Prepare for the Offensive Security Certified Professional (OSCP) certification by OffSec with free exam-style practice questions on CyberCertPrep. The OSCP exam has 100 questions, a time limit of OSCP hours, and a passing score of 70%.
Choose from Practice mode, Exam Simulation, Weak Areas review, and Daily Challenge. Track your progress with detailed analytics and study with flashcards.
Offensive Security Certified Professional (OSCP) Exam Domain
Focus your study on this domain with targeted practice questions. This domain accounts for 15% of your OSCP exam score.
The Active Directory Attacks domain is one of 8 exam domains on the Offensive Security Certified Professional (OSCP) certification exam by OffSec. At 15% of the total exam, this domain carries significant weight and should be a primary study focus.
The OSCP exam consists of 100 questions with a time limit of 24 hours and a passing score of 70%. That means approximately 15 questions on your exam will come from the Active Directory Attacks domain.
Multi-Factor Authentication (MFA)
A security mechanism that requires two or more independent credentials to verify a user's identity, combining factors fr...
Single Sign-On (SSO)
An authentication scheme that allows a user to log in with a single set of credentials to access multiple applications a...
IDS (Intrusion Detection System)
A device or software application that monitors a network or systems for malicious activity or policy violations and gene...
IPS (Intrusion Prevention System)
A network security tool that monitors network traffic flows to detect and actively prevent identified threats in real ti...
AES (Advanced Encryption Standard)
A symmetric block cipher algorithm adopted by the U.S. government as the standard for encrypting electronic data, replac...
Malware
Malicious software designed to damage, disrupt, or gain unauthorized access to computer systems, encompassing a broad ca...
Ransomware
A type of malware that encrypts a victim's files or locks system access and demands a ransom payment (typically in crypt...
Phishing
A social engineering attack that uses fraudulent emails, text messages (smishing), or phone calls (vishing) to trick use...
These certifications also cover topics related to Active Directory Attacks:
Attacks & Exploits — 30% of exam
Password Attacks — 15% of exam
Network Attacks & Crypto — 25% of exam
Client-Side Attacks — 20% of exam
Server-Side Attacks (SSRF, SQLi, RCE) — 25% of exam
Active Directory Enumeration — 25% of exam