HackTheBox‘s CPTS (Certified Penetration Testing Specialist) and Offensive Security‘s OSCP (Offensive Security Certified Professional) are both competing for the same 2026 candidate: an intermediate-level pentester looking to prove hands-on skills to an Indian hiring manager. On paper they look almost identical — both are practical, both require a long report, both take 3-6 months to prepare for. But if you’re choosing between them right now, the decision has real implications for your budget, career timing, and job-market recognition.
This guide compares CPTS and OSCP the way you should evaluate them: syllabus depth, exam fairness, cost in India, and — most importantly — which one will actually get your CV past the initial ATS filter at companies hiring penetration testers in 2026.
Quick Comparison: CPTS vs OSCP at a Glance
| Factor | CPTS (HTB Academy) | OSCP (OffSec) |
|---|---|---|
| Full name | Certified Penetration Testing Specialist | Offensive Security Certified Professional |
| Vendor | HackTheBox Academy | Offensive Security (OffSec) |
| Released | 2023 | 2006 (updated 2023 with OSCP+) |
| Difficulty | Intermediate–Advanced | Intermediate |
| Exam format | 7-day hands-on + 2-day report | 24-hour hands-on + 24-hour report |
| Exam environment | Simulated enterprise network, ~10 targets | 3 standalone + 1 AD set (6 machines) |
| Passing score | 85 of 100 + commercial-grade report | 70/100 (reduced to pass; includes bonus) |
| Exam cost | US$210 (~₹17,600) — included in HTB Academy Silver | US$1,699 (~₹1,42,000) — bundled with PEN-200 course |
| Training cost | HTB Academy Silver ₹1,650/mo (~US$20) | PEN-200 Learn One ₹2,10,000+ (US$2,499+) |
| Retake cost | Free (with active Silver sub) | US$249 (~₹20,800) |
| Prep time | 6–9 months typical | 3–6 months typical |
| Pass rate | ~25-35% (HTB community estimate) | ~25-30% (OffSec unofficial) |
| Recognized by | Growing — most major firms, DoD 8570 pending | Universal — DoD 8570, most JDs globally |
| Lab access | Unlimited via HTB platform | Fixed (60/90/180 days via PEN-200) |
What CPTS Is and Why It’s Getting Noticed
CPTS launched in 2023 as HackTheBox Academy’s answer to OSCP. The path consists of 28 modules totaling ~750 hours of content across web, network, Active Directory, Linux privilege escalation, Windows privilege escalation, and report writing. You can consume all of it for ₹1,650/month through an HTB Academy Silver subscription — dramatically cheaper than OSCP’s one-time bundled package.
CPTS syllabus (condensed)
- Reconnaissance: Passive + active info-gathering, subdomain enumeration, attack-surface mapping
- Web attacks: Full owasp.org/www-project-top-ten/” target=”_blank” rel=”noopener noreferrer”>OWASP Top 10 coverage plus advanced topics (SSRF chains, template injection, deserialization)
- Network attacks: Protocol-level attacks, pivoting, tunneling (Chisel, socat, sshuttle)
- Privilege escalation: 40+ Linux techniques, 30+ Windows techniques — extensive breadth
- Active Directory: Full kill chain — enumeration, Kerberoasting, DCSync, trust abuse, LDAP attacks
- Post-exploitation: Credential harvesting, lateral movement, persistence
- Commercial report writing: This is a CPTS differentiator — you’re graded on the report as if a paying client would read it
The exam is the big divergence from OSCP. CPTS gives you a seven-day window to compromise approximately ten targets in a realistic enterprise network, then two more days to write a commercial-grade report. You need 85 of 100 flags AND a report that would pass as a genuine deliverable to a client. That report standard is stricter than OSCP’s.
What OSCP Still Has That CPTS Doesn’t
OSCP has been the dominant pentesting credential for 18 years. It ships with the PEN-200 course (Penetration Testing with Kali Linux), which has been updated multiple times — the current 2023 revision added AD attacks and dropped the buffer overflow requirement. For India-based candidates, OSCP remains the highest-recognition hands-on certification in almost every JD.
OSCP syllabus (condensed)
- Information gathering and vulnerability scanning
- Web application attacks — OWASP Top 10 baseline
- Client-side attacks — phishing, browser exploitation
- Active Directory — attack chain from user to domain admin (added 2022-2023)
- Privilege escalation on Linux and Windows
- Pivoting and tunneling
- Port redirection and metasploit basics
- Report writing — industry-standard structure (Executive summary, Methodology, Findings, Remediation)
The OSCP exam runs 24 hours hands-on followed by 24 hours of report time. You get three standalone target boxes plus an AD set of three more machines. You need 70 points of 100 to pass, with the AD set worth 40 points. The shorter time window makes OSCP more time-pressured than CPTS but also more manageable for working professionals who can’t reserve seven continuous days.
The 5 Key Differences That Should Drive Your Decision
1. Cost — CPTS is dramatically cheaper
If you prep CPTS in six months via HTB Academy Silver, your total outlay is ~₹9,900 subscription + ₹17,600 exam = ~₹27,500 (US$330). Compare that to OSCP’s bundled PEN-200 Learn One at US$2,499 (~₹2,10,000) for 12 months of lab + one exam attempt.
That’s an 8-10× cost difference. For Indian candidates self-funding certifications, CPTS is in a completely different affordability tier. For candidates whose employer is paying, OSCP is still the default because it’s reimbursable as a standard line item.
2. Exam realism — CPTS wins
The CPTS exam simulates a real penetration test — you have an entire network to map, multiple entry points to explore, and time to pursue attack chains that don’t work linearly. The seven-day window lets you take breaks, sleep, come back with fresh eyes.
The OSCP 24-hour format is artificial — no real pentest is that time-pressured. It’s more an endurance test than a skills test. Some candidates argue this realism mismatch is why CPTS produces pentesters who perform better in their first engagement — they’ve already done something close to the actual job.
3. Brand recognition — OSCP wins in India (for now)
This is the honest friction point for CPTS. As of 2026, scanning Indian pentest JDs on Naukri, Instahyre, and LinkedIn India:
- OSCP is listed explicitly in ~85% of pentest JDs
- CPTS is listed in ~18% of pentest JDs, usually phrased as “OSCP, CPTS or equivalent”
- HR filters at large companies (TCS, Wipro, Infosys security practices) often auto-reject CVs without OSCP — their ATS doesn’t recognize CPTS yet
- At boutique firms and MSSPs (Lucideus, Secura, CyberArk India), CPTS is increasingly accepted as “OSCP-equivalent” and hiring managers have done the diligence to validate this
This gap will close — HackTheBox has momentum and CPTS holders are performing well in interviews — but if you’re job-hunting in the next 6-12 months, OSCP still gets you past the ATS.
4. Breadth of content — CPTS wins
CPTS’s 750-hour path is roughly 3× the size of PEN-200 content. The web module alone is deeper than OSCP’s entire web coverage. If you want comprehensive skills beyond what the exam tests, CPTS Academy material is better learning content. Many OSCP holders pay for HTB Academy Silver specifically as supplemental learning.
5. Report quality — CPTS grading is stricter
OSCP’s report is pass/fail — you either documented your attack chain clearly enough to reproduce it or you didn’t. CPTS grades the report on commercial-grade quality including executive summary, risk scoring, remediation prioritisation, and client-communication standards. If you pass CPTS, you’ve demonstrated something closer to actual deliverable-ready pentest work.
Who Should Take Which
Take OSCP if you are:
- Targeting large Indian IT services firms (TCS, Infosys, Wipro, Tech Mahindra) where ATS filters require OSCP
- Applying to CERT-In empanelled firms doing VAPT for Indian government — CERT-In requirements implicitly prefer OSCP-holder teams
- Employer-sponsored — if your company is paying the ₹2,10,000, take the OSCP
- Aiming at international roles where DoD 8570, FedRAMP, or equivalent compliance frameworks mention OSCP specifically
- Preparing for OSEP, OSWE, or the broader OffSec cert stack — starting with OSCP makes the next certs cheaper via the OffSec Learn One bundle
Take CPTS if you are:
- Self-funding your certifications and ₹2,10,000 is out of reach
- Targeting boutique pentest firms, startups, or global-remote roles where CPTS is increasingly accepted
- Committed to a 6-9 month learning journey (CPTS is longer than OSCP prep)
- Already have the HTB platform as your primary practice environment
- Planning to use the CPTS certification plus strong GitHub/portfolio to leverage into roles — the deeper content prepares you better for real work
Take both if you:
- Can afford it — CPTS is cheap enough that taking it AFTER OSCP as supplemental validation costs less than a single CPE week
- Want to future-proof your CV for the next 3-5 years as CPTS recognition grows
The Best 2026 Learning Path in India
For a candidate starting in 2026 with 6-12 months of networking/Linux background, here’s the sequence that maximizes job outcomes at the lowest realistic cost:
- Month 0-3: Fundamentals. Work through TryHackMe‘s Jr. Penetration Tester path or HTB Academy’s Getting Started module. Get comfortable with Kali, basic web, basic Linux privesc.
- Month 3-9: Main prep. Pick CPTS if self-funding, OSCP if employer-funded. If both are options, pick based on target job market (big IT services → OSCP; boutique/international → CPTS).
- Month 9-10: Exam attempt. Plan it for a week when you have minimal other commitments.
- Month 10-12: Hands-on application. Join real pentest projects, contribute to HackTheBox writeups, or take on freelance small-scope tests. This is where real skill compounds.
- Month 12+: Specialisation — AD depth via CRTP, web depth via OSWE, or threat emulation via CRTO.
Which Exam Is Actually Harder?
Neither is trivially harder than the other — they test different aspects. OSCP rewards rapid methodical execution under time pressure; CPTS rewards sustained attack-chain thinking and production-quality documentation.
Community pass-rate estimates put both in the 25-35% range on first attempt. Candidates who pass both tend to say CPTS felt harder because of the report standard, while OSCP felt harder because of the compressed timeline. Pick the failure mode that scares you less.
Does CPTS Replace CEH?
CPTS doesn’t replace CEH in the Indian market — they target different roles. CEH is recognized for broad cyber roles (SOC, GRC, consulting), while CPTS is specifically for offensive/pentest work. If you’re aiming at a CERT-In empanelled firm or a PSU that explicitly lists CEH, do CEH first, then CPTS or OSCP for the hands-on credential.
Frequently Asked Questions
Is CPTS legitimate — is it accepted by employers?
Yes. CPTS is a legitimate certification from HackTheBox, backed by proctored exam infrastructure and peer-reviewed reports. Acceptance varies by employer — boutique firms, startups, and global-remote employers increasingly list it as OSCP-equivalent. Large Indian IT services are slower to adopt but trending positive.
Can I take CPTS without HTB Academy subscription?
You can buy the exam voucher separately for US$210, but you need to complete all 28 required modules on HTB Academy to get the exam access code. In practice, that means you’ll have an active Silver subscription for at least 6 months while learning.
Does OSCP certification expire?
OSCP has lifetime validity on the base credential. However, OffSec added an OSCP+ tier in 2024 that requires 3-year renewal through CPE or retake. Most employers still just check “OSCP: Yes/No” without verifying OSCP+ status.
Is OSCP retake cost included if I fail?
No. Each OSCP exam attempt costs US$249 additional after the first. PEN-200 Learn One and Learn Unlimited bundles include different numbers of exam attempts — read the fine print before purchase.
Should I do CEH before CPTS or OSCP?
Only if your employer requires CEH or you’re targeting Indian government/CERT-In work. For pure pentesting careers, going straight to OSCP/CPTS saves 2-3 months. See our OSCP career guide for a detailed roadmap.
How much time per day should I plan for CPTS/OSCP prep?
Minimum 3 hours per weekday plus 6-8 hours on weekends. Full-time (8+ hrs/day) prep can compress OSCP to 2-3 months, CPTS to 4-5 months. Part-time working professionals should budget 6-9 months for either.
Can I take CPTS or OSCP without prior IT experience?
Possible but hard. Both assume baseline Linux CLI comfort, basic networking (TCP/IP, DNS, HTTP), and basic scripting (Bash, Python). If you’re starting from zero, spend 3 months on eJPT (INE) or TryHackMe’s Complete Beginner path first.
Does Macksofy offer CPTS or OSCP training?
Yes. Macksofy runs guided OSCP bootcamps with live mentoring through PEN-200 plus mock exam reviews. CPTS-focused mentoring is available for candidates self-studying through HTB Academy — contact us for details.
What’s the average salary boost after OSCP or CPTS in India?
Candidates with OSCP typically command 30-60% salary premium over non-certified peers (₹6-12 LPA for freshers, ₹15-25 LPA for mid-level pentesters). CPTS currently commands about 80-90% of the OSCP premium in India, but this is closing as recognition grows.
The Verdict
If you’re reading this in 2026 and asking “one certification, which one?” — pick OSCP if you can afford it, CPTS if you can’t. Both will get you hired. OSCP will get you past more ATS filters. CPTS will prepare you slightly better for the actual work.
In three years, this comparison may favor CPTS outright — HackTheBox has pricing leverage, faster content updates, and a growing community. But for candidates looking for offers in 2026, OSCP still carries the stronger signal in the Indian pentesting job market.
References & Further Reading
Authoritative resources cited or relevant to the topics covered above:
- HackTheBox CPTS certification
- OffSec OSCP / PEN-200 official page
- HackTheBox Academy paths
- OffSec Proving Grounds Practice
- MITRE ATT&CK framework
