The Offensive Security Proving Grounds (PG) are a modern network for practicing penetration testing skills on exploitable, real-world vectors. They’re based on the course labs featured in the pentesting course for the OSCP certification, Penetration Testing with Kali Linux (PEN-200).

The labs simulate a complete enterprise network containing dozens of exploit points, ranging in difficulty from simple to sophisticated. They serve as a battleground for penetration testers and enterprise teams to practice, learn, and improve in a realistic environment.

Your team members will develop and hone their penetration testing skills against situations and surfaces they would encounter on a real pentest, within the most robust enterprise network simulation available.

In addition to in-network exploit points, use cases also include social engineering, phishing emails, man-in-the-middle attacks, social tools, and other common vulnerabilities present in today’s real-world networks.


Professional Pentesting Experience

Great care has gone into creating a network of over forty machines with multiple operating systems. These are configured to represent a range of installations, from locked-down modern servers to classic configurations still found in networks everywhere. The systems deployment mirrors real-world situations, complete with network segmentation and IPS-protected “high security” zones.

Real exploitations serve as the basis for all scenarios, ensuring the experience is as genuine as possible. Our industry experts develop and implement new exploits every quarter so that your teams can continue to develop their professional pentesting skills in a safe yet highly realistic corporate environment.

OffSec Proving Grounds
MITRE Framework

OffSec Proving Grounds MITRE Framework

Learn how OffSec and Packetlabs
partnered to solve a hiring challenge

OffSec and packet Labs Case Study
  • Allows for interesting pivots and expanding possibilities
  • Recreates corporate environments
  • Lets you practice different techniques relevant to a specific OS
  • Ranges in difficulty from easy to expert
  • Our labs grow as we discover new exploits
  • We use our Exploit Database and pentest assessments to ensure the Proving Grounds stay updated
  • Users are exposed to real-world scenarios
Proving Grounds Control Panel

What’s included in Proving Grounds?

Pentesters can expect to practice on:

  • Modern MS Windows domain infrastructure
  • Windows Defender AV bypass
  • Linux production environments
  • Active Directory


Complex attack vectors

Attack simulations include:

  • Man-in-the-middle attacks
  • Server message blocking (SMB)
  • Phishing emails
  • Web and mobile apps
  • File server attacks
  • Pivoting / lateral movement
  • Custom exploits
  • Reverse engineering apps
  • Buffer overflow, injection, and password attacks
  • Privilege escalation
  • Information gathering
  • Metasploit framework 
  • WhatsApp (coming soon)


Many vulnerable machines have non-standard configurations. Simply pointing attack tools at the targets and clicking “go” won’t work. Penetration testers must dig deep into the vulnerabilities to complete their task rather than relying on automated tools.

Our hosted virtual lab networks prepare penetration testers for these situations. Offering a variety of operating systems and attack vectors, the virtual lab networks allow participants to use and hone a broad set of pentesting skills for a richer and more educational experience.

We built Proving Grounds using our years of experience running the OffSec Training Labs. The extensive penetration tests we’ve conducted allow us to mirror interesting scenarios in our labs.


We created the hosted virtual labs as a next step for experienced penetration testers and those who have completed the OSCP examination. However, understanding how systems are penetrated is beneficial to many other IT and technical roles, including:

  • Systems and network admins
  • Web application developers
  • Software engineers
  • Security architects, analysts, and engineers
  • Exploit development researchers
  • Information security consultants

Our labs challenge even the most confident of information security professionals, providing an excellent training opportunity. If you’d like to explore options for your team, contact us.


Proving Grounds Enterprise Edition is a completely private network simulation environment for anyone involved in pentesting. It includes a master admin account for customizable functionality, along with access to both analytics and progress reports.

Our Teams edition is for growing teams (5+ members) looking to take their corporate pentesting experience to the next level.


Proving Grounds Enterprise Edition is the most sophisticated simulated pentesting environment on the market. With infrastructure capacity capable of supporting up to 40 users, it’s 100% dedicated to your organization.

An assigned administrator from your organization will have access to all lab walkthroughs. They can grant access to any number of users, so that you can accommodate new users, cross-functional teams, or other changes that may occur throughout the year.


Proving Grounds Teams Edition is a perfect match for smaller organizations and teams. Hosted in a shared environment, it allows your organization to invest in the most realistic simulated network environment while still operating on a flexible budget.

Pricing is based on the number of users (minimum 5 users).

Learn more about the Offsec Proving Grounds

Looking for an authentic penetration testing lab to sharpen your skills? Try Offensive Security Proving Grounds!