Labs CertificationsOSCP

🎯

Offensive Security

OSCP

The gold standard for penetration testing. Prove your hands-on skills with a 24-hour practical exam.

Difficulty

Advanced

Duration

23h 45m + 24h report

Questions

Passing

70 points

Total XP

5,000

Format:Practical Lab + Report

Renewal:3 years

Price:$1,649+

60 mapped lessons across 8 domains

Exam Domains & Mapped Lessons

Information Gathering

15%

Passive and active reconnaissance techniques

OSINTDNS EnumerationNetwork ScanningService Identification

lessons

recon-1 recon-2 recon-3 recon-4 osint-1 osint-2 osint-3 scan-1+2 more

Vulnerability Analysis

15%

Identifying and analyzing security weaknesses

Web VulnerabilitiesNetwork VulnerabilitiesCVE ResearchExploit Database

lessons

web-intro-1 sqli-1 sqli-2 xss-1 xss-2 ssv-1 ssv-2 ssv-3

Web Application Attacks

20%

Exploiting common web vulnerabilities

SQL InjectionXSSFile InclusionCommand InjectionFile Upload

lessons

sqli-1 sqli-2 sqli-3 sqli-4 xss-1 xss-2 xss-3 xss-4+4 more

Password Attacks

10%

Cracking and brute-forcing authentication

Hash CrackingBrute ForcePassword SprayingCredential Stuffing

lessons

pass-1 pass-2 pass-3 pass-4 pass-5

Client-Side Attacks

Targeting end users and client applications

PhishingMacro AttacksHTA/HTML Applications

lessons

social-1 social-2 social-3

Privilege Escalation

20%

Escalating access on Windows and Linux

Linux PrivEscWindows PrivEscKernel ExploitsMisconfigurations

lessons

privesc-1 privesc-2 privesc-3 privesc-4 privesc-5 privesc-6 privesc-win-1 privesc-win-2+1 more

Active Directory

10%

Attacking Windows domains

EnumerationKerberoastingPass-the-HashDCSync

lessons

ad-intro-1 ad-intro-2 ad-enum-1 ad-enum-2 ad-attacks-1 ad-attacks-2 ad-attacks-3 ad-persist-1

Post-Exploitation

Maintaining access and lateral movement

PivotingPort ForwardingPersistenceData Exfiltration

lessons

post-1 post-2 post-3 post-4 post-5

Exam Tips for OSCP

Try Harder Mentality

The exam tests persistence. If one approach doesn't work, enumerate more and try different techniques.

Document Everything

Take detailed notes and screenshots during the exam. Your report must prove you completed each step.

Master Enumeration

80% of the exam is finding the right vulnerability. Thorough enumeration is key.

Practice Pivoting

You'll need to move through networks. Practice port forwarding and tunneling techniques.

View All Paths Start First Lesson