Blog
News and updates from OffSec
Feb 3, 2022
Introducing Topic Exercises
Topic Exercises within PEN-200 (PWK) give students a more trackable, interactive learning experience. Read on to discover more about this new feature.
Categories
Research & Tutorials
Microsoft OneDrive for macOS Local Privilege Escalation
Security researchers at Offensive Security discovered a vulnerability in the XPC service of Microsoft OneDrive. Here’s how it works and how to secure it.
Jan 31, 2022
5 min read
Penetration Testing
Cognitive Biases and Penetration Testing
Jeremy “Harbinger” Miller shares with us his thoughts on cognitive biases and how they relate to penetration testing.
Dec 8, 2021
9 min read
Penetration Testing
OSCP Exam Change
Learn about upcoming changes to the OSCP exam structure. New changes will better reflect the current PWK materials and the skills needed to be a successful information security professional.
Dec 1, 2021
6 min read
OffSec News
Learn Subscriptions: Course Structure and New Courses
Our Learn subscriptions now include two new courses: SOC-200 (for cyber defense roles like SOC Analysts and Threat Hunters) & WEB-200 (for App Security Analysts and Web App Pentesters). Learn about each course and the structure of new courses added to the OffSec Training Library.
Nov 17, 2021
12 min read
Insights
Some Thoughts on Teaching Hacking
OffSec’s Jeremy “Harbinger” Miller shares his thoughts on teaching information security, hacking and pentesting by building accurate models of systems, minds and attacks with your students.
Nov 11, 2021
8 min read
Research & Tutorials
Pythonizing Nmap
Tristram (aka gh0x0st) shares with us some tips for using python to automate nmap and other parts of your penetration testing process.
Nov 9, 2021
45 min read
OffSec News
Downloads in Subscriptions
Have you subscribed to the OffSec Training Library? Learn about the development and release of the new OffSec course downloads feature.
Oct 28, 2021
5 min read
Insights
The Value of Subscriptions
Hear from Jim O’Gorman, Chief Content and Strategy Officer on the value he sees in the new Learn One and Learn Unlimited subscriptions.
Oct 12, 2021
10 min read
OffSec News
New OffSec Training Library Subscriptions: Learn One and Learn Unlimited
The OffSec Training Library is a subscription-based cybersecurity training platform. Discover more about our Learn One and Learn Unlimited subscriptions.
Sep 21, 2021
3 min read
Research & Tutorials
PowerShell Obfuscation
In this article, community moderator Tristram (gh0x0st) shares with us an approach to scripting payload obfuscation via PowerShell in order to avoid AV and AMSI detection.
Aug 23, 2021
20 min read
Research & Tutorials
Learning how to hack has a long feedback loop.
How do we learn hacking? What is OffSec’s teaching philosophy? We answer these questions and many more in our How We Teach Hacking webinar.
Aug 11, 2021
3 min read
OffSec News
What’s New at OffSec – May 2021
Find the latest on our Discord Server Updates, our recent podcast episodes and the newest applications, tools, etc. created by our OffSec Community Members.
May 28, 2021
6 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.