The Offensive Security Certified Professional (OSCP) is the companion certification for our Penetration Testing with Kali Linux training course and is the world’s first completely hands-on offensive information security certification. The OSCP challenges the students to prove they have a clear and practical understanding of the penetration testing process and life-cycle through an arduous twenty-four (24) hour certification exam.
An OSCP has demonstrated their ability to be presented with an unknown network, enumerate the targets within their scope, exploit them, and clearly document their results in a penetration test report.
Real World Exams
The OSCP examination consists of a virtual network containing targets of varying configurations and operating systems. At the the start of the exam, the student receives the exam and connectivity instructions for an isolated exam network that they have no prior knowledge or exposure to.
The successful examinee will demonstrate their ability to research the network (information gathering), identify any vulnerabilities and successfully execute attacks. This often includes modifying exploit code with the goal to compromise the systems and gain administrative access.
The candidate is expected to submit a comprehensive penetration test report, containing in-depth notes and screenshots detailing their findings. Points are awarded for each compromised host, based on their difficulty and level of access obtained.
Real World Benefits
An OSCP, by definition, is able to identify existing vulnerabilities and execute organized attacks in a controlled and focused manner, write simple Bash or Python scripts, modify existing exploit code to their advantage, perform network pivoting and data ex-filtration, and compromise poorly written PHP web applications.
The twenty-four hour examination also demonstrates that OSCPs have a certain degree of persistence and determination. Perhaps more importantly, an OSCP has demonstrated their ability to think “outside the box” and “laterally.”
The only way to take the OSCP certification exam is to first complete the Penetration Testing with Kali Linux training course, where students learn to identify and exploit a wide array of operating systems in our vast online VPN lab network.
OSCP HOLDERS CAN
- Use multiple information gathering techniques to identify and enumerate targets running various operating systems and services.
- Write basic scripts and tools to aid in the penetration testing process.
- Analyze, correct, modify, cross-compile, and port public exploit code.
- Successfully conduct both remote and client side attacks.
- Identify and exploit XSS, SQL injection, and file inclusion vulnerabilities in web applications.
- Deploy tunneling techniques to bypass firewalls.
- Demonstrate creative problem solving and lateral thinking
The Offensive Security Wireless Professional (OSWP) is the only practical wireless attacks certification in the security field today. The OSWP challenges the students to prove they have the practical ability to perform 802.11 wireless audits using open source tools through a hands-on, four-hour certification exam.
The OSWP exam consists of several dedicated wireless networks with various configurations and vulnerabilities. The examinees are tasked with identifying, analyzing, and attacking each of the wireless networks presented to them, with the goal of gaining access to the network encryption
The student must submit the correct encryption codes for all networks, as well as the attack vectors used to obtain them in order to be awarded the OSWP certification.
Real World Exams
The OSWP examination requires the student to connect to our dedicated exam lab via SSH where they will encounter a number of wireless networks of varying configurations. The successful examinee will demonstrate their ability to identify the type of encryption in use on each network,
any restrictions in place on each network, and proceed to recover the encryption key for each of them. The candidate is required to submit a comprehensive penetration test report, containing in-depth notes and screen shots detailing their findings, including the steps required to crack each wireless network.
Real World Benefits
An OSWP, by definition, is able to identify existing vulnerabilities in 802.11 networks and execute organized attacks in a controlled and focused manner. An OSWP is able to circumvent various network security restrictions implemented on wireless networks, bypass them, and recover the encryption keys in use. The four hour examination also demonstrates that OSWP’s have a certain degree of persistence and determination and are able to perform under imposed time constraints.
OSWP HOLDERS CAN
- Conduct wireless information gathering.
- Circumvent wireless network access restrictions.
- Crack various WEP, WPA, and WPA2 implementations.
- Implement transparent man-in- the-middle attacks.
- Demonstrate their ability to perform under pressure.
The GPEN certification is for security personnel whose job duties involve assessing target networks and systems to find security vulnerabilities. Certification objectives include penetration-testing methodologies, the legal issues surrounding penetration testing and how to properly conduct a penetration test as well as best practice technical and non-technical techniques specific to conduct a penetration test.