certification

OffSec Certified Professional (OSCP) and OSCP+

RoleMath DifficultyRigor 91Barrier 62two cited lenses · profile below

Source-cited RoleMath page about OffSec Certified Professional (OSCP) and OSCP+.

Check if you’re ready ↓

Researched by RoleMath Research. Every figure on this page traces to the official source shown next to it.

A stretch credential — plan for real background first.

Offensive Security Oscp assumes more background than a first-cert candidate typically has. Building hands-on practice first is the more efficient path; the domains below are your study map. RoleMath Difficulty methodology

Who this certification is designed for

The vendor’s stated audience, plus an honest fit for your starting point. No pass rates, no guarantees.

Per Offensive Security: No required experience or prerequisite stated. No formal prerequisites. OffSec strongly recommends TCP/IP networking knowledge, reasonable Windows and Linux administration experience, and basic Bash and/or Python scripting familiarity. Offensive Security Oscp — official vendor page

◐ Reach — conditions apply

None - no formal prerequisite or experience requirement stated; vendor-recommended background is advisory. It remains a reach for a new learner because the cited background recommendation is: No required experience or prerequisite stated. No formal prerequisites. OffSec strongly recommends TCP/IP networking knowledge, reasonable Windows and Linux administration experience, and basic Bash and/or Python scripting familiarity.

Eligibility source Recommended background and registration boundary Official credential page Official eligibility source Official exam structure source

Funding to check: exam and prep costs may be reachable through vouchers, WIOA, Workforce Pell, GI Bill, or employer education assistance — eligibility depends on your location, provider, and status. Compare funding options →

Difficulty profile

A cited estimate of what the exam requires, split into two honest lenses — not one number, not a pass rate. RoleMath Difficulty methodology

Exam rigor (the test itself)90.6

3 of 4 cited signals · Moderate confidence

Barrier from zero (background it assumes)62.3

5 of 6 cited signals · Moderate confidence

These are exam-structure lenses, not a pass rate or anything about you.

Cost & upkeep

Exam fee plus what it takes to keep it — the recurring cost most pages hide.

3-year self-study cost
$1,699
Recertification terms
OSCP has no expiration; OSCP+ expires after 3 years and renews via a recert exam, a qualifying higher OffSec cert, or the OffSec CPE program. Offensive Security Oscp — official vendor page

No ROI math here — we never compare cost to a salary. training;renewal still needs verification. See the full cost breakdown →

Skills measured

The official objective domains and their exam weight — titles & weights only, straight from the vendor’s exam objectives. Offensive Security Oscp — official vendor page

Introduction to CybersecurityPlain-English orientation: use this as the topic area to study for Introduction to Cybersecurity. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Report Writing for Penetration TestersPlain-English orientation: use this as the topic area to study for Report Writing for Penetration Testers. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Information GatheringPlain-English orientation: use this as the topic area to study for Information Gathering. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Vulnerability ScanningPlain-English orientation: use this as the topic area to study for Vulnerability Scanning. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Introduction to Web ApplicationsPlain-English orientation: use this as the topic area to study for Introduction to Web Applications. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Common Web Application AttacksPlain-English orientation: use this as the topic area to study for Common Web Application Attacks. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
SQL Injection AttacksPlain-English orientation: use this as the topic area to study for SQL Injection Attacks. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Client-Side AttacksPlain-English orientation: use this as the topic area to study for Client-Side Attacks. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Locating Public ExploitsPlain-English orientation: use this as the topic area to study for Locating Public Exploits. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Fixing ExploitsPlain-English orientation: use this as the topic area to study for Fixing Exploits. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Antivirus EvasionPlain-English orientation: use this as the topic area to study for Antivirus Evasion. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Password AttacksPlain-English orientation: use this as the topic area to study for Password Attacks. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Windows Privilege EscalationPlain-English orientation: use this as the topic area to study for Windows Privilege Escalation. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Linux Privilege EscalationPlain-English orientation: use this as the topic area to study for Linux Privilege Escalation. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Advanced TunnelingPlain-English orientation: use this as the topic area to study for Advanced Tunneling. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
The Metasploit FrameworkPlain-English orientation: use this as the topic area to study for The Metasploit Framework. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Active Directory: Introduction and EnumerationPlain-English orientation: use this as the topic area to study for Active Directory: Introduction and Enumeration. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Attacking Active Directory AuthenticationPlain-English orientation: use this as the topic area to study for Attacking Active Directory Authentication. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)
Lateral Movement in Active DirectoryPlain-English orientation: use this as the topic area to study for Lateral Movement in Active Directory. The official objectives define the exact vendor tasks.Official study guide PEN-200;OSCP+ (2026-06-26)

This vendor does not publish exam-domain weightings, so the domains are shown unweighted.

Prerequisites

What's required vs merely recommended — stated plainly.

Hard requirement
None — open registration Offensive Security Oscp — official vendor page

“Recommended” is the vendor’s guidance, not a gate — you can register today.

What this proves — and how Offensive Security says to prepare

Offensive Security’s own framing of who earns it and what it signals, plus their free official study material. Quoted and cited — never dressed up as a job guarantee.

Who the vendor built it for
Best fit for penetration testers validating hands-on offensive skills through a 24-hour practical exam; a single PEN-200 pass grants both the lifetime OSCP and the 3-year OSCP+ time-currency credential.
Where it leads
No formal prerequisite; substantial fundamentals expected; OSCE3 is auto-awarded upon holding OSEP + OSWE + OSED.
Offensive Security Oscp — official vendor page

Optional · about 2 minutes

Not sure if Offensive Security Oscp is the right next step for you?

Answer a few quick questions and we’ll map your background against the exam’s published domains and the vendor’s recommended prep — a study order and a sequencing read, not a score or a pass prediction. Everything you need to decide is already above; open this only if you want a personalized plan.

Every figure on this page, sourced

The claims above trace to these records — the source, and when it was last checked. If a figure has no row here, we did not publish it.

IDSupportsSourceChecked
SCHEMA-CIT-1Schema citationoffensive-security-oscpLogged in source packet
SCHEMA-CIT-2Schema citationOfficial Candidate BundleLogged in source packet

Ready to see how this fits your background?

Find out if OffSec Certified Professional (OSCP) and OSCP+ fits your background.