CTP and the OSCE Certification | Offensive Security

Course Overview

Disclaimer: As of October 15, 2020, Cracking the Perimeter(CTP) has been retired. However, the OSCE certification will always be valid. We’ve now broken down the CTP course materials into three separate courses: Advanced Web Attacks and Exploitation, Evasion Techniques and Breaching Defenses, and Windows User Mode Exploit Development. This more than doubles the content that was in Cracking the Perimeter. Students who pass all three of these courses will now obtain the new OSCE3 certification. This page will remain active for historical purposes. Please see our announcement and FAQ for more details.

Cracking the Perimeter (CTP) is the next step for penetration testers who have completed PWK. This online, self-paced ethical hacking course is among the most challenging available.

CTP focuses more on exploit development. Students learn how to identify advanced vulnerabilities and misconfigurations in various operating systems, then execute organized attacks.

Students who complete the course and pass the exam earn the Offensive Security Certified Expert (OSCE) certification. This cert proves mastery of advanced penetration testing skills. OSCEs have also demonstrated they can think laterally and perform under pressure.

Course includes a 48-hour exam.

Learn how to develop advanced exploits.

Gain access to a virtual penetration testing lab.

Earn your OSCE certification.

Certification Process

OSCE is an advanced penetration testing certification focusing on exploit development. We recommend going for this cert after attaining your OSCP and pursuing further pentesting experience.

Once you’ve reviewed the course material, completed the exercises in CTP, and practiced your skills in the lab, you’re ready to take the certification exam.

The OSCE exam has a 48-hour time limit and consists of a hands-on penetration test in our isolated VPN exam network. The network contains varying configurations and operating systems. Points are awarded for each compromised host, based on their difficulty and level of access obtained.

You must submit a comprehensive test report as part of the exam. It should contain in-depth notes and screenshots detailing your findings.

Real-world Benefits

A passing exam grade will declare you an Offensive Security Certified Expert (OSCE).

OSCEs have proven that they can craft their own exploits, execute attacks to compromise systems, and gain administrative access.

The intense 48-hour exam also demonstrates that OSCEs have an above-average degree of persistence, determination, and ability to perform under pressure.

“OSCE in the books. Thanks @offsectraining for the AMAZING course. I learned so much! Resume is updated and ready to start going out!! #OSCE.”
— @Vinsica

“Holy crap! I can’t believe I passed! This was one of the hardest things I’ve done in a long time. I spent around two years studying and preparing for this exam. I can’t believe I actually passed! That was such a grueling 48 hour exam…”
— @Z3R07h

“Successfully passed the #OSCE exam, Thanks @offsectraining for this awesome experience #offsec. Next step is #OSWE.”
— @sandh0t

“5 Months of HARD WORK... 2 Cancelled Flights…. So many sleepless nights ... TO FINALLY GET THIS EMAIL. P.S: WHAT THE HECK WAS THAT CHALLENGE. It was made by the Devil himself, no doubt about it. Thank you Offensive Security for the amazing journey!”
— @anasrahmani

“Learned today that I passed my #OSCE. It was RIDICULOUSLY HARD WORK, but I PASSED WITH ALL THE POINTS. This week has *SUCKED* (my home flooded from Keystone, with many others in Oklahoma), but this news seriously brightened my day. Thank you for the challenge @offsectraining!”
— @Bl0ckbuster

Establish connection to the virtual lab.

Progress through course materials and practice your skills.

Schedule certification exam within 120 days of course completion.

Successfully complete the 48-hour exam to earn your OSCE.

Course Details

Who is this course for?

This course is designed for:

Experienced penetration testers
Seasoned, hardcore security professionals

Course Overview & Syllabus

Like other Offensive Security courses, CTP combines traditional course materials teaching advanced penetration testing skills with hands-on, practice within a virtual lab environment. The course covers the following topics in detail. View the full syllabus.

Introduction
The Web Application Angle
Cross Site Scripting Attacks – Scenario #1
Real World Scenario
Directory traversal – Scenario #2
Real World Scenario
The Backdoor angle
Backdooring PE files under Windows Vista
Advanced Exploitation Techniques
MS07-017 – Dealing with Vista
Cracking the Egghunter
The 0Day angle
Windows TFTP Server – Case study #1
HP Openview NNM – Case study #2
The Networking Angle – Attacking the Infrastructure
Bypassing Cisco Access Lists using Spoofed SNMP Requests
GRE Route-Map Kung Fu
Sniffing Remote Traffic via GRE tunnel
Compromised Router Config

Course Prerequisites

Cracking the Perimeter is an advanced course and requires prior knowledge of Windows exploitation techniques. You should be comfortable in OllyDbg and understand concepts such as shellcode encoding, use of the Metasploit Framework, and Linux at large.

What competencies will you gain?

Debugging Windows binaries
Working through encoding issues and space restrictions while crafting exploits
Understanding PE structure to learn techniques that backdoor executables and bypass AV
Familiarity with more advanced protections like ASLR
Using creative and lateral thinking to achieve expanded view of standard vectors
Thinking outside the box to determine innovative ways of penetrating internal networks

Supporting your Online Journey

3.5 hours of course video
145-page course guide
Active student forums
Access to virtual lab environment

Course Reviews

OSCP/OSCE/OSWP Review

Cracking the Perimeter OSCE

OSCE Review

Course Review: OSCE

NetSec OSCE Review

Choose a learning path

Courses and Certifications

CTP (Retired)

Cracking the Perimeter
The Official OSCE Certification Course

Course Overview