Offensive Security Proving Grounds (PG) is a safe virtual network environment designed to be attacked and penetrated. It’s based on our highly rated exploratory course labs featured in the pentesting course for the OSCP certification, Penetration Testing with Kali Linux (PWK).

The labs simulate a complete enterprise network containing dozens of exploit points, ranging in difficulty from simple to sophisticated complex attack chains. They serve as a true battleground for penetration testers and enterprise teams to practice, learn, and improve in a realistic environment.

Your team members will develop and hone their penetration testing skills against situations and surfaces they would encounter on a real pentest – and within the most robust enterprise network simulation available on the market.

In addition to in-network exploit points, use cases also include social engineering, email phishing, man-in-the-middle attacks, social tools and other common vulnerabilities present in today’s real-world networks.

Professional Pentesting Experience

Professional Pentesting Experience

Great care has gone into creating a network of over forty systems with multiple operating systems. These are configured to represent a range of installations, from locked-down modern servers to classic configurations still found in networks everywhere. The systems deployment mirrors real-world situations, complete with network segmentation and IPS-protected “high security” zones.

Real exploitations serve as the basis for all scenarios, ensuring the experience is as genuine as possible. Our industry experts develop and implement new exploits every quarter so that your teams can continue to develop their professional pentesting skills in a safe yet highly realistic corporate environment.

  • Allows for interesting pivots and expanding possibilities
  • Recreates corporate environments
  • Practice different techniques relevant to a specific OS
  • Difficulty ranges from easy to expert
Dynamic Updates
  • Our labs grow as we discover new exploits
  • We use our Exploit Database and pentest assessments to ensure the Proving Grounds stay updated
  • Users are exposed to scenarios they’d encounter in the real world
Proving Grounds

What’s included in Proving Grounds?

Pentesters can expect to practice on:

  • Multiple versions of Windows
  • Windows servers
  • Windows Defender AV bypass
  • Linux
  • Active Directory
  • Domain controllers (Kerberos)

Complex attack vectors

Complex attack vectors are included and new machines last 90 days.

Attack skills tested include:

  • Man-in-the-middle attacks
  • Server message blocking (SMB)
  • Simulated email phishing
  • Web and mobile apps
  • File server attacks
  • Pivoting / lateral movement
  • Custom exploits
  • Reverse engineering apps
  • Buffer overflow, injection, and password attacks
  • Scanning
  • Privilege escalation
  • Information gathering
  • Metasploit framework
  • WhatsApp (coming soon)


Many vulnerable machines have non-standard configurations. Simply pointing attack tools at the targets and clicking “go” won’t work. Penetration testers must dig deep into the vulnerabilities to complete their task rather than relying on automated tools.

Our hosted virtual lab networks prepare penetration testers for these situations. They include a variety of operating systems and attack vectors, so participants use and hone a broad set of pentesting skills for a richer and more educational experience.

We built Proving Grounds using our years of experience running the OffSec Training Labs. The extensive penetration tests we’ve conducted allow us to mirror interesting scenarios in our labs.


We created the hosted virtual labs as a next step for experienced penetration testers and those who have completed the OSCP examination. However, understanding how systems are penetrated is beneficial to many other IT and technical roles, including:

  • Systems and network admins
  • Web application developers
  • Software engineers
  • Security architects, analysts, and engineers
  • Exploit development researchers
  • Information security consultants

Our challenging labs can frustrate even the most confident of information security professionals, providing an excellent training opportunity. If you’d like to explore options for your team, contact us.


Proving Grounds Enterprise Edition is a completely private network simulation environment for anyone involved in pentesting. It includes a master admin account for customizable functionality, along with access to both analytics and progress reports.

Our Teams edition is for growing teams (5+ members) looking to take their corporate pentesting experience to the next level.

Proving Grounds Enterprise Edition

With unlimited users and priority support, Proving Grounds Enterprise Edition is the most complete, sophisticated simulated enterprise pentesting environment on the market – and 100% dedicated to your organization.

An assigned administrator from your organization will have access to all lab walkthroughs. They will have flexibility to grant access to any number of users, so that you can accommodate new users, cross functional teams, or other changes that may occur throughout the year.

Proving Grounds Teams Edition

Proving Grounds Teams Edition is a perfect match for smaller organizations and teams. Hosted in a shared environment, Proving Grounds Teams Edition allows your organization to invest in the most realistic simulated network environment while still operating on a flexible budget.

Pricing is based on the number of users (minimum 5 users).

Learn more about the Offsec Proving Grounds

Looking for an authentic penetration testing lab to sharpen your skills? Try Offensive Security Proving Grounds!

How would you use Enterprise Labs? Note: These are offered for corporations only at this time. Personal Labs will be offered in the future. Please contact us directly if you have more questions.