Career Employer

Your FREE Offensive Security Certified Professional (OSCP) Practice Test 2026 – 230+ Q&A

Build the knowledge the OSCP practical demands — drill enumeration, exploitation, privilege escalation, and Active Directory questions, or take a full mixed practice test.

Master questions to boost your score

How ready are you?

To find us again, just search “Career Employer OSCP

By

Click Start Test above to launch a mixed OSCP knowledge practice test, or drill a single skill area — the standalone-machine techniques (enumeration, exploitation, and privilege escalation) or the Active Directory attack chain. Every question includes a clear explanation so you learn the reasoning, not just the answer.

Here is the honest framing: the OSCP exam itself is a 24-hour hands-on practical, not a multiple-choice test. You compromise real machines in a private lab and then write a penetration test report.

So these are not a mock 24-hour lab. They are exam-knowledge practice — the tools, flags, and techniques the practical constantly demands, so the commands and concepts are automatic when you are in the box.[2]

The OSCP (Offensive Security Certified Professional) is earned through OffSec’s PEN-200 course, and passing now also grants the OSCP+ credential.[1] To build readiness across every skill area, pair these with our free study guide, flashcards.

Prices, formats, and policies change — always verify the current details at offsec.com before you enroll or schedule.

OSCP at a Glance

OSCP at a glance
DetailOSCP
Exam format24-hour hands-on practical (compromise live machines, then submit a report) — not multiple choice
Testing time23 hours 45 minutes to attack the lab, plus a further 24 hours to write and upload the report
Points100 points possible: 3 standalone machines (20 pts each) + 1 Active Directory set (40 pts)
Pass standard70 of 100 points (no bonus points as of the Nov 1, 2024 OSCP+ update)
DeliveryProctored, in a private VPN lab environment
Administered byOffSec (Offensive Security), via the PEN-200 course
EligibilityOpen enrollment; Linux, networking, and basic scripting strongly recommended
CostSold in PEN-200 packages from ~1,749(bundle)or 1,749 (bundle) or ~1,699 (standalone exam); verify at offsec.com
Retake~$249 regular retake, with 4/8/12-week cooling-off periods between failed attempts
Credential earnedOSCP (no expiry) and OSCP+ (valid 3 years, renewable)

What Is on the OSCP Exam?

The OSCP exam is a practical assessment worth 100 points across two parts: three standalone machines worth 20 points each (10 for initial access, 10 for privilege escalation) and one Active Directory set worth 40 points.[2]

That makes standalone exploitation 60% of the score and the Active Directory chain 40%. Our practice questions are grouped along the same lines so your reps map to where the points are:

OSCP point structure by exam component
Standalone Machine 120% · 20 pts
Standalone Machine 220% · 20 pts
Standalone Machine 320% · 20 pts
Active Directory Set40% · 40 pts
OSCP practice test — practice questions by skill area with answer explanations

Practice Questions by Skill Area

Use Start Test for a full mixed OSCP knowledge simulation, or open the hub and pick a single skill area to drill. The standalone-machine sets reinforce enumeration, exploitation, and privilege escalation; the Active Directory set covers the lateral movement and pivoting that carries 40 of the 100 points — where most candidates lose ground.

Who Is Eligible to Take the OSCP?

The OSCP has open enrollment — there is no formal degree or certification prerequisite to sign up for PEN-200 and attempt the exam.[1]

That said, OffSec recommends real comfort with Linux, a solid grasp of TCP/IP networking, and at least one scripting language such as Bash or Python before you begin.

This is authorized, ethical security training — all attacks are performed against OffSec’s own dedicated lab systems, never live third-party targets. Confirm current recommendations at offsec.com.

How Do You Register for the OSCP?

You register for the OSCP by purchasing a PEN-200 package from OffSec, which bundles course access, lab time, and exam attempts, then scheduling your exam slot from your OffSec account.[3]

The Course and Cert Exam Bundle is $1,749 and includes 90 days of lab access plus one exam attempt. The Learn One subscription is $2,749 per year and includes two attempts.

If you are already prepared, a standalone OSCP+ exam attempt is $1,699. Verify all current pricing at offsec.com, since prices and package contents change.

Once you own an attempt, you book a specific exam date and time. Slots can fill up, so schedule early and make sure your testing environment meets OffSec’s proctoring requirements.

How Is the OSCP Scored?

The OSCP is scored out of 100 points, and you must earn at least 70 points to pass.[2]

Points come from compromising machines: each of the three standalone machines is worth 20 points (10 for a low-privilege foothold and 10 for full privilege escalation), and the Active Directory set is worth 40 points across its hosts.

You document everything you did in a professional penetration test report, which OffSec reviews to award points. As of the November 1, 2024 OSCP+ update, bonus points for course exercises are no longer awarded, so your score depends entirely on exam performance.[5]

How Hard Is the OSCP?

The OSCP is widely regarded as one of the toughest entry-to-mid-level offensive security certifications because it is purely practical — you have to actually break into machines under a ticking clock, not recognize answers.[2] The challenge is applied skill and stamina, not recall.

The Active Directory set is where many candidates struggle, since it requires chaining together enumeration, credential theft, lateral movement, and pivoting to reach the domain controller for the full 40 points.

Strong time management matters as much as technical skill: with 23 hours 45 minutes to attack and a separate 24 hours to report, candidates who plan their attack order and document as they go fare far better.

70/100
Points to pass
no bonus points
24 hrs
Hands-on exam window
+24h to report
40 pts
Active Directory set
biggest component

The takeaway: make the fundamentals automatic. When your enumeration, privilege-escalation paths, and Active Directory techniques are second nature, you spend exam hours solving the box instead of recalling the command — which is exactly what these practice questions train.

What to Expect on Exam Day

The OSCP is a proctored exam: you connect to a private VPN lab and an OffSec proctor monitors your session by webcam and screen share for the duration.[2] Have your government-issued photo ID and a quiet, compliant workspace ready before your slot.

You get 23 hours 45 minutes to compromise the machines, so a clear methodology — enumerate fully, exploit, escalate, take screenshots and notes as you go — keeps you efficient across the long window.

After the testing window closes you have a further 24 hours to finish and upload your penetration test report. Practicing your note-taking and reporting habits beforehand makes that second clock far less stressful.

How to Use This OSCP Practice Test

  • Make commands automatic. Drill flags and tools until you don’t have to think about syntax.[2]
  • Diagnose, then drill. Use a mixed test to find weak areas, then hammer that skill set.
  • Prioritize Active Directory. It’s 40 of 100 points and where most candidates lose ground.
  • Learn the why. Read every explanation — understanding the technique beats memorizing an answer.
  • Pair with hands-on labs. These questions reinforce knowledge; the exam still requires real lab reps.

Why the OSCP Matters

The OSCP is one of the most respected practical credentials in offensive security — because it is hands-on, employers treat it as proof you can actually compromise systems, not just describe how.[1] It is frequently listed as a preferred or required qualification for penetration testing and red team roles. Locking in the underlying knowledge is the foundation that makes the lab work click, and these free OSCP practice tests are an efficient way to get there.

Conclusion

Passing the OSCP comes down to applied skill under pressure — enumerate, exploit, escalate, and chain an Active Directory attack within 24 hours, then report it cleanly. Use this free OSCP practice test to make the fundamentals automatic, then prove them in the lab. Pair it with our free study guide, flashcards to walk into your exam window confident.

OSCP Practice Test FAQ

No. The OSCP is a 24-hour hands-on practical exam, not a multiple-choice test. You connect to a private VPN lab and must compromise real machines — gaining initial access and escalating privileges — then submit a professional penetration test report. Our practice questions are not a mock 24-hour lab; they build and check the underlying knowledge (enumeration, exploitation, privilege escalation, Active Directory, and pivoting) that the practical exam constantly demands.

References

  1. 1.OffSec. “PEN-200: Penetration Testing with Kali Linux (OSCP+).” offsec.com.
  2. 2.OffSec. “OSCP+ Exam Guide.” OffSec Support Portal.
  3. 3.OffSec. “Individual Pricing.” offsec.com.
  4. 4.OffSec. “What is the Exam Retake Policy?.” OffSec Support Portal.
  5. 5.OffSec. “Changes to the OSCP.” OffSec Support Portal.
Career Employer

Career Employer is the ultimate resource to help you get started working the job of your dreams. We cover topics from general career information, career searching, exam preparation with free study materials, career interviewing, and becoming successful in your career of choice.

Follow Us:

All Posts

Career Employer’s Editorial Process

Here at Career Employer, we focus a lot on providing factually accurate information that is always up to date. We strive to provide correct information using strict editorial processes, article editing, and fact-checking for all of the information found on our website. We only utilize trustworthy and relevant resources. To find out more, make sure to read our full editorial process page here.