Course Foundation (PEN-200)
The OSCP+ certification is based on the PEN-200 course, the gold standard for penetration testing professionals. It is designed to prepare you for the rigorous OSCP certification exam through comprehensive practical training including curriculum, tools, and exam structure.
Core Topics
Master essential penetration testing skills with our comprehensive curriculum:
Information Gathering & Enumeration
Conduct comprehensive network scans using Nmap, analyze OS fingerprints, and enumerate critical services such as SMB, SNMP, DNS, and HTTP to uncover potential entry points.
Exploitation Techniques
Execute buffer overflow attacks, perform web application attacks (SQL injection, XSS, LFI/RFI), and conduct password attacks using brute force and hash cracking techniques.
Privilege Escalation
Master Windows and Linux privilege escalation through misconfigured services, weak permissions, token abuse, SUID binaries, cron jobs, and kernel exploits.
Active Directory Attacks
Perform Kerberoasting, Pass-the-Hash attacks, exploit AD misconfigurations, and master lateral movement techniques across corporate networks.
Post-Exploitation
Utilize pivoting and tunneling techniques, execute data exfiltration strategies, and implement persistence mechanisms to maintain access.
Professional Reporting
Write professional penetration testing reports with proof of exploitation, clear risk communication, and actionable remediation recommendations.
Exam Structure
23:45 Hour Exam
A challenging 23 hours and 45 minutes practical exam followed by an additional 24 hours to submit your comprehensive report.
Multiple Targets
Compromise 3 stand-alone machines (60 points) and 1 Active Directory set (40 points) to demonstrate your skills.
Professional Report
Document your findings with screenshots, command logs, and provide actionable recommendations for certification.
Tools You'll Master
Become proficient with industry-standard tools essential for every penetration tester:
- Nmap: Network discovery and security auditing.
- Metasploit: Exploitation framework for developing and executing exploits.
- Burp Suite: Integrated platform for web application security testing.
- John the Ripper / Hashcat: Password cracking and credential recovery.
- Linux utilities: Essential command-line tools for system enumeration.
Lab Environment & Resources
Extensive hands-on resources to ensure you are exam-ready:
- 100+ Proving Ground Labs: Access to over 100 labs for extensive practice.
- Privilege Escalation Labs: Dedicated Windows and Linux escalation environments.
- Active Directory Labs: Specialized labs to practice domain attacks.
- Comprehensive Solutions: Access to OSCP-A, B, and C lab solutions.