Cognitive Biases and Penetration Testing
Jeremy “Harbinger” Miller shares with us his thoughts on cognitive biases and how they relate to penetration testing.
Read MoreOSCP Exam Change
Learn about upcoming changes to the OSCP exam structure. New changes will better reflect the current PWK materials and the skills needed to be a successful information security professional.
Read MoreLearn Subscriptions: Course Structure and New Courses
Our Learn subscriptions now include two new courses: SOC-200 (for cyber defense roles like SOC Analysts and Threat Hunters) & WEB-200 (for App Security Analysts and Web App Pentesters). Learn about each course and the structure of new courses added to the OffSec Training Library.
Read MoreSome Thoughts on Teaching Hacking
OffSec’s Jeremy “Harbinger” Miller shares his thoughts on teaching information security, hacking and pentesting by building accurate models of systems, minds and attacks with your students.
Read MorePythonizing Nmap
Tristram (aka gh0x0st) shares with us some tips for using python to automate nmap and other parts of your penetration testing process.
Read MoreDownloads in Subscriptions
Have you subscribed to the OffSec Training Library? Learn about the development and release of the new OffSec course downloads feature.
Read MoreThe Value of Subscriptions
Hear from Jim O’Gorman, Chief Content and Strategy Officer on the value he sees in the new Learn One and Learn Unlimited subscriptions.
Read MoreNew OffSec Training Library Subscriptions: Learn One and Learn Unlimited
The OffSec Training Library is a subscription-based cybersecurity training platform. Discover more about our Learn One and Learn Unlimited subscriptions.
Read MorePowerShell Obfuscation
In this article, community moderator Tristram (gh0x0st) shares with us an approach to scripting payload obfuscation via PowerShell in order to avoid AV and AMSI detection.
Read MoreLearning how to hack has a long feedback loop.
How do we learn hacking? What is OffSec’s teaching philosophy? We answer these questions and many more in our How We Teach Hacking webinar.
Read MoreWhat’s New at OffSec – May 2021
Find the latest on our Discord Server Updates, our recent podcast episodes and the newest applications, tools, etc. created by our OffSec Community Members.
Read MoreIntroduction of Recently Retired OSCP Exam Machines in PWK Labs
Students can now take advantage of their PWK Labs IT network with the addition of 5 retired OSCP exam machines. Learn more about why we’ve made these changes.
Read MoreeXtended Flow Guard Under The Microscope
Microsoft seems to be continuously expanding and evolving its set of security mitigations designed and implemented for Windows 10. In this blog post, we’ll examine an upcoming security feature called eXtended Flow Guard (XFG).
Read MoreCVE-2021-1815 – macOS local privilege escalation via Preferences
Apple fixed three vulnerabilities in macOS 11.3’s Preferences. Here we present our writeup about how we identified one of the issues, and how we exploited it.
Read MoreIntel CET In Action
In this article, we’ll examine how effective CET is at mitigating real-world exploits that make use of ROP or stack based buffer overflow vulnerabilities.
Read MoreUnderstanding the tools/scripts you use in a Pentest
In this blog post Offensive Security will explain why you should take the time to understand and learn about your tools before you run them.
Read More