OffSec PEN-200 (OSCP)

While there are no formal prerequisites, learners are strongly advised to have:

• A solid understanding of TCP/IP networking
• Familiarity with Linux and Windows operating systems
• Basic scripting ability in languages such as Bash or Python

To prepare for PEN-200, learners may benefit from completing the OffSec SEC-100: Security Essentials course.

Target audience

This course is aimed at cybersecurity professionals looking to build advanced ethical hacking skills and pursue the OSCP certification. It is particularly suitable for:

• Security analysts, penetration testers, and threat hunters
• IT professionals with prior experience in networking and system administration
• Learners seeking a career transition into offensive security

By the end of the course, learners will be able to:

• Apply penetration testing methodology to assess and exploit system vulnerabilities
• Conduct advanced information gathering and vulnerability analysis
• Exploit common web application vulnerabilities including XSS, SQL injection, and session hijacking
• Execute client-side attacks to compromise browsers and user-facing components
• Locate, customise, and deploy public exploits responsibly
• Write detailed, actionable penetration testing reports with remediation recommendations
• Prepare effectively for the OSCP and OSCP+ certifications through practical, lab-based experience

Introduction to cybersecurity

• Overview of key concepts, threats, and technologies
• Role of ethical hacking in modern cybersecurity

Report writing for penetration testers

• Structuring technical findings for business stakeholders
• Writing clear, concise, and impactful remediation advice

Information gathering

• Using tools like Nmap and Shodan for reconnaissance
• Network mapping and identifying potential targets

Vulnerability scanning

• Using common tools and more
• Interpreting scan results and prioritising vulnerabilities

Introduction to web applications

• Architecture of modern web applications
• Identifying structural weaknesses and exposure points

Common web application attacks

• Exploiting cross-site scripting (XSS)
• Injection flaws and session management weaknesses

SQL injection attacks

• Identifying injectable parameters
• Extracting data and escalating privileges via SQLi

Client-side attacks

• Analysing browser-based vulnerabilities
• Exploiting client-side flaws in JavaScript and plugins

Locating public exploits

• Finding and evaluating exploits from trusted sources
• Integration into the penetration testing workflow

Fixing exploits

• Customising existing payloads to bypass defences
• Developing reliable proof-of-concept attacks

Exams and assessments

Learners will have x2 exam vouchers, those who complete the course and successfully pass the 24-hour hands-on OSCP exam will earn the OffSec Certified Professional (OSCP) or OSCP+ certification. These certifications demonstrate the ability to compromise multiple machines in a controlled lab environment and are recognised for their rigorous practical requirements.

Hands-on learning

This course provides immersive practical experience through:

• Live lab environments simulating enterprise-grade infrastructure
• Real-world scenarios for each exploit covered
• A full 12-month OffSec LearnOne (PEN-200) subscription
• Continuous support and guidance through interactive learning modules