OSCP (PEN-200) Offensive Security Certified Professional
Become a hands-on penetration tester who can compromise real networks and prove it under exam conditions.
This is an intensive, lab-heavy program built around OffSec's PEN-200 syllabus, the course behind the industry-respected OSCP certification. You learn offensive security the way it is actually practiced: enumerate a target, find a foothold, escalate privileges, and pivot deeper into a network, all in a live lab rather than through slides. Over roughly four months of mentor-led, hands-on sessions you build the manual tradecraft and the disciplined "try harder" methodology that OSCP is known for, and you finish exam-ready for the 24-hour practical assessment. It is delivered online from anywhere or onsite in Islamabad, in a batch or 1-on-1 format.
Duration
4 months
Level
Intermediate
Format
Online or onsite, 1-on-1 or batch
Certificate
NUEXUS certificate on completion
Target exam
OSCP+ (PEN-200)
Labs
Hands-on, real environment
What you will be able to do
- Run structured enumeration and reconnaissance against hosts, services, and web applications
- Find and exploit common vulnerabilities to gain an initial foothold, including web, service, and client-side attacks
- Perform privilege escalation on both Linux and Windows targets using manual techniques
- Pivot and move laterally through segmented networks, including exposure to Active Directory attack paths
- Adapt, fix, and use public exploits responsibly, and build simple tooling in Bash and Python
- Document your work in a clear, professional penetration test report as required by the OSCP exam
Who it is for
- -Aspiring penetration testers and red teamers who want a rigorous, practical entry into offensive security
- -IT, network, or system administrators moving into a security or ethical hacking role
- -SOC analysts and blue teamers who want to understand attacks from the attacker's side
- -Security enthusiasts and CTF players ready to formalise their skills toward the OSCP
- -Graduates and career changers targeting a recognised, hands-on offensive security credential
Prerequisites
- -Solid comfort with the Linux command line and general networking (TCP/IP, ports, services, DNS)
- -Basic scripting familiarity, for example Bash and a little Python, is strongly recommended
- -A machine able to run Kali Linux (natively or in a VM) with a stable internet connection
- -Persistence and self-discipline, since OSCP rewards methodical, independent problem solving
Skills you will gain
Pricing and training modes
Every mode is mentor-supported and hands-on. Pick how you want to learn; the price and what's included update as you choose.
Choose your training mode
Quoted per engagement
- Live mentor-led training (4 months), online or onsite
- Pace and focus tuned to you, per participant
- Doubt-clearing and revision built in
What you will cover
Structured, hands-on learning across 9 parts and 36 topics, with real labs and scenarios throughout.
What's included in your training
Everything you need to learn the skill and move toward the certification, in one program.
Learn by doing, in a real environment
OSCP is won in the lab. The whole program is time on target in a large practice network.
- Dozens of practice machines from easy to hard
- Full Active Directory attack chains and pivoting
- Manual Linux and Windows privilege escalation
- Exam-style report writing on every box you own
Career outcomes
The roles this training points toward, and what the wider market pays for them.
Entry
USD 60,000 to 90,000
Mid
USD 90,000 to 130,000
Senior
USD 130,000 to 170,000
Global averages from Glassdoor and PayScale, 2025. Actual pay varies by country, employer and experience.
Certification path
This course prepares you for the OffSec OSCP certification (PEN-200), earned by passing a 24-hour hands-on practical exam in which you compromise machines in an isolated network and then submit a professional penetration test report. The OSCP exam is challenging and deliberately practical; NUEXUS trains you to be exam-ready and maximises your chances, but the exam is taken directly with OffSec and no course can guarantee a pass. The exam attempt itself is purchased separately from OffSec and is not included in the training fee.
NUEXUS training certificate
Issued by NUEXUS when you complete the course. Anyone can confirm it is genuine on our verification portal.
Verify a NUEXUS certificateOffSec OSCP (PEN-200)
Earned separately by passing the official exam. This credential is issued and verified by the certification body itself, through its own portal, not by NUEXUS.
Verification: with the certification body directly
- Exam
- OSCP+ (PEN-200)
- Questions
- 3 standalone machines (60 points) plus a 3-machine Active Directory set (40 points)
- Format
- Fully hands-on, live-proctored exam plus a professional penetration-test report
- Duration
- 23 hours 45 minutes of exam time, then 24 hours to submit the report
- Passing score
- 70 out of 100 points (bonus points were removed in November 2024)
- Delivery
- OffSec proctored exam over a private VPN
An exam attempt comes with the official OffSec course and lab bundle, purchased separately from OffSec. Passing now earns the OSCP+ designation, which is valid for three years; the underlying OSCP does not expire. Even when NUEXUS arranges your exam voucher, the resulting certification is issued and verified by the certification body directly.
Frequently asked questions
More certification trainings
Request more information
Tell us what you need and our training team will tailor a plan for you.
OSCP (PEN-200) Offensive Security Certified Professional
See pricing & modes
