40 points. This is typically an all-or-nothing chain involving a Domain Controller and two client machines.

In November 2024, Offensive Security (now OffSec) rebranded the credential to , introducing mandatory Active Directory components and a three-year expiration window to ensure certified professionals maintain current skills in a rapidly evolving threat landscape. 1. The OSCP+ Exam Structure (2026)

Active reconnaissance using nmap , gobuster , and service enumeration.

Kerberoasting, AS-REP Roasting, Pass-the-Hash, and lateral movement.

OffSec offers several paths to the certification, with costs varying based on the length of lab access.