Offensive Security certifications are the most well-recognized and respected in the industry. Courses focus on real-world skills and applicability, preparing you for real-life challenges. Online, live, and in-house courses available.
Offensive Security offers a flexible training program to support enterprises and organizations of all sizes through the OffSec Flex Program.
OffSec experts guide your team in earning the industry-leading OSCP certification with virtual instruction, live demos and mentoring.
The Advanced Web Attacks and Exploitation (AWAE) course has been updated for 2020. Get your questions about AWAE and OSWE answered.
Read MoreThe Advanced Web Attacks and Exploitation (AWAE) course has been updated for 2020. Learn what changed, why we did it, and how it will help you.
Read MoreIn this post Mihai gives us a review of his experience with the Advanced Web Attacks And Exploitation course after obtaining his OSWE certification.
Read MoreIn this series, Tony Punturiero (TJ Null) will be showing how to use PowerShell on Kali Linux to obtain initial access with PSSession on Windows and Linux.
Read MoreAn announcement from Offensive Security regarding the new OffSec Giving Program, supporting those from backgrounds underrepresented in cybersecurity.
Read MoreWhat do you need to know before taking Advanced Web Attacks and Exploitation (AWAE)? OSCP holder and penetration tester Samuel Whang shares his perspective.
Read MoreCsaba Fitzl covers the `dyld` restriction decision process in macOS and a previously undiscussed or undocumented AMFI (AppleMobileFileIntegrity) system call.
Read MoreOSCP holder Samuel Whang shares his perspective on why upgrading to the 2020 materials is worth it for those who have already completed PWK.
Read MoreAs security researchers, we often find ourselves needing to look deep into various kernels to fully understand our target and accomplish our goals. Doing so on the Windows platform is no mystery, as there have been countless well-written posts about kernel debugging setups. For macOS, however, the situation is slightly different.
There are many great posts describing how to set up kernel debugging between two machines, but all of them suggest that SIP (System Integrity Protection) should be disabled for kernel debugging.
Read MoreTo help search the local copy of Exploit DB, we created “SearchSploit“, which gives you a powerful command line interface to perform detailed queries. SearchSploit has recently been updated. Let’s review the update and the benefits.
Read MoreHow can source code review help penetration testers with web application security assessments? Learn the benefits of white box web app penetration testing.
Read MoreDonavan Cheah gives us some of his thoughts on the subject of penetration testing, and his journey with the AWAE course in particular.
Read MoreOne of the designers on the Kali Linux team shares his top tips and tools to customize Kali Linux. Dig in under the hood with Daniel Ruiz de Alegría.
Read MoreOffSec student 0xklaue wrote this review of Advanced Web Attacks and Exploitation and the OSWE exam. Find out how to prepare and what you need to know.
Read MoreWith people located in over 24 countries, we’ve been working from our homes since our founding in 2006. Here’s five tips on how to run a distributed team effectively.
Read MoreFind out where to start with OffSec’s information security training courses. We outline our learning paths to certification and career development.
Read More
