OSCP is Dead?! Long Live PNPT?! (My Honest PNPT Certification Review)

By BearSec
Published: September 1, 2023

🚀 Introduction

Earlier this year, I finally took—and passed—the PNPT certification exam. What started as a casual goal in 2021 turned into a rewarding journey completed in 2023. While others in the CIS region had already earned their badges by then, I noticed a lack of detailed Russian-language reviews—so here’s mine, in English, for the global audience.

The PNPT is often compared to the OSCP Certification, with some saying it’s the perfect beginner-friendly entry into pentesting. But is that just hype? Let's explore.

📝 TL;DR – Quick Takeaways

• This is not a paid promotion. Just my unfiltered experience.

• I completed the OSCP before the PNPT—so my perspective is shaped by that.

• The PNPT exam felt more real-world than OSCP, but both have value.

• Some tasks might seem easier if you’ve had prior experience.

📚 What Is PNPT, and Who's Behind It?

PNPT stands for Practical Network Penetration Tester. Originally named CPEH when it launched on May 1, 2021, it was created by Heath Adams—better known as The Cyber Mentor on YouTube—and is now run by his company, TCM Security.

Heath’s tutorials have been a starting point for many infosec newcomers, and the PNPT certification reflects that hands-on, no-BS teaching style.

🆚 What Makes PNPT Different?

Unlike OSCP, PNPT’s exam simulates a real-life engagement:

• OSCP: 24 hours of hacking + 24 hours to write a report

• PNPT: 5 days for the pentest + 2 days for report writing

• Bonus: You must present your findings in a live debrief (Zoom call)

Other standout features:

• 1 free retake

• Lifetime course access

• No proctoring

• Friendly support community

💸 Cost Breakdown

As of writing, exam-only vouchers are gone. You’ll need to buy a bundle:

• $399 – Training + Exam

• $999 – Above + Career coaching

• $2,999.99 – All of the above + Live sessions + Virtual labs

🧠 What You Learn – Training Modules

The course consists of five modules, and you can take your time—literally. I started in 2021 and didn’t finish until 2023!

1. Practical Ethical Hacking

• Virtual machines, networking, Linux, Python basics

• Exploits, buffer overflows, AD attacks, and report writing

2. Windows Privilege Escalation

• Kernel exploits, DLL hijacking, impersonation, Registry tricks

3. Linux Privilege Escalation

• All the juicy Linux escalation techniques

4. OSINT Fundamentals

• Tools and tactics to dig up intel using public sources

5. External Pentest Playbook

• Pentest methodology and how to communicate results

You get walkthroughs, scripts, and even solution videos for stuck moments (a la IppSec). Some exercises are hosted on TryHackMe and Hack The Box.

🧪 Exam Experience – The Good, The Surprising, and the Sweat

You have 7 days total:

• 5 days to perform a real-world-style engagement

• 2 days to submit a professional report using templates provided

Your goal? Get Domain Admin access.
Bonus step? Present your findings over Zoom to a TCM proctor acting as a “client.”

My Journey

• Day 1: Frustrating—struggled with initial access. Lesson: don't overdo it.

• Day 2-3: Gained momentum. Familiar Linux/AD targets helped.

• Day 4: Report writing. OSCP muscle memory kicked in. Took ~3 hours.

• Debrief: Scheduled it for Day 7. Took 40 mins instead of 30, but the curator was chill and issued the certificate right after.

🔧 Tips for Success

• Approach it like a real engagement. Not everything needs root.

• Take screenshots. You’ll thank yourself during reporting.

• Check your footholds. Hidden clues can guide the path.

• Rest. Don’t underestimate the value of a clear head.

• Ask for help. The support team has your back.

• Balance matters. Don’t neglect your family and downtime.

✅ Pros & ❌ Cons

Pros:

• Affordable at $399

• Real-world exam format

• Solid training content

• Free retake

• More time to complete than OSCP

Cons:

• No dedicated lab environment

• Less industry recognition than OSCP

• Limited hands-on practice in certain modules

🔄 PNPT vs OSCP – Which Wins?

It’s not really about better. It’s about fit.
OSCP is still king in name recognition. PNPT, however, is a breath of fresh air in terms of format, support, and real-world simulation.

There’s a hidden global ranking of certs—PNPT sits closer to OSCP than many expect. That’s saying something.

🎯 Final Verdict

If OSCP is the academic gauntlet, PNPT is the practical apprenticeship. It's ideal for professionals who want realism, flexibility, and mentorship—not gatekeeping.

So…
Is OSCP dead? No.
But is PNPT rising fast? Absolutely.

Whether you’re a newcomer or a seasoned OSCP survivor like me, PNPT is worth your attention.