](https://academy.hackthebox.com/achievement/402273/58)
* [x] [Cross-Site Scripting (XSS)](https://academy.hackthebox.com/achievement/402273/103)
* [x] [File Inclusions](https://academy.hackthebox.com/achievement/402273/23)
* [x] [File Upload Attacks](https://academy.hackthebox.com/achievement/402273/136)
* [x] [Command Injections](https://academy.hackthebox.com/achievement/402273/109)
* [x] [Web Attacks](https://academy.hackthebox.com/achievement/402273/134)
* [x] [Attacking common Applications](https://academy.hackthebox.com/achievement/402273/113)
* [x] [Linux Privilege Escalation](https://academy.hackthebox.com/achievement/402273/51)
* [x] [Windows Privilege Escalation](https://academy.hackthebox.com/achievement/402273/67)
* [x] [Documentation & Reporting](https://academy.hackthebox.com/achievement/402273/162)
* [x] [Attacking Enterprise Networks](https://academy.hackthebox.com/achievement/402273/163)
* [x] [API Attacks](https://academy.hackthebox.com/achievement/402273/268)

#### **Extra**

* [ ] Using CrackMapExec