Sign in

Documenting some of what I’ve learnt whilst becoming a cybergeek! Mostly HTB and OffSec Proving Grounds. Extremely human, full of imposter syndrome.

Anyone with more than a passing interest in infosec will be familiar with the OSCP. And for those who have had more than a passing curiosity, I’m sure they’ll be familiar with the plethora of “I passed OSCP on the first attempt” posts on internet forums.

My story is different. I didn’t pass on the first attempt. Nor the second. Not even the third. But my journey has been spectacular, at least, for me. I’ve learnt a great deal, not just about everything the OSCP encompasses, but myself and humanity itself.

Rewind back to 2019. The world was relatively stable…


A couple of family members have had warnings this week from the exceedingly awesome site Have I Been Pwned, that their details have been found in the wild. So, this is my attempt at making something easy to read and understand for my parents, siblings, and anyone else who may not be the most technically minded, but recognize the need to try and be safe.

Something that needs pointing out — you’re not really a target. The vast majority of people out there are of little net value individually — it’s not worth a hacker’s time to try and crack…


It’s the oddest thing. I spent many years walking into your home, with you asleep on your chair. Most times, you’d quickly wake up — sometimes not. Every now and then, I’d get spooked as I’d not see any evidence of your breathing, and be unable to trigger your awakening.

I thought I was well-prepared for this. But all of a sudden, we’re here, and I’m really not. It’s irreversible, and all that remains are the memories forged over the years.

You’d be pleased I came to your funeral with a full-mop of hair. I know I’d promised to shave…


Quick enumeration of the machine with nmap revealed the following information:


Quick enumeration of the machine with nmap revealed the following information:


Quick enumeration of the machine with nmap revealed the following information:


Quick enumeration of the machine with nmap revealed the following information:


With my fairly average graphics card — Radeon RX-590 (https://www.videocardbenchmark.net/gpu.php?gpu=Radeon+RX+590&id=4025), for a given keyspace. More recent cards will be quicker. Next year, more recent cards will be quicker still!

7 characters, uppercase, lowercase, and numeric — around 8 minutes:

7 truly random characters, under 3 hours:

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store