OSCP (Offensive Security Certified Professional)

From Bauman National Library
This page was last modified on 18 June 2016, at 15:01.
Offensive Security Certified Professional
fraimed
Developer(s) The Offensive Security Team
Repository {{#property:P1324}}
Written in C++
Operating system Linux
Type Directory service
Website Official

Offensive Security Certified Professional – OSCP Certification. The OSCP is our accompanying information security certification to the Penetration Testing with Kali Linux course. The OSCP was the first security certification in the market that required a fully “hands-on” performance-based approach, leaving no space for multiple choice questions. As the market leader, the OSCP changed the landscape of the security certification marketplace. During the online security test, students are placed in a virtual lab network with several vulnerable machines. Points are then awarded if a successful compromise occurs. Students must demonstrate their depth of understanding by documenting both the steps they took to penetrate the box as well as captured flag files in a report at the conclusion of testing.

What it is

Before pass OSCP-exam, you are studying The Penetration Testing With Kali Course.[1] This course is a video and PDF tutorial based, self paced learning course with associated practical exercises which you complete in parallel to having access to a large lab network environment. The idea is that you learn tools, techniques and theory in the course material, practice it in a guided manner in the exercises and then try it “for real” in the lab.

Hosted Penetration Testing Virtual Labs

Introducing the Offensive Security Penetration Testing Labs (OSPTL), a safe virtual network environment designed to be attacked and penetrated as a means of learning and sharpening your pen testing skills. The OSPTL was created using our years of experience running the Offensive Security Training Labs, as well as the large number of pen tests we have conducted over the years. This allows us to mirror interesting scenarios and introduce them into our hosted virtual labs. The virtual labs network is rife with both public and private vulnerabilities, each designed to deliver a specific educational experience to attacking participants.

Our hosted virtual labs networks are rich with various Operating Systems and attack vectors, allowing participants to utilize and hone a broad set of Offensive Security pen testing skills. Many vulnerable machines have non-standard configurations, often forcing participants to dig deep into the vulnerabilities in order to complete their task, rather than blindly using automated tools. This in turn provides for a richer and significantly more educational experience. Simply pointing existing attack tools at the targets and clicking “go” won’t work.

The Exam

The OSCP examination consists of a virtual network containing targets of varying configurations and operating systems. At the the start of the exam, the student receives the exam and connectivity instructions for an isolated exam network that they have no prior knowledge or exposure to.

The successful examine will demonstrate their ability to research the network (information gathering), identify any vulnerabilities and successfully execute attacks. This often includes modifying exploit code with the goal to compromise the systems and gain administrative access.

The candidate is expected to submit a comprehensive penetration test report, containing in-depth notes and screenshots detailing their findings. Points are awarded for each compromised host, based on their difficulty and level of access obtained.

References

Cite error: Invalid <references> tag; parameter "group" is allowed only.

Use <references />, or <references group="..." />

Notes

  • Penetration Testing with Kali (PWK) is a self-paced online penetration testing course designed for network administrators and security professionals who want to take a serious and meaningful step into the world of professional penetration testing. - https://www.offensive-security.com/information-security-training/penetration-testing-training-kali-linux/