OffSec PEN-200 (OSCP)

SKU: NTV-QAOFSECOSCP

938.730 kr.

This hands-on course OffSec PEN-200 (OSCP) class introduces learners to professional penetration testing using Kali Linux. PEN-200 is OffSec’s industry leading course for aspiring ethical hackers and forms the pathway to achieving the prestigious OffSec Certified Professional (OSCP and OSCP+) certifications. Learners will develop deep technical skills through a structured approach to ethical hacking, mastering penetration testing methodology, tools, and techniques in a self-paced learning environment.

The course blends theory with immersive practice, equipping participants with the capability to identify, exploit, and report vulnerabilities across real-world systems. Learners gain access to the OffSec PEN-200 (OSCP) learning content, and labs for 12-months to support their OSCP exam preparation journey.

Forkröfur

While there are no formal prerequisites, learners are strongly advised to have:

  • A solid understanding of TCP/IP networking
  • Familiarity with Linux and Windows operating systems
  • Basic scripting ability in languages such as Bash or Python

To prepare for PEN-200, learners may benefit from completing the OffSec SEC-100: Security Essentials course.

Target audience

This course is aimed at cybersecurity professionals looking to build advanced ethical hacking skills and pursue the OSCP certification. It is particularly suitable for:

  • Security analysts, penetration testers, and threat hunters
  • IT professionals with prior experience in networking and system administration
  • Learners seeking a career transition into offensive security

Nemandi mun læra eftirfarandi

By the end of the course, learners will be able to:

  • Apply penetration testing methodology to assess and exploit system vulnerabilities
  • Conduct advanced information gathering and vulnerability analysis
  • Exploit common web application vulnerabilities including XSS, SQL injection, and session hijacking
  • Execute client-side attacks to compromise browsers and user-facing components
  • Locate, customise, and deploy public exploits responsibly
  • Write detailed, actionable penetration testing reports with remediation recommendations
  • Prepare effectively for the OSCP and OSCP+ certifications through practical, lab-based experience

Samantekt

Introduction to cybersecurity

  • Overview of key concepts, threats, and technologies
  • Role of ethical hacking in modern cybersecurity

Report writing for penetration testers

  • Structuring technical findings for business stakeholders
  • Writing clear, concise, and impactful remediation advice

Information gathering

  • Using tools like Nmap and Shodan for reconnaissance
  • Network mapping and identifying potential targets

Vulnerability scanning

  • Using common tools and more
  • Interpreting scan results and prioritising vulnerabilities

Introduction to web applications

  • Architecture of modern web applications
  • Identifying structural weaknesses and exposure points

Common web application attacks

  • Exploiting cross-site scripting (XSS)
  • Injection flaws and session management weaknesses

SQL injection attacks

  • Identifying injectable parameters
  • Extracting data and escalating privileges via SQLi

Client-side attacks

  • Analysing browser-based vulnerabilities
  • Exploiting client-side flaws in JavaScript and plugins

Locating public exploits

  • Finding and evaluating exploits from trusted sources
  • Integration into the penetration testing workflow

Fixing exploits

  • Customising existing payloads to bypass defences
  • Developing reliable proof-of-concept attacks

Exams and assessments

Learners will have x2 exam vouchers, those who complete the course and successfully pass the 24-hour hands-on OSCP exam will earn the OffSec Certified Professional (OSCP) or OSCP+ certification. These certifications demonstrate the ability to compromise multiple machines in a controlled lab environment and are recognised for their rigorous practical requirements.

Hands-on learning

This course provides immersive practical experience through:

  • Live lab environments simulating enterprise-grade infrastructure
  • Real-world scenarios for each exploit covered
  • A full 12-month OffSec LearnOne (PEN-200) subscription
  • Continuous support and guidance through interactive learning modules