OSCP+ Elite: Penetration Testing with Kali Linux (PEN-200)
Master the "Try Harder" mindset with the industry's most rigorous practical certification. This 2026-updated course focuses on Active Directory (AD) exploitation, manual vulnerability research, and professional report writing. You will move beyond automated tools to understand the mechanics of exploitation, preparing you for a grueling 24-hour practical exam that simulates a real-world network breach.
4.9
By Namifly
Last updated: April 2026
$2100
One-time payment
30-day money-back guarantee
This course includes:
The Penetration Testing Process
Advanced Enumeration
Web Application Exploitation
Windows & Linux Privilege Escalation
Active Directory Mastery (Core Exam Focus)
Metasploit Framework
Reporting for Professionals
The 24-Hour Simulation
Choose Your Plan
Training
$1000.00
Training + Examination
$1600.00
Complete Assured Package
$2100.00
Select Batch
Choose a batch timing:
Course Description
In 2026, the OSCP+ Certification Training at Namifly is designed for those who want to prove they can actually do the work, not just talk about it. The "Plus" designation reflects a commitment to continuous learning; while your base OSCP knowledge is forever, the OSCP+ status proves your skills are fresh and aligned with 2026’s sophisticated attack vectors.
Why OSCP+ is Mandatory for Pentesters in 2026
The industry has moved away from "point-and-click" hacking. Employers now demand practitioners who can navigate Active Directory environments and bypass modern defenses without triggering alerts. The OSCP+ curriculum has been hardened to include:
Mandatory Active Directory: AD is no longer a "bonus" or optional path. It is a core requirement of the 24-hour exam, mirroring the reality that most corporate breaches involve AD compromise.
The 3-Year Currency Cycle: By requiring recertification or continuing education every three years, the OSCP+ ensures you aren't relying on 10-year-old exploits in a world of AI-driven security.
Professional Reporting: In 2026, a pentester is only as good as their report. We emphasize the "client-ready" aspect of the exam, where your documentation must be reproducible and provide clear remediation guidance.
The Core Mastery Domains
Information Gathering & Enumeration: Moving beyond simple port scans to deep service analysis.
Web Application Attacks: Mastering XSS, SQLi, and Directory Traversal in modern frameworks.
Privilege Escalation: Advanced techniques for both Windows (Service accounts, Token abuse) and Linux (SUID, Kernel exploits).
Active Directory Power: Kerberoasting, AS-REP Roasting, and Lateral Movement within a domain.
Evasion & Tunneling: Learning to move through restricted networks and bypass basic AV/EDR solutions.
Course Curriculum
Expand the sections below to see the detailed curriculum for this course.
Ethics, Engagement, and Discipline.
Automated vs. Manual discovery techniques.
Attacking modern APIs and Web-fronted databases.
Finding the path from "User" to "System/Root."
Domain Enumeration, Attacking Authentication, and Pivoting.
Effective usage within exam restrictions (1-target rule).
Structure of a winning OSCP+ exam report.
Full-scale mock labs to build 24-hour mental stamina.
Instructor information not available.
4.9
Course Rating
Rating distribution would be calculated from individual reviews.
No reviews yet for this course.
Frequently Asked Questions
Find answers to common questions about this course.
Yes! The base OSCP remains a lifetime certification. However, the OSCP+ is a new designation that expires every 3 years. You can "upgrade" to the + status by passing the current exam.
The exam is 23 hours and 45 minutes of active hacking, followed by 24 hours to submit your professional report.
You need 70 points out of 100. Typically, the Active Directory set is worth 40 points, making it the most critical part of your strategy.
You are allowed to use Metasploit on only one target machine during the exam. Once you use it on a machine, it is "locked" to that machine.
