Giuslock Pages grep

I'm a Certified Hacker - My Journey to CPTS

2 min read CPTS, Hackthebox, Certified Penetration Tester Specialist, htb

After 17 days of waiting, I can finally say it: I am CPTS certified!

After 17 days of agonizing wait, I can finally say it: I am CPTS certified! What can I say? In these uncertain times, bringing this home is a truly immense satisfaction.

Why CPTS and not OSCP?

Before diving into the exam experience, let's address the elephant in the room. When you decide to get a pentesting certification, OffSec's OSCP is usually the default choice. So why did I go for Hack The Box's CPTS instead?

The answer is simple: accessibility and self-funding. OSCP has become incredibly expensive, often reaching a price point where you need corporate sponsorship to foot the bill. I wanted to finance my own education and paid for my entire CPTS journey completely out of pocket. For anyone looking to bootstrap their cybersecurity studies without going broke, CPTS is the perfect choice. You get top-tier, modern labs at a fraction of the cost.

Hitting the Active Directory Wall

The certification journey was long, but incredibly useful. Hack The Box truly knows how to push you to your limits. I actually made my first two attempts back in June, but I hit a brick wall at the third machine. The Active Directory section proved to be too tough for me at the time.

I honestly don't think this exam is designed to be easily passed on the first try; it almost feels built to require multiple attempts. But giving up is not an option, because the practical knowledge you walk away with is massive.

The 10-Day Grind and the "CTF Mindset"

The exam itself is a grueling 10-day marathon. During the assessment, I realized I still relied heavily on a "CTF mindset," which caused me to waste a lot of time rabbit-holing on minor details.

The CPTS is deliberately designed to mess with your head. It constantly leaves you with the lingering doubt that you might not be following the right path, testing your methodology as much as your technical skills.

The Ultimate Reality Check

If you ever find yourself questioning your actual, real-world pentesting abilities, I highly recommend clashing with this exam. For me, it was a fundamental reality check and one of the best learning experiences I've had.

© 2026 Giuslock —