While I didn’t manage to pass my first attempt, I felt pretty satisfied with how far I managed to get without having any knowledge of how the test would ‘feel’. There’s no way to tell exactly how many points I got, but if I had to guess I’d say I hit around the 50-60% mark and needed 70% to pass.
The test really highlighted my weaknesses in web applications and Windows privilege escalation (two things I went into it knowing I struggle with), so I have made a point to study and practice these aspects on the next round of lab access.
I’m going to resume lab access this week sometime and go for 30 days access, I really feel like I will be able to nail it on this next attempt!
In the meantime, I decided to pop into Hackthebox again to see if my skills had actually improved and I’m happy to say I can really feel the difference in my mindset after the 90 days of access with Offensive Security. I currently have root on:
These were relatively easy for me as well, and was able to root multiple in the same day which is a change for me.