Blog
News and updates from OffSec
Oct 12, 2022
See Yourself in Cyber with OffSec: Security Operations
As part of Cybersecurity Awareness Month 2022, we share a complete guide to starting a career in security operations and defense.
Categories
Penetration Testing
See Yourself in Cyber with OffSec: Penetration Testing
As part of the Cybersecurity Awareness Month 2022, we share a complete guide to starting a career as a penetration tester.
Oct 4, 2022
9 min read
Research & Tutorials
In the Hunt for the macOS AutoLogin Setup Process
OffSec’s Csaba Fitzl shares how he reverse-engineered the macOS auto-login process, including the walls he hit, and the times he resorted to trial-and-error approaches.
Sep 23, 2022
14 min read
Kali Linux
Staged Payloads from Kali Linux | PT Phone Home – DNS
In part one of this post, Tristram teaches you how to use TXT records to stage payloads that can be retrieved through DNS lookups.
Sep 15, 2022
30 min read
Enterprise Security
The Importance of Skilled Security Practitioners: How Security Skillfulness Reflects on Your Security Posture
Read about how the skillfulness of your security practitioners can impact your overall cybersecurity program and posture.
Sep 12, 2022
3 min read
Exploit Development
Bypassing Intel CET with Counterfeit Objects
In this blog, we’ll briefly cover how CFI mitigations works, including CET, and how we can leverage COOP to effectively bypass Intel CET on the latest Windows releases.
Aug 25, 2022
13 min read
Community Spotlight
Offensive Security Online Community BBQ Event
Join our OffSec bbq event for the chance to win some swag! Make your favorite bbq meal and share photos on Discord. Pic with the most yums will be the winner.
Aug 19, 2022
11 min read
OffSec News
OSCP Bonus Points Update: Sunsetting PEN-200 Legacy Course Exercises and a New Way to Achieve Points!
Announcing changes to achieving OSCP Bonus Points and sunsetting of the PEN-200 legacy course exercises.
Aug 3, 2022
5 min read
Research & Tutorials
Introduction to Car Hacking: The CAN Bus
The CAN bus (Controller Area Network bus) is a central network that a vehicle communicates with its components. We can think of this in regard to the fact that the vehicle has many functions that operate via electrical signals. The car has door locks, a speedometer, a gas gauge, controls for the brakes, controls for the gas pedal, and many, MANY more.
Aug 1, 2022
21 min read
Insights
11 Tips For Beefing Up Your Resume And Getting A Job In Cybersecurity
Learn how to prepare your resume in an effective and professional manner to land a cybersecurity job.
Aug 1, 2022
6 min read
OffSec News
Quarterly Community Updates: Student Discounts, OffSec Live, Partner Program, & Much More!
Welcome to our Q2 update! This post discusses the launch of student discounts, OffSec Live, our Partner Program, and much more.
Jul 18, 2022
8 min read
Research & Tutorials
Start Studying Security with SQLi
We previously explored how Cross-Site Scripting (XSS) makes for an excellent topic to understand the reach and impact of hacking. In this post, we’ll improve on conceptual understanding and try to help non-technical folks understand one of the core issues of information security: the fundamental ambiguity of code and data.
Jul 12, 2022
8 min read
OffSec News
Enhanced: Learn Fundamentals
We’re excited to announce updates and new features to Learn Fundamentals that include new course Topics, badges and assessments, and much more!
Jul 8, 2022
6 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.