bug bounty | Offensive Security

Attacking the Web: The Offensive Security Way

OffSec student 0xklaue wrote this review of Advanced Web Attacks and Exploitation and the OSWE exam. Find out how to prepare and what you need to know.

Auditing the Auditor

Some time ago, we noticed some security researchers looking for critical vulnerabilities affecting “security” based products (such as antivirus) that can have a damaging impact to enterprise and desktop users. Take a stroll through the Google Project Zero bug tracker to see what we mean.

Bug Bounty Program Insights

With the nature of our business, we at Offensive Security take our system security very seriously and we appreciate the benefits of having “the crowd” scrutinize our internet presence for bugs. For this reason, we recently started our own Bug Bounty Program, which provides incentives for researchers to inform us of possible vulnerabilities in our sites in exchange for cash rewards.

Courses and Certifications

Start Here

Penetration Testing with Kali Linux (PWK)

AdvancedFor Web

Advanced Web Attacks & Exploitation (AWAE)

AdvancedFor Pentest

Evasion Techniques and Breaching Defenses (PEN-300)

Network Security

Wireless Attacks(WiFu)

Expert Level ForExploit Developers

Advanced Windows Exploitation (AWE)

We provide the top Open Source penetration testing tools for infosec professionals.

Advanced
For Web

Advanced
For Pentest

Wireless Attacks
(WiFu)

Expert Level For
Exploit Developers