OSCE3
Offensive Security Certified Expert
The OSCE3 is Offensive Security's expert-level credential. It isn't a single exam. You earn it by clearing three separate certifications, each a multi-day hands-on practical followed by a written report. Everything is practical, with no multiple choice.
I went after all three to cover the main areas of offensive security rather than specialising in one: web, network, and binary exploitation.
OSWE
Web Exploitation
White-box web application security: reading source, chaining logic flaws, and writing exploits for authentication bypasses and remote code execution.
OSEP
Red Teaming
Evasion and lateral movement against hardened, monitored environments: bypassing antivirus and application allow-listing, and pivoting through a network without getting caught.
OSED
Exploit Development
Windows exploit development from the ground up: stack overflows, SEH overwrites, and bypassing modern memory protections by hand.