In this comprehensive guide, we’ll explore two popular cybersecurity certifications: PWK/OSCP and CTP/OSCE. We’ll provide a review, comparison, and exam guide for these Offensive Security courses.
PWK/OSCP
Offensive Security’s Penetration Testing with Kali Linux (PWK) and Offensive Security Certified Professional (OSCP) are widely recognized certifications in the cybersecurity industry. The PWK course includes a detailed training manual, instructional videos, and a sprawling lab network with over 50 unique systems to infiltrate.
The OSCP exam lasts 24 hours, and you must document your exploitation process for each target. The exam structure includes 3 stand-alone machines and an Active Directory (AD) set with 3 machines. You need to achieve a minimum score of 70 points to pass the exam.
Exam Restrictions
- No spoofing (IP, ARP, DNS, NBNS, etc.)
- No commercial tools or services (Metasploit Pro, Burp Pro, etc.)
- No automatic exploitation tools (db_autopwn, browser_autopwn, SQLmap, SQLninja, etc.)
- No mass vulnerability scanners (Nessus, NeXpose, OpenVAS, Canvas, Core Impact, SAINT, etc.)
- No AI Chatbots (OffSec KAI, ChatGPT, YouChat, etc.)
Metasploit Restrictions
- Only one target machine can be exploited using Metasploit modules or the Meterpreter payload
- Metasploit/Meterpreter cannot be used for pivoting
CTP/OSCE
The Cracking the Perimeter (CTP) course focuses on exploit development, building upon the skills learned in PWK/OSCP. The course covers various topics, including web application hacking, PE backdooring, antivirus bypass, fuzzing, ASLR bypass, SEH overwrites, egghunters, writing encoders, shellcoding, and GRE tunneling.
The CTP exam lasts 48 hours, and you must provide proof of exploitation for each target machine. The exam structure includes 5 machines, and you need to achieve a minimum score of 75 points to pass the exam.
Exam Restrictions
- No external tools or services
- No sharing information about the exam with others
- No using exploits or code written by others without understanding how it works
Conclusion
PWK/OSCP and CTP/OSCE are valuable certifications for cybersecurity professionals looking to enhance their penetration testing and exploit development skills. While the exams can be challenging, they provide an excellent opportunity to learn and grow in the field.
OSCP Exam Guide
Before taking the OSCP exam, make sure to read the Offensive Security Certified Professional Plus (OSCP+) certification exam guide carefully. The guide includes information on exam structure, requirements, submission instructions, and results.
Exam Structure
- 3 stand-alone machines (60 points in total)
- 1 Active Directory (AD) set containing 3 machines (40 points in total)
Exam Requirements
- Write a professional report describing your exploitation process for each target
- Document all steps, commands issued, and console output in the form of a penetration test report
- Provide proof of exploitation for each target machine
Documentation Requirements
- Documentation should be thorough enough that your attacks can be replicated step-by-step by a technically competent reader
- Failure to provide sufficient documentation will result in reduced or zero points being awarded
Exam Proofs
- Retrieve, submit in your control panel, and include in a screenshot with your documentation
- Failure to provide the appropriate proof files in a screenshot for each machine will result in zero points being awarded for the target.
Exam Submission
- Submit your report and proof files within 24 hours of completing the exam
- Ensure that your report includes an executive summary, methodology, and findings for each target
- Proof files must be in the format of
local.txt
orproof.txt
and must be located in the target’s root directory
Exam Results
- Results are typically released within 5 business days of exam submission
- If you pass, you will receive a digital certificate and a physical certificate in the mail
- If you fail, you can retake the exam after 30 days for a discounted rate
Additional Resources
With the right preparation and mindset, you can succeed in the PWK/OSCP and CTP/OSCE exams. Good luck!