The Offensive Security Blog

Stay up-to-date with the latest news and updates by subscribing to our RSS feed!

Blog Posts and Recent News from Offensive Security

Try Harder – stay up-to-date with the latest Offensive Security news and Kali updates by subscribing to our RSS feed!

Live Training 2011

Advanced Windows Exploitation Updated

Our Advanced Windows Exploitation (AWE) live course in Columbia, Maryland is fast approaching with a start-date of October 24. Not only is the first time we have offered this training outside of BlackHat, it is also the first time we are able to offer a full 5 days of training and a limited number of seats are still available for this intense course.

Read More
MSF Pentesters Guide by David Kennedy, Jim O'Gorman, Devon Kearns, and Mati Ahoroni

Metasploit: A Penetration Testers Guide

Offensive Security is happy to announce the availability of Metasploit, The Penetration Tester’s Guide – A new book by by Dave Kennedy (ReL1K), Devon Kearns (dookie), Jim O’Gorman (_Elwood_), and Mati Aharoni (muts).

Read More
MSFU Updates

MSFU Updates – June 2011

Over this past month, we have put a great deal of time into bringing our free online course, Metasploit Unleashed in line with BackTrack 5. The majority of these changes are cosmetic in nature but they should help to reduce confusion for newcomers to Metasploit and BackTrack while ensuring a consistent look throughout.

Read More
MSFU Updates

MSFU Updates – May 2011

This month, even with the rampant development and release of BackTrack 5, we still devoted some time to updating Metasploit Unleashed. The Metasploit team is making a great deal of progress switching over to post-exploitation modules so we focused entirely on them this month and added many to the Metasploit Module Reference section.

Read More
MSFU Updates

MSFU Updates – April 2011

This past month has seen more additions to our free Metasploit Unleashed training course, primarily in our on-going effort to build out the Metasploit Module Reference section. Also, with the Metasploit team moving away from meterpreter scripts in favor of post-exploitation modules, we have been updating the relevant sections of MSFU.

Read More
pwb-caribbean-offsec-blog4

Discover your inner Pirate

For the last two years Offensive Security has been taking the live training market by storm with its flagship course, Pentesting with BackTrack. We are very excited to announce that the next PWB live training will be held in an exotic location the Caribbean island of St. Kitts and Nevis….

Read More
BackTrack 5 on a Motorola Xoom

BackTrack 5 on a Motorola Xoom

In the past few days we have been toying with some Motorola hardware, and have managed to get a basic build of BackTrack 5 (+ toolchain) on a Motorola Xoom. The possibilities look exciting as we are slowly building several experimental arm packages. Our team does not have much experience…

Read More
offsec-thumb-se-defcon19-2011

The Schmooze Strikes Back

The Social Engineering Defcon 19 CTF For the last 2 years now, Social-Engineer.Org’s mission has been to raise awareness for social engineering. Security technology has not been able to stop the advances of attackers leveraging social engineering techniques in order to gain unauthorized access to global organizations and fortune 500…

Read More
MSFU Updates

MSFU Updates – March 2011

This past month has seen more additions to our free Metasploit Unleashed training course, primarily in our on-going effort to build out the Metasploit Module Reference section. At the same time, we are still continuing to work through the course content to ensure that it is still all functional.

Read More
Live Training 2011

Live Training Spring 2011

In our spring tradition of live training we are happy to announce our official April 2011 Pentesting With BackTrack course in Columbia, MD. As usual we are keeping our classes small so if you are interested sign up as soon as possible before we are full.

Read More
MSFU Updates

MSFU Updates – February 2011

This past month has seen a number of additions to our free Metasploit Unleashed training course, primarily in our on-going effort to build out the Metasploit Module Reference section. In addition, we are still continuing to work through the course content to ensure that it is still all functional.

Read More
MSFU Updates

MSFU Updates – January 2011

This past month has seen a number of additions to our free Metasploit Unleashed training course, primarily in our on-going effort to build out the Metasploit Module Reference section. The Metasploit team has been developing at a rapid pace with new features and modules being frequently added. We are also continuing to go through the course content itself and verify the functionality of the provided material.

Read More
derbycon-offsec-blog

DerbyCon Security Conference 2011

We are happy to announce that Offensive Security will be sponsoring DerbyCon. DerbyCon is a new hacker conference located in Louisville Kentucky. Our goal is to bring back an old style, community driven hacker con chocked full of amazing talks, live events and all around fun. The idea for DerbyCon…

Read More
Internet Explorer 0day

Internet Explorer CSS 0day on Windows 7

A recent video submission by Abysssec demonstrates the Internet Explorer CSS 0day currently rampaging  – reliably working on Windows 7 and Vista. The exploit bypasses DEP and ASLR without the use of any 3rd party extensions. There doesn’t seem to be a lot of discussion going around this exploit, however…

Read More
The Art of Human Hacking

The Art of Human Hacking

It’s hard to believe that the social-engineer.org project began 14 months ago. This project started from a simple idea ­ to build the world’s first framework for social engineers. In these 14 months, this project has grown into the leading resource for all real social engineering education. The CTF that…

Read More