The direct answer: OSCP certification costs $1,699 for the standalone exam with two attempts, $1,749 for the Course and Cert Bundle with 90 days of PEN-200 training and one exam attempt, $2,749 for the Learn One subscription with one year of training access and two attempts, or $6,099 per year for Learn Unlimited with unlimited attempts. The retake fee is $249 per attempt if you exhaust your included attempts.
There are no hidden fees beyond what OffSec publishes. But there are preparation costs, optional supplementary tools, and renewal costs that most candidates do not factor into their total budget. This guide covers every dollar.
OSCP Cost at a Glance: Every Option in One Table
| Option | Cost | Exam Attempts | Lab Access | Best For |
| OSCP+ Standalone Exam | $1,699 | 2 attempts (90 days) | No lab included | Experienced pentesters who self-study |
| Course and Cert Bundle | $1,749 | 1 attempt | 90 days PEN-200 | Most first-time candidates |
| Learn One Subscription | $2,749/year | 2 attempts | 365 days PEN-200 | Candidates who need more time |
| Learn Unlimited | $6,099/year | Unlimited | 365 days all courses | Professionals pursuing multiple OffSec certs |
| Exam Retake (standalone) | $249 per attempt | 1 attempt | No lab | Candidates who used included attempts |
| OSCP to OSCP+ upgrade | $799 | 1 attempt | No lab | Existing OSCP holders |
Option 1: OSCP+ Standalone Exam at $1,699
The standalone exam is for candidates who have already acquired penetration testing skills through independent study, prior training, or job experience. You pay $1,699 and receive two exam attempts valid for 90 days from purchase. No course material, no lab access, no PEN-200 content is included.
This option is best for experienced penetration testers who already understand privilege escalation, Active Directory exploitation, buffer overflows, and report writing at a professional level. Candidates without genuine hands-on experience who choose this option to save money almost always spend more in the long run through retake fees.
Option 2: Course and Cert Bundle at $1,749
The Course and Cert Bundle is the most popular option for first-time OSCP candidates. For $1,749 you receive 90 days of access to the PEN-200 Penetration Testing with Kali Linux course, access to OffSec’s practice labs, and one exam attempt valid for 120 days from the end of your lab access period.
The $50 price difference between the standalone and the bundle makes this the obvious choice for any candidate who does not already have advanced penetration testing experience. For $50 more you get structured training across 20 modules, hundreds of practice lab machines, and the foundational methodology that the exam is designed around.
Important: The 90-day lab window starts the moment you activate your course, not when you register. Do not activate until you are ready to study consistently.
Option 3: Learn One Subscription at $2,749 Per Year
Learn One gives you 365 days of access to PEN-200 and two exam attempts. This is the right choice if you need more than 90 days to prepare, which is realistic for candidates who are working full-time and studying part-time.
The additional cost over the Course and Cert Bundle is $1,000. In exchange, you get an extra 275 days of lab access and an additional included exam attempt. If you need a retake at the $249 price, the Learn One math works in your favor compared to the bundle plus a retake.
Option 4: Learn Unlimited at $6,099 Per Year
Learn Unlimited provides unlimited exam attempts across all OffSec certifications and access to every course OffSec offers. This includes OSCP, OSEP, OSWA, OSED, and more. If your goal is to stack multiple OffSec certifications within a single year, Learn Unlimited becomes cost-effective. For a single OSCP, it is not the right option unless your employer is paying.
The Real Total Cost: What Nobody Tells You
The exam fee is only part of what OSCP actually costs. Here is the honest total budget breakdown:
Required Costs
| Cost Item | Amount |
| OSCP exam option (Course and Cert Bundle recommended) | $1,749 |
| Total minimum required | $1,749 |
Strongly Recommended Supplementary Costs
| Cost Item | Amount | Notes |
| Proving Grounds Practice subscription | $19/month x 2 to 3 months | Closest simulation to real OSCP machines |
| Hack The Box subscription | $14/month x 2 to 3 months | OSCP prep pathway included |
| TryHackMe subscription | $14/month | Good for building foundations |
| Supplementary books (optional) | $30 to $60 | Hacking: The Art of Exploitation and similar |
| Total supplementary | $100 to $250 |
Possible Additional Costs
| Cost Item | Amount | Notes |
| Exam retake (if needed) | $249 per attempt | Bundle only includes 1 attempt |
| Additional 30 days lab time | $359 | If you need more practice time |
| Home lab hardware or VMs | $0 to $200 | VirtualBox is free; hardware varies |
Realistic Total Budget by Scenario
| Scenario | Total Cost |
| First attempt pass, Course and Cert Bundle, no extras | $1,749 |
| First attempt pass, with supplementary tools | $1,950 to $2,000 |
| One retake needed, with supplementary tools | $2,200 to $2,500 |
| Two retakes needed, with supplementary tools | $2,450 to $2,750 |
| Learn One with no retakes needed | $2,749 to $3,000 |
Most candidates who pass on their first or second attempt spend between $1,800 and $2,500 total. This is the honest number to budget for.
OSCP Retake Cost: Everything You Need to Know
A standalone retake attempt costs approximately $249. Here is the complete retake policy broken down clearly:
| Situation | Retake Cost |
| Course and Cert Bundle — used your 1 included attempt | $249 per retake |
| Learn One — used both included attempts | $249 per retake |
| Learn Unlimited — unlimited attempts included | $0 additional |
| Standalone exam — used both included attempts | $249 per retake |
| OSCP holder upgrading to OSCP+ — failed first attempt | $799 per subsequent attempt |
Cooling-off period: There is a mandatory waiting period between attempts. The length depends on your bundle. Verify current cooling-off requirements on the OffSec support portal before booking a retake.
The retake math: If you need one retake, the Course and Cert Bundle total becomes $1,998 — still less than Learn One. If you need two retakes, Learn One at $2,749 would have been cheaper. Plan your option based on how confident you are in your preparation.
OSCP Cost by Country in 2026
| Country | OSCP+ Standalone | Course and Cert Bundle |
| United States | $1,699 | $1,749 |
| United Kingdom | 1,296 GBP | 1,334 GBP |
| India | 151,433 INR | 155,889 INR |
| United Arab Emirates | 6,239 AED | 6,423 AED |
| Australia | 2,632 AUD | 2,709 AUD |
| Canada | 2,396 CAD | 2,467 CAD |
| Germany | 1,471 EUR | 1,514 EUR |
| Singapore | varies | varies |
Prices may vary. Always verify current pricing directly on the OffSec website as regional pricing is subject to change.
How Much Does OSCP Renewal Cost?
The original OSCP certification never expired. OSCP+ has a three-year validity period. To retain the OSCP+ designation, holders must complete one of the following before the three-year expiration date: pass the OSCP+ recertification exam, earn another qualifying OffSec certification such as OSEP, OSWA, OSED, or OSEE, or complete OffSec’s Continuing Professional Education (CPE) program.
| Renewal Path | Cost | Notes |
| OSCP+ recertification exam | $799 | Retake within 6 months of expiry |
| Earn qualifying OffSec cert | Varies | OSEP, OSWA, OSED, or OSEE |
| CPE program | TBD by OffSec | Points-based system |
Important for existing OSCP holders: The promotional price for OSCP+ for current OSCP holders was $199 between November 1, 2024, and March 31, 2026. After that, the price increases to $799. If you held the original OSCP and have not yet upgraded, the promotional window has now closed as of April 2026.
Key point: If the OSCP+ is not renewed, you lose the plus designation but retain the original, non-expiring OSCP certification. Your base OSCP credential does not disappear.
Is OSCP Worth the Cost? The ROI Analysis
This is the question that matters most. With an average salary increase of $35,000 per year and a total investment of approximately $2,000, OSCP delivers a 1,650% return in the first year.
Salary Data for OSCP Holders
| Role | Average US Salary |
| Penetration Tester (entry level) | $75,000 to $95,000 |
| Penetration Tester (mid level) | $95,000 to $125,000 |
| Senior Penetration Tester | $120,000 to $155,000 |
| Red Team Operator | $115,000 to $160,000 |
| Security Consultant (pentesting focus) | $110,000 to $150,000 |
| OSCP holder average (ZipRecruiter) | $120,200 |
The U.S. Bureau of Labor Statistics projects 29 percent growth for information security analysts over the next decade, much faster than the average for all jobs nationwide.
The ROI Calculation
| Investment | Amount |
| Total OSCP cost (realistic) | $2,000 to $2,500 |
| Average annual salary increase | $30,000 to $35,000 |
| Months to break even | 3 to 4 weeks of higher earnings |
| 5-year salary premium | $150,000 to $175,000 |
No other certification in the penetration testing space delivers this combination of employer recognition, practical skill validation, and salary impact per dollar invested.
How to Reduce Your OSCP Cost
Strategy 1: Get Your Employer to Pay
Many organizations fund OSCP preparation as professional development. Many employers offer full or partial tuition reimbursement for OSCP. So it is worth asking before you pay out of pocket. Present it to your employer as a direct investment in your organization’s security testing capability. A certified internal penetration tester costs far less than engaging an external security firm.
Strategy 2: Use Free Resources Before Paying
Before spending anything, maximize free resources:
- IppSec YouTube channel covers Hack The Box machine walkthroughs and teaches real methodology
- VulnHub provides free downloadable vulnerable virtual machines for offline practice
- TryHackMe free tier covers foundational content at no cost
- OffSec’s free trial lets you sample PEN-200 before committing
Build genuine foundational skills before you activate your paid lab time. Every day of lab access you waste on basics is money lost.
Strategy 3: Watch for OffSec Promotions
OffSec occasionally runs promotions around Black Friday and during cybersecurity awareness month in October. If your timeline allows, waiting for a promotion can save meaningful money on a $1,749 to $2,749 purchase.
Strategy 4: Choose Your Bundle Based on Honest Self-Assessment
If you already have genuine penetration testing experience, consider the standalone exam at $1,699. If you are building skills from scratch, the Course and Cert Bundle at $1,749 is almost always the right choice over the standalone. The $50 difference is the best value in the cybersecurity certification market.
Strategy 5: Consider Learn One for Part-Time Studiers
If you work full-time and realistically need more than 3 months, Learn One at $2,749 is often cheaper than the bundle plus a retake. Be honest about how much time you have per week before choosing your option.
OSCP vs Other Penetration Testing Certifications: Cost Comparison
| Certification | Cost | Format | Difficulty | Employer Recognition |
| OSCP+ | $1,699 to $1,749 | 24-hour practical exam | Very high | Gold standard |
| CEH | $1,199 to $1,999 | Multiple choice | Medium | Moderate |
| PNPT | $399 | Practical exam | High | Growing |
| PenTest+ | $358 | Multiple choice and performance | Medium | Moderate |
| eJPT | $200 | Practical exam | Low | Entry level |
| GPEN | $949 (exam only) | Multiple choice | Medium-high | High in enterprise |
OSCP costs more than most alternatives. It is also the only credential that penetration testing job postings list by name as a requirement rather than a preference. OSCP is the most requested certification in penetration testing job postings. The premium is justified.
What the OSCP Exam Actually Costs You in Time
Money is not the only investment. Time is the hidden cost that candidates consistently underestimate.
| Phase | Realistic Time Investment |
| Foundation building (networking, Linux, scripting) | 1 to 2 months |
| PEN-200 course completion | 2 to 3 months |
| Additional lab practice and external platforms | 1 to 2 months |
| Exam attempt 1 (24-hour hack + 24-hour report) | 2 days |
| Total preparation time | 3 to 6 months minimum |
Most working professionals need 4 to 6 months of consistent part-time study to be genuinely ready. Candidates who rush this process pay for it in retake fees.
What Is the OSCP Pass Rate?
OffSec does not publish official pass rate statistics. Community estimates based on candidate reports consistently place the first-attempt pass rate between 15 and 20 percent for candidates who take the exam without adequate preparation, and between 60 and 70 percent for candidates who complete the full PEN-200 course and practice systematically on external platforms before their exam date.
The lesson is direct: preparation quality is the strongest predictor of passing on your first attempt. Candidates who rush to the exam to save time almost always spend more money on retakes than they saved.
What Does the OSCP Exam Consist of?
Understanding the exam structure helps you budget your preparation time correctly.
| Component | Details |
| Hacking window | 23 hours and 45 minutes |
| Points available | 100 total |
| Standalone machines | 3 machines worth 20 points each (60 points total) |
| Active Directory set | 1 AD environment worth 40 points total |
| Passing score | 70 points minimum |
| Report submission window | 24 hours after hacking window closes |
| Proctoring | Continuous via webcam and screen sharing |
Active Directory now accounts for 40 percent of total exam points. Candidates who do not build a dedicated AD home lab and practice domain enumeration, lateral movement, and privilege escalation across multiple Windows machines consistently struggle with the AD section regardless of their standalone machine performance.
Who Should Spend Money on OSCP?
OSCP is worth the investment for:
Aspiring penetration testers. If your goal is a role in offensive security, red teaming, or ethical hacking, OSCP is the single most impactful credential you can earn. It is listed by name in job postings and used as a filter by hiring managers who want to know if a candidate can actually perform penetration testing rather than just answer multiple choice questions about it.
Security professionals transitioning to offensive roles. If you currently work in security operations, compliance, or defensive security and want to move into penetration testing, OSCP validates the transition credibly. Employers who hire pentesters want proof of hands-on exploitation skills, not just security knowledge.
Consultants who want premium rates. Independent security consultants and firms who hold OSCP command significantly higher rates for penetration testing engagements. The credential signals to clients that testing is performed by verified practitioners.
OSCP is not the right investment for:
Complete beginners with no IT foundation. If you do not yet understand networking protocols, Linux command line, and basic scripting, investing $1,749 in OSCP today is premature. Build that foundation first through CompTIA Security+ or TryHackMe before spending money on OSCP.
Professionals in non-offensive security roles. If your role is in compliance, GRC, cloud architecture, or security management with no intent to move into penetration testing, OSCP is not the best use of your certification budget. Credentials like CISSP, CISM, or SC-500 align better with non-offensive career paths.
Frequently Asked Questions: OSCP Certification Cost
How much does OSCP cost in 2026?
OSCP costs $1,699 for the standalone exam with two attempts, $1,749 for the Course and Cert Bundle with 90 days of PEN-200 training and one attempt, $2,749 for the Learn One subscription with 365 days of access and two attempts, or $6,099 for Learn Unlimited with unlimited attempts. The retake fee is $249 per additional attempt.
What is the cheapest way to get OSCP?
The standalone exam at $1,699 is the lowest entry price. However, candidates without hands-on experience who choose the standalone to save money usually spend more in retake fees. For most candidates, the Course and Cert Bundle at $1,749 delivers better value because the $50 premium includes 90 days of PEN-200 training and lab access.
How much does an OSCP retake cost?
A standalone retake attempt costs $249. This applies to candidates who have exhausted their included attempts from the Course and Cert Bundle or Learn One subscription. Learn Unlimited includes unlimited attempts at no additional cost.
Does OSCP expire?
The original OSCP never expires. OSCP+ has a three-year validity period and requires renewal through a recertification exam, a qualifying OffSec certification, or the CPE program. If OSCP+ is not renewed, the plus designation lapses but the original OSCP credential remains valid permanently.
How much does OSCP renewal cost?
OSCP+ renewal through the recertification exam costs $799. Renewal by earning a qualifying OffSec certification such as OSEP or OSWA costs the price of that certification. The CPE program cost has not yet been published by OffSec.
Can my employer pay for OSCP?
Yes. Many organizations fund OSCP as professional development. Present it as a direct investment in your organization’s security capability. Corporate buyers should contact OffSec directly about bulk or corporate pricing options.
Is OSCP worth the cost in 2026?
Yes, for professionals targeting penetration testing and offensive security roles. OSCP holders earn an average of $120,200 per year in the US. The total investment of approximately $2,000 pays back within weeks of landing a higher-paying role. It is the most requested certification by name in penetration testing job postings.
What other costs should I budget for besides the exam fee?
Budget $100 to $250 for supplementary practice platforms including Proving Grounds Practice at $19 per month, Hack The Box at $14 per month, and TryHackMe at $14 per month. Budget an additional $249 per retake if needed. Total realistic budget for most candidates is $1,800 to $2,500.
How long does OSCP take to prepare for?
Most candidates need 3 to 6 months of focused preparation. This includes foundation building, PEN-200 course completion, and additional external practice. Candidates who rush preparation consistently spend more in retake fees than they save in time.
Is OSCP harder than CEH?
Yes, significantly. CEH is a multiple-choice exam that tests theoretical knowledge. OSCP is a 24-hour practical exam that requires candidates to actually compromise live systems, escalate privileges, pivot through networks, and write a professional penetration testing report. The pass criteria are entirely based on demonstrated practical ability.
What score do you need to pass OSCP?
You need a minimum of 70 out of 100 points to pass OSCP. The exam consists of three standalone machines worth 20 points each and one Active Directory set worth 40 points. Points are awarded based on the level of access achieved and valid proof files submitted.
Can I use CertEmpire materials to prepare for OSCP?
Yes. CertEmpire provides practice materials and exam preparation resources for cybersecurity certifications. Visit our cybersecurity certification preparation section to find materials that help build the foundational security knowledge that strong OSCP candidates need before tackling the practical exam.
