All tools below are explicitly allowed in the OSCP exam and completely free.
| Tool | Purpose | License | |------|---------|---------| | Nmap | Port scanning | GPLv2 | | Gobuster | Directory busting | Apache 2.0 | | Metasploit | Limited to 1 exam machine | BSD | | Netcat | Reverse shells | Open-source | | Python | Custom exploit scripting | PSF | | PowerShell | Windows enumeration | MIT | oscp pen200 free
Note: You cannot use
sqlmap,msfvenomis allowed only for payload generation (not automation). All tools below are explicitly allowed in the
OffSec provides several no-cost materials that many candidates overlook. Note: You cannot use sqlmap , msfvenom is
Offensive Security actually owns a free platform: PG Play. It has 10-15 machines that are free forever. They are older and easier than the exam, but they teach the exact methodology OffSec wants (enumeration, no brute forcing, manual exploitation).
The OSCP lab costs ~$750 for 90 days. You cannot get that for free. But you can build your own.
| OS | Free Resource | |----|----------------| | Linux | GTFOBins – every SUID binary escape | | Linux | LinPEAS – automated enum | | Windows | WinPEAS | | Windows | HackTricks – entire free wiki |
| Hours | : |
Minutes | : |
Seconds |