SecProve
ExpertVendor-neutralOffSec· issued from US

OSCE3

Offensive Security Certified Expert 3

Offensive Security Certified Expert 3

Official page at OffSec↔ Compare with another cert
Exam fee
$0
Ongoing
$0/yr AMF
Study time
900–1500 hrs
Delivery
Online proctored
Validity
3 yrs (renewal cycle)

› Quality score

30.0 / 40

Four-axis SecProve rubric, each 0–10. SecProve editorial assessment — each axis carries a written justification so you can push back on any single call without dismissing the whole score.

Blueprint rigor
How well-defined and rigorous the exam blueprint is.
Meta-credential — no own blueprint, defined as the conjunction of OSWE + OSEP + OSED.
7.5/10
Practical evidence
Hands-on labs / written reports vs pure MCQ.
Practice rigour inherits from the three component exams (all live labs).
9.5/10
Currency & upkeep
How aggressively content is kept current with the field.
Currency is whichever of the three components has been updated most recently.
6.0/10
Market recognition
How often this signal actually moves a hiring decision.
Status badge inside OffSec's community; recognised by red-team leads but not a hiring-manager universal.
7.0/10

› Built for these roles

Security ArchitectSecurity Manager / CISOIT Security ConsultantSecurity Analyst (Senior)Network Security Engineer

› Exam format

Meta-certification: Requires simultaneously active OSWE + OSEP + OSED. No separate exam.

Passing score
Composite — earned by holding OSWE + OSEP + OSED simultaneously
Retake policy
Fee: $249 per attempt
Wait: 0d between attempts

Retake voucher $249 separately. No wait period beyond exam scheduling availability.

› Recertification

Valid indefinitely. No renewal required.

› NICE Framework work roles

The NIST NICE work-role IDs this cert maps to. NICCS lookup.

PD-WRL-007
Recognition
Global
Exam languages
en

› Core domains covered

The 3 domains this cert is centrally about. Passing the exam demonstrates working knowledge of each.

A9Penetration Testing & Red Teaming

Methodology (OSSTMM, PTES), web/network/mobile pentesting, social engineering, purple teaming.

A21Malware Analysis & Reverse Engineering

Static/dynamic analysis, sandbox analysis, assembly/disassembly, packer analysis, YARA rules, malware family classification.

A4Application Security

OWASP Top 10, secure SDLC, SAST/DAST/IAST, API security, code review, DevSecOps.

› Prerequisites

Experience

Active OSWE, OSEP, and OSED certifications.

› Progression

requiredrecommended

Where this cert fits in the typical learning path. Required edges are vendor-gated; recommended edges reflect de facto industry progression.

Required prereqs (0)

No vendor-gated prereqs.

Recommended priors (3)
OSEPOffSecOSWEOffSecOSEDOffSec
OSCE3
OffSec
Required by (0)

No certs require this one.

Recommended next (0)

No follow-on certs reference this one yet.

› Study materials

Curated starting points. Not exhaustive — vet each against your learning style and the current exam version.

› Version & lifecycle

Current version
Composite (2024 component versions)
Released
2024-06

Awarded automatically when you hold OSWE, OSEP, and OSED concurrently.

› Salary signal

Senior offensive security engineer / lead red teamer, US, 7+ years. Triple-cert holders are rare and command premiums.

$165K$245K
median $195K

Robert Half Salary Guide + community salary surveys · 2024 · US base only · p25–p75 range

› How it compares

vs
OSCP

OSCP is the entry OffSec cert; OSCE3 is the senior-level achievement combining three advanced OffSec exams.

↔ Compare side-by-side
vs
eWPTX

OSWE component overlaps with eWPTX in scope; OSCE3 is the broader bundle.

↔ Compare side-by-side

› Common exam traps to study

Cybersecurity cert exams reuse the same 25 distractor patterns over and over — category confusion, RTO vs RPO, IDS vs IPS, MD5 vs SHA-256, and more. Once you can name the trap, you stop falling for it. Each archetype page covers what it is, the specific pairs candidates confuse, and how to avoid it.

Browse all 25 cert-exam trapsStart with: BEST vs correct

See this cert’s domains highlighted on the interactive map, or compare it against the rest of the catalog.

Highlight on the domain mapBrowse all certifications