PEN-200

Offensive Security Certified Professional Plus (OSCP+)

About the Certification

The OSCP+ is an advanced professional certification from Offensive Security, specialized in hands-on Penetration Testing. It focuses heavily on real-world practical application rather than theory alone. The certification aims to equip candidates with the ability to identify security vulnerabilities, exploit them, and produce professional penetration testing reports that closely simulate real enterprise environments, following the well-known Try Harder methodology. It covers penetration testing skills across networks, operating systems, and applications, along with the use of ethical hacking tools and techniques, making it one of the strongest certifications in cybersecurity. It is well suited for Security and Ethical Hacking professionals aiming to work in Enterprise environments and Red Team roles.
OSCP+ is the updated version of the traditional OSCP certification.

Main Curriculum

The curriculum is divided into eight main sections

  • Penetration Testing Methodology and Attacker Mindset
    • Penetration testing methodology (Enumeration → Exploitation → Privilege Escalation)
    • Attacker mindset and problem-solving
    • Time management during the exam
    • Professional ethics and responsibility
  • Exploitation Techniques
    • Manual exploitation of vulnerabilities
    • Client-side and server-side exploitation
    • Password attacks
    • Using and modifying exploit tools
  • Privilege Escalation (Linux & Windows)
    • Linux privilege escalation techniques
    • Windows privilege escalation techniques
    • Misconfigurations and weak permissions
    • Post-exploitation enumeration
  • Active Directory Attacks
    • Enumerating Active Directory environments
    • Credential-based attacks
    • Lateral movement
    • Privilege escalation within Active Directory
  • Post-Exploitation and Lateral Movement
    • Maintaining access
    • Pivoting and tunneling
    • Data access and impact analysis
    • Clearing traces (conceptual)
  • Enumeration and Information Gathering
    • Network and service enumeration
    • Active and passive reconnaissance
    • Linux and Windows enumeration
    • Analyzing results and identifying attack paths
  • Web Application Attacks
    • Web application enumeration
    • SQL Injection
    • File Inclusion vulnerabilities
    • Authentication and authorization attacks
  • Reporting and Exam Preparation
    • Documenting security vulnerabilities
    • Writing professional penetration testing reports
    • Presenting and analyzing technical evidence
    • Preparing for the OSCP+ hands-on exam

Exam Details

  • Exam code: PEN-200
  • Exam duration: 24 hours (Hands-on lab exam) + 24 additional hours for report writing
  • Exam type: 100% practical
  • Language: English
  • Passing score: 70%
  • Exam fee: USD 1,599 – 2,499 (may vary by country and may include taxes)
  • Certification validity: 3 years

Do I need certifications before it ?

No, not at all.

However, it is recommended to have a strong understanding of networking and operating systems (Linux/Windows), along with practical knowledge of information security and penetration testing, preferably within the Offensive Security ecosystem.

Which certifications are recommended after this one ?

Not mandatory. However, for those seeking a strong professional penetration testing path especially in system exploitation, privilege escalation, and professional reporting following Offensive Security methodologies the OSCP+ certification is a powerful foundation.

What are the main career uses of the OSCP+ certification ?

  • Advanced Red Team certifications (CRTO / OSEP) – Deeper focus on advanced attacks, Active Directory, and professional Red Team operations.
  • Web & Application Security Advanced (OSWE) – Deep specialization in web application penetration testing and source code review.
  • Exploit Development & Malware Development – Advancing into low-level exploitation and offensive research.
  • Cloud Penetration Testing (AWS / Azure / GCP) – Professional testing of cloud and hybrid environments.
  • Purple Teaming – Bridging offensive and defensive skills to improve detection and response.
  • Red Team Lead / Security Researcher – Transitioning into leadership or research-focused offensive security roles.

Professional Hands-On Ethical Hacking :

This certification is considered one of the strongest practical penetration testing certifications available.
It proves your real ability to think like an attacker and execute realistic attacks, placing you among the elite cybersecurity professionals and significantly increasing your market value with Offensive Security accreditation.

Who is this certification suitable for ?

  • Professionals with a solid foundation in Linux, networking, and security.
  • Current or aspiring Penetration Testers and Red Team members.
  • Those interested in hands-on hacking and real-world attack simulations.
  • Cybersecurity students or professionals seeking a highly respected certification.
  • A student or professional in Cybersecurity seeking a strong, recognized certification to enhance their professional standing.

In Short :

One of the most powerful hands-on penetration testing certifications, ideal for anyone who wants to prove real-world hacking skills through Offensive Security.

Get Certified Today

Register Now And Get Your Certificate