• Stars
    star
    2,870
  • Rank 15,811 (Top 0.4 %)
  • Language
    Ruby
  • License
    MIT License
  • Created over 5 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

πŸ“™ Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Offensive Security Exam Report Template in Markdown

Rawsec's CyberSecurity Inventory GitHub stars GitHub forks GitHub license

I created an Offensive Security Exam Report Template in Markdown so LaTeX, Microsoft Office Word, LibreOffice Writer are no longer needed during your Offensive Security OSCP, OSWE, OSEE, OSWP, OSEP, OSED, OSWA, OSDA, OSMR exam!

Now you can be efficient and faster during your exam report redaction!

  • πŸš€ Speed up writing, don't lose time during the 24 hours of exam report redaction
  • ⭐ No formatting hassle with WYSIWYG editors, byebye unwanted whitespaces and linefeeds from Microsoft Office Word and LibreOffice Writer
  • πŸ“ Re-use your Markdown notes, you'll be so glad not having to reformat the bold and italic from your Markdown notes into the report
  • πŸ”’ Version control ready, save your markdown template into a PRIVATE git repository, you now have an incremental backup, version control works with Markdown (.md) as it's text but not with binaries (.doc, .odt)
  • πŸ–ŠοΈ Use your favorite editor or note taking app, with Markdown you'll be able to use your favorite editor (VSCode, Atom, etc.) or note taking app (Vnote, QOwnNotes, Boostnote, etc.) to write your exam report, you won't have to switch to Windows to use MS Word.
  • 🎩 Clean & professional style, a professional looking report for your professional certification
  • πŸ‘Œ Error free, use the generation script to generate the report and archive, you won't do any submission format and name mistake that way

Examples:

OSCP whoisflynn improved template v3.2

OSCP Official Offensive Security Template v1

Requirements

Examples for common distros:

  • ArchLinux: pacman -S texlive-most pandoc p7zip
  • openSUSE: zypper in texlive-scheme-medium pandoc p7zip-full
  • Ubuntu: apt install texlive-latex-recommended texlive-fonts-extra texlive-latex-extra pandoc p7zip-full

Usage

Write your report in markdown.

Automatic

There is a script that will:

  1. Let you choose the template
  2. Let you choose the syntax highlight style
  3. Generate the PDF (+ preview option)
  4. Generate the 7z archive
  5. Output MD5 hash for verification after uploading

Choose and copy a template that you will use to write your report:

ruby osert.rb init

Generate your PDF report and 7z archive

ruby osert.rb generate

Note: If you run the generation several times, you may want to check the options (ruby osert.rb generate -h) to save time on the interactive prompt.

Manual

Generate the report PDF from the markdown template:

pandoc src/OSCP-exam-report-template_whoisflynn_v3.2.md \
-o output/OSCP-OS-XXXXX-Exam-Report.pdf \
--from markdown+yaml_metadata_block+raw_html \
--template eisvogel \
--table-of-contents \
--toc-depth 6 \
--number-sections \
--top-level-division=chapter \
--highlight-style breezedark \
--resource-path=.:src

You can change the code syntax highlight theme with --highlight-style.

Color sets

Well rendering color sets you can use in the template YAML frontmatter:

titlepage-color titlepage-text-color titlepage-rule-color
DC143C (Crimson) FFFFFF (White) FFFFFF (White)
00FF7F (SpringGreen) 006400 DarkGreen 000000 (Black)
1E90FF (DodgerBlue) FFFAFA (Snow) FFFAFA (Snow)
483D8B (DarkSlateBlue) FFFAFA (Snow) FFFAFA (Snow)
FFD700 (Gold) 000000 (Black) 000000 (Black)
FFEFD5 (PapayaWhip) 000000 (Black) 000000 (Black)
FF8C00 (DarkOrange) 000000 (Black) 000000 (Black)
FFEF96 (no name) 50394C (no name) 50394C (no name)

Syntax highlight themes can be listed with pandoc --list-highlight-styles.

Available templates

Report Templates:

Network Penetration Testing:

Web Application:

Exploit Development:

Security Operations:

Offensive Security course table:

Exam acronym Exam name Lab acronym Lab name Course designation
OSCP Offensive Security Certified Professional PWK Penetration Testing with Kali Linux PEN-200
OSWP Offensive Security Wireless Professional OSWA Offensive Security Wireless Attacks PEN-210
OSEP Offensive Security Experienced Penetration Tester ETBD Evasion Techniques and Breaching Defenses PEN-300
OSWA Offensive Security Web Assessor WAKL Web Attacks with Kali Linux WEB-200
OSWE Offensive Security Web Expert AWAE Advanced Web Attacks and Exploitation WEB-300
OSED Offensive Security Exploit Developer WUMED Windows User Mode Exploit Development EXP-301
OSMR Offensive Security macOS Researcher MCB macOS Control Bypasses EXP-312
OSEE Offensive Security Exploitation Expert AWE Advanced Windows Exploitation EXP-401
OSCE Offensive Security Certified Expert CTP Cracking the Perimeter N/A
OSDA Offensive Security Defense Analyst SODA Security Operations and Defensive Analysis SOC-200

Community projects

Docker containers:

Mentions

Stargazers over time

Stargazers over time

Credits

Report Templates:

Pandoc Template:

Placeholder image:

More Repositories

1

flask-session-cookie-manager

πŸͺ Flask Session Cookie Decoder/Encoder
Python
455
star
2

haiti

πŸ”‘ Hash type identifier (CLI & lib)
Ruby
391
star
3

rawsec-cybersecurity-inventory

An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.
JavaScript
190
star
4

BB-legal-FR

Quelques conseils autour des obligations lΓ©gales, fiscales et juridique pour la pratique du Bug Bounty en France
94
star
5

Umbraco-RCE

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
Python
61
star
6

ctf-party

🚩 A CLI tool & library to enhance and speed up script/exploit writing with string conversion/manipulation.
Ruby
61
star
7

firefox-extension-arch-search

A set of Web Extensions that adds ArchLinux (bug tracker, forum, packages, wiki, AUR) as a search engine to the Firefox browser.
Shell
25
star
8

pass-station

CLI & library to search for default credentials among thousands of Products / Vendors
Ruby
24
star
9

miniss

Displays a list of open listening sockets. It is a minimal alternative to ss or netstat.
Crystal
24
star
10

vbsmin

VBScript minifier
Ruby
20
star
11

tryhackme-writeups

Write-Ups for TryHackMe
19
star
12

the-hacking-trove

The hacker technical cheat sheet
16
star
13

Bludit-auth-BF-bypass

Bludit <= 3.9.2 - Authentication Bruteforce Mitigation Bypass
Ruby
15
star
14

Atmail-exploit-toolchain

AtMail Email Server Appliance 6.4 - Exploit toolchain (XSS > CSRF > RCE)
PHP
12
star
15

ctfd-theme-sigsegv2

SigSegv2 CTFd theme
HTML
10
star
16

DCDetector

Spot all domain controllers in a Microsoft Active Directory environment. Find computer name, FQDN, and IP address(es) of all DCs.
Ruby
10
star
17

rabid

πŸͺ A CLI tool and library allowing to simply decode all kind of BigIP cookies.
Ruby
9
star
18

vrt-cli

A simple tool to visualize VRT (Vulnerability Rating Taxonomy) from the CLI.
Ruby
9
star
19

Pentest-collab-convert

Collection of scripts used to convert stuff from one penetration testing collaborative platform to another and facilitate the migration of solution
Ruby
9
star
20

PixelChart

Map binary data into a beautiful chart
Ruby
8
star
21

security.txt_stats

πŸ“Š Scripts used for the security.txt statistic study
Ruby
8
star
22

OpenEMR-RCE

OpenEMR <= 5.0.1 - (Authenticated) Remote Code Execution
Ruby
8
star
23

fuelcms-rce

Fuel CMS 1.4 - Remote Code Execution
Ruby
5
star
24

spaceship-current-netns

Current network namespace for Spaceship prompt
Shell
5
star
25

OFTRTA-poe-filter

[Loot Filter] One Filter to Rule Them All for Path Of Exile
4
star
26

tls-map

CLI & library for TLS cipher suites manipulation
Ruby
3
star
27

XSS-classification-model-slideshow

πŸ—’οΈ A presentation about XSS classification model - Types of XSS evolution
3
star
28

kh2hc

Convert OpenSSH known_hosts file hashed with HashKnownHosts to hashes crackable by Hashcat.
Ruby
3
star
29

XSS-classification-model

πŸ’¬ XSS classification model - Types of Cross-Site Scripting
3
star
30

SigSegV2.reverse_6

A reverse challenge that was available during SigSegV2 CTF (2019)
Ruby
2
star
31

SigSegV2.webserver_11

A web challenge that was available during SigSegV2 CTF (2019)
PHP
2
star
32

defango

1
star
33

SigSegV2.webserver_3

A web challenge that was available during SigSegV2 CTF (2019)
PHP
1
star
34

SigSegV1.webserver_7

A web challenge that was available during SigSegV1 CTF (2018)
CSS
1
star
35

Create-python-package-presentation

How to create a simple python package
CSS
1
star
36

noraj

my special repo
1
star
37

quartz-utils

Everyday CLI utilities that are easily pipable
Crystal
1
star
38

presentation-one-time-pad

A presentation about one-time pad
1
star
39

ADAssault

Dominate the Active Directory game. An Active Directory environments pentest tool complementary to existing ones like NetExec.
Ruby
1
star