OffSec Certified Professional (OSCP)

The industry-leading Penetration Testing with Kali Linux (PWK/PEN-200) course introduces penetration testing methodologies, tools and techniques via hands-on experience and is self-paced. Learners who complete the course and pass the exam will earn the Offensive Security Certified Professional (OSCP) certification which requires holders to successfully attack and penetrate various live machines in a safe lab environment. The OSCP is considered to be more technical than other ethical hacking certifications and is one of the few that requires evidence of practical penetration testing skills.

As part of my university studies at the Singapore Institute of Technology, I took up the 90-day Penetration Testing with Kali Linux (PWK/PEN-200) course, which was a compulsory module (ICT3210 - Industry Certification Module). The university required us to acquire internationally recognized certifications highly valued by the industry. My goal was to acquire practical ethical hacking skills through this course and obtain the OSCP certification.

However, unforeseen circumstances arose when my father was diagnosed with stage 4 lung cancer, plunging my life into a state of constant hospital visits and worry. It became incredibly challenging for me to focus on my studies, and I started missing classes due to my preoccupation with my father's health.

The demanding workload, commitments, and projects at school made it impossible for me to dedicate time to complete any of the labs provided in the PWK/PEN-200 course. I was afraid that I would not meet the prerequisites for graduation or be able to clear the OSCP certification exam.

Despite the circumstances I was in, I did not want to waste any more money, considering the escalating medical expenses for my father. Thus, I decided to go ahead and registered for my first exam attempt without any prior lab exposure. As expected, I failed miserably as I was lacking in practical ethical hacking experience. This setback further discouraged me, but it was my father who, while on his hospital bed, encouraged me to persevere, not wanting my worries about him to hinder my studies.

Determined to make my father proud, I invested time in proper preparation before my next exam attempt. I learned from my previous failure and familiarized myself with the assessment criteria for practical ethical hacking skills. Additionally, some of my school modules, such as the Ethical Hacking Module (ICT2204) and Web Security Module (ICT2206), provided me with additional black-box penetration testing experiences and learning opportunities. The Web Security Module, in particular, utilized CTF formats with strict time constraints, creating an environment similar to that of the OSCP certification for me to learn from.

By compiling notes from my polytechnic and university modules, tips from friends (Thank you, Yuan Shengh), insights from my first exam attempt's report, and various online resources aimed at helping others pass the OSCP certification, I registered for my second exam attempt. This time, I successfully passed the assessment by compromising four out of the five boxes in the exam.

My journey with the PWK/PEN-200 course was undeniably challenging, and while I may have missed out on fully exploring the lab aspects, it remains one of the most valuable learning experiences of my life. During this arduous period, I held onto a phrase and a verse that provided me strength and hope and kept me determined to persevere through this difficult season of my life.

It is not the water around the ship that sinks it in a storm. It is the water that gets into the ship. Don't let the difficult circumstances around you drown you.

I’m sure now I’ll see God’s goodness in the exuberant earth. Stay with God! Take heart. Don’t quit. I’ll say it again: Stay with God. - Psalm 27:13-14 [MSG]

To those who are contemplating on taking the Penetration Testing with Kali Linux (PWK/PEN-200) course to acquire the Offensive Security Certified Professional (OSCP) certification. It may seem daunting to some of you but you can definitely do it. Take time to practise and prepare, find support and friends who are willing to guide you through this. When unfavourable circumstances hit you hard, you can choose to stand again. My dad may have passed on but it was his encouragement that kept me going on one of the most difficult seasons of my life and his encouragement will stick with me for the rest of my life.