How Many Questions Are on the OSCP Exam? Complete 2026 Guide

The OSCP exam has zero traditional questions. It is a 23-hour 45-minute hands-on penetration test where you compromise multiple machines and submit proof. After the practical, you have 24 hours to write a professional report. OSCP is the gold standard for penetration testing certifications.

OSCP holders command $95,000-$140,000 in pentest roles, with senior positions exceeding $160,000.

0
MC Questions
23h 45m
Practical Exam
70/100
Passing Score
$1,649+
Course + Exam

Exam Format

ComponentDetailsPoints
Active Directory Set (3 machines)Full AD chain: initial access → lateral movement → domain admin40
Standalone Machine 1Full exploitation + privilege escalation20
Standalone Machine 2Full exploitation + privilege escalation20
Standalone Machine 3Full exploitation + privilege escalation20
Bonus PointsCourse exercises and lab report10
Strategy: AD set (40) + 2 standalones (40) = 80 points. Focus on AD chain first — highest value and most in-demand skill.

The 48-Hour Marathon

Phase 1: Practical (23h 45m)

Phase 2: Report (24 hours)

Professional report with executive summary, detailed findings, reproduction steps, screenshots, and remediation recommendations.

OSCP vs. Alternatives

CertFormatDurationCost
OSCPHands-on + report~48 hrs$1,649+
CEH125 MC4 hrs$1,199
PenTest+85 MC+PBQ165 min$392
GPEN82-115 questions3 hrs$2,499

Preparation

Frequently Asked Questions

Questions?

Zero MC. 23h 45m hands-on pentest.

Passing score?

70/100 points plus professional report.

How hard?

One of the hardest cybersecurity certs.

Duration?

~48 hours total (practical + report).

What's tested?

Enumeration, exploitation, privesc, AD, reporting.

Prep time?

3-6 months intensive; 6-12 for beginners.

Cost?

$1,649+ for course + exam.

Metasploit?

Limited — exploit modules on one target only.

Practice Offensive Security Concepts

Build penetration testing knowledge with practice questions.

Start Free Practice Test →

Related Resources