
OSCP explained
Learn all you need to know about OSCP (OffSec Certified Professional), including how to get certified, the benefits of OSCP and exam preparation.

What is OSCP?
The Offensive Security Certified Professional (OSCP) is an industry-leading certification offered by Off-Sec.
An OSCP Certification is earned by completing the PEN-200/PWK course (Penetration Testing with Kali Linux) and passing the associated exam.
OSCP is considered to be a technical and challenging certification, due to it's demands of hands-on pen testing expertise. It requires candidates to complete a hands-on lab to demonstrate experience of real-life penetration testing and challenges them to infiltrate and exploit multiple live machines.
It is a lifetime certification credential, and since November 1, 2024, those completing the course and exam receive both the OSCP and the OSCP+ certification.
What does the OSCP certification cover?
Those who take the OSCP's related course, PEN-200, will cover around 20 modules to help you fully prepare for the OSCP exam. Here is an overview of modules covered by the course.
- Module 1 - Penetration Testing with Kali Linux : General Course Introduction
- Module 2 - Introduction to Cybersecurity
- Module 3 - Effective Learning Strategies
- Module 4 - Report Writing for Penetration Testers
- Module 5 - Information Gathering
- Module 6 - Vulnerability Scanning
- Module 7 - Introduction to Web Applications
- Module 8 - Common Web Application Attacks
- Module 9 - SQL Injection Attacks
- Module 10 - Client-Side Attacks
- Module 11 - Locating Public Exploits
- Module 12 - Locating Private Exploits
- Module 13 - Fixing Exploits
- Module 14 - Antivirus Evasion
- Module 15 - Password Attacks
- Module 16 - Windows Privilege Escalation
- Module 17 - Linux Privilege Escalation
- Module 18 - Advanced Tunneling
- Module 19 - The Metasploit Framework
- Module 20 - Active Directory Introduction and Enumeration
- Module 21 - Attacking Active Directory Authentication
- Module 22 - Attacking Active Directory Authentication
- Module 23 - Lateral Movement in Active Directory
- Module 24 - Assembling the Pieces
- Module 25 - Trying Harder: The Labs
- Module 26 - The OSCP Exam Information
Why is OSCP important?
Penetration Testers are critical in identifying weaknesses in cyber security systems, helping businesses to keep their data and networks safe.
An OSCP certification shows that an individual has completed a highly rigorous exam, with practical and real-world application of their skills.
An individual with this certification has shown a dedication to their technical, problem-solving and analytical skills, and be well-equipped to tackle the threats faced by cyber security teams.
What are the benefits of earning the OSCP certification?
Earning the OSCP certification can be seen as a validation of an individuals skills. It is a widely recognized and well-respected certification, and can provide the perfect springboard for those within the field of cyber security.
It can also provide the foundation for undertaking more advanced certifications, such as further Offsec courses like OSEP, OSWE and OSED.
What are the prerequisites of OSCP?
Learners who want to complete the OSCP exam should have a solid understanding of TCP/IP networking, reasonable experience of Windows and Linux admin and a familiarity with Bash and/or Python scripting.
Before taking the OSCP exam, candidates must complete the PEN-200 course.
New to Penetration Testing? Set yourself up for success by subscribing to Learn Fundamentals.
Who is the OSCP certification for?
The OSCP certification is great option for professionals who are transitioning into a role in penetration testing. Here are some of the roles that are best suited to taking this course:
- Pen-Testers seeking one of the best pen-testing certifications
- Those embarking on a pen-testing career path
- Security professionals
- Network administrators
- Technology professionals
Which course should I take after OSCP?
OffSec PEN-300 (OSEP) is the perfect next step for those that have earned their OSCP exam. Evasion Techniques and Breaching Defenses (PEN-300) is an advanced penetration testing course, which builds on the knowledge and techniques taught in Penetration Testing with Kali Linux.
It teaches learners to perform advanced penetration tests against mature organizations with an established security function and focuses on bypassing security mechanisms that are designed to block attacks.
OSCP training courses
Prepare for the OSCP exam with our expert-led course.

OSCP Exam Preparation
There are a number of resources and training materials available to help you in preparing for the OSCP exam.
Study Resources
You can learn more about the OSCP exam, including study materials, by visiting Off-Sec's website. This includes a full run down of the PEN-200 courses and modules.
Off-Sec also help with preparing for the OSCP+ exam here.
OSCP Exam Tricks & Tips
You can learn more about the OSCP exam here.
The OSCP Exam
- The PEN-200 course exam (x2 attempts) is included in your course, and the online lab prepares you for the OSCP penetration testing certification
- 24-hour exam
- Proctored
Why choose QA for OSCP training?

Proud partner of Off-Sec
QA are Offensive Security's longest-standing partner across the UK/EU and is proud to be a Learning Partner.

Training led by cyber security experts
QA is an accredited, elite partner of OffSec: our trainers are recognized as having demonstrated excellence in the areas they teach.

Let's talk
Start your digital transformation journey today
Contact us today via the form or give us a call