PEN-200: Penetration Testing with Kali Linux

PEN-200: Penetration Testing with Kali Linux

The industry-leading Penetration Testing with Kali Linux (PWK/PEN-200) course introduces penetration testing methodology, tools, and techniques in a hands-on, self-paced environment. Access PEN-200’s first Learning Module for an overview of course structure, learning approach, and what the course covers.

Learners who complete the course and pass the exam after November 1, 2024 will earn the OffSec Certified Professional (OSCP & OSCP+) penetration testing certification which requires holders to successfully attack and penetrate various live machines in a safe lab environment. These certifications are considered to be more technical than other penetration testing certifications and is one of the few that requires evidence of practical pen testing skills. The OSCP is a lifetime certification and the OSCP+ expires after 3 years, representing learners’ commitment to continuing education in the complex cybersecurity space.

OSCP+ Certification Badge

Starting at $1,749

Buy now Get a quote

Penetration Testing with Kali Linux Syllabus

  • Introduction to Cybersecurity

    Master the core concepts, technologies, and best practices that form the bedrock of cybersecurity, providing a solid foundation for your pen testing journey.

  • Report Writing for Penetration Testers

    Learn to craft clear, actionable reports that detail security vulnerabilities, and potential impact, and provide step-by-step remediation guidance to help clients strengthen their security.

  • Information Gathering

    Employ advanced ethical hacking techniques and tools like Nmap and Shodan to meticulously map target systems, uncover potential entry points, and discover exploitable vulnerabilities.

  • Vulnerability Scanning

    Utilize powerful tools like Nessus and OpenVAS to systematically identify known vulnerabilities in networks, applications, and systems, streamlining your penetration testing process.

  • Introduction to Web Applications

    Gain a deep understanding of how web applications function, their underlying technologies, and the architectural weaknesses that give rise to common attack vectors.

  • Common Web Application Attacks

    Explore the techniques behind prevalent web attacks like cross-site scripting (XSS), injection flaws, and session hijacking, and learn essential mitigation strategies.

  • SQL Injection Attacks

    Master the art of manipulating databases via SQL injections to extract sensitive information, compromise backend systems, and escalate your privileges.

  • Client-Side Attacks

    Discover how to exploit vulnerabilities in web browsers, browser extensions, and client-side technologies like JavaScript to compromise user systems and gain unauthorized access.

  • Locating Public Exploits

    Learn where to find reliable public exploits, how to assess their applicability, and how to integrate them responsibly into your security testing workflow.

  • Fixing Exploits

    Adapt and customize existing exploits, employ obfuscation techniques, and develop creative payloads to bypass defenses and successfully test target systems.

Download full course syllabus

Access PEN-200's first Learning Module

Start learning with OffSec

Most
popular

Course + Cert
Exam Bundle

$1,749/once

The bundle includes 90 days of access to a single course, the associated labs and a single exam attempt.

Buy now
Best
value

Learn
One

$2,749/year*

One year of lab access alongside a single course plus two exam attempts.

Buy now
All
access

Learn
Unlimited

$6,099/year*

Unlimited OffSec Learning Library access plus unlimited exam attempts for one year.

Contact us
Large
teams

Learn
Enterprise

Get a quote

Flexible terms and volume discounts available.

Book a meeting
*Subscription auto-renews unless canceled.

What our community is saying

Alex Caughey

Alex Caughey

Security Engineer

...I would 100% recommend this course to anyone seeking a broad and thorough technical understanding of many fundamental pentest concepts and practices, all delivered through a hands-on, well structured and complete lab environment.

Ludwig Schober

Ludwig Schober

Junior IT Security Engineer

The "try harder" mentality fits the OSCP journey very well—not because it's impossible, but because it demands persistence and the refusal to give up.

Douglas Costa

Douglas Costa

Cyber Intelligence/Digital Forensics

It was a significant challenge involving many sleepless nights. This certification reinforces my ability to think creatively, manage time and resources effectively, and persist through complex challenges.

Read more

PEN-200 FAQ

Upcoming PEN-200 Live Training

Mar 19 - Apr 10, 2025

Location: Hanoi, Vietnam

Languages: Vietnamese

Hosted by:

iPMAC
Register now

Mar 24 - May 26, 2025

Location: Virtual

Languages: French

Hosted by:

AMBIENT IT
Register now

Mar 25 - Mar 28, 2025

Location: Washington D.C.

Languages: English

Hosted by:

ATA | BlackHat
Register now
See all live training events

OffSec Penetration Testing Courses & Certifications

PEN-200

PEN-200: Penetration Testing with Kali Linux

Penetration Testing with Kali Linux (OSCP+)

PEN-210

PEN-210: Foundational Wireless Network Attacks

Foundational Wireless Network Attacks (OSWP)

PEN-300

PEN-300: Advanced Evasion Techniques and Breaching Defenses

Advanced Evasion Techniques and Breaching Defenses (OSEP)