Blog
News and updates from OffSec
May 26, 2021
Introduction of Recently Retired OSCP Exam Machines in PWK Labs
Students can now take advantage of their PWK Labs IT network with the addition of 5 retired OSCP exam machines. Learn more about why we’ve made these changes.
Categories
Research & Tutorials
eXtended Flow Guard Under The Microscope
Microsoft seems to be continuously expanding and evolving its set of security mitigations designed and implemented for Windows 10. In this blog post, we’ll examine an upcoming security feature called eXtended Flow Guard (XFG).
May 18, 2021
8 min read
Research & Tutorials
CVE-2021-1815 – macOS local privilege escalation via Preferences
Apple fixed three vulnerabilities in macOS 11.3’s Preferences. Here we present our writeup about how we identified one of the issues, and how we exploited it.
May 6, 2021
6 min read
Research & Tutorials
Intel CET In Action
In this article, we’ll examine how effective CET is at mitigating real-world exploits that make use of ROP or stack based buffer overflow vulnerabilities.
Apr 29, 2021
9 min read
Penetration Testing
Understanding the Penetration Testing Tools and Scripts You Can Use
In this blog post Offensive Security will explain why you should take the time to understand and learn about your tools before you run them.
Apr 22, 2021
5 min read
OffSec News
What’s New for April 2021
We’re spilling the details! Find out what’s new and what’s coming with this monthly recap of what’s happening at Offensive Security.
Apr 14, 2021
5 min read
Penetration Testing
The Broader Application of Pentesting Skills
Learn how the fundamental skills taught in Penetration Testing with Kali Linux (PWK) are applicable beyond a career in pentesting.
Mar 9, 2021
4 min read
Community Spotlight
J3rryBl4nks’s PEN-300 Approach
OSCP holder J3rryBl4nks shares his thoughts on Offensive Security’s Evasion Techniques and Breaching Defenses course.
Feb 9, 2021
4 min read
Penetration Testing
EVASION TECHNIQUES AND BREACHING DEFENSES (PEN-300) AND OSEP EXAM REVIEW
What do you need to know before taking Evasion Techniques and Breaching Defenses (PEN-300)? Nullg0re gives us his review on the new course.
Jan 19, 2021
7 min read
OffSec News
OffSec 2020 Recap
Take a look back at 2020’s course launches and updates, and learn what to expect in 2021 with this year-end recap from Offensive Security.
Dec 15, 2020
5 min read
Community Spotlight
Student Spotlight: Perseverance with Rana Khalil
OSCP holder Rana Khalil shares her journey to becoming a cybersecurity analyst and her thoughts on what it takes to succeed.
Nov 24, 2020
6 min read
Research & Tutorials
Microsoft Teams for macOS Local Privilege Escalation
Security researchers at Offensive Security discovered a vulnerability in the XPC service of Microsoft Teams. Here’s how it works and how to secure it.
Nov 17, 2020
13 min read
Penetration Testing
New Pentesting Course: PEN-300
Learn about OffSec’s new Evasion Techniques and Breaching Defenses course (PEN-300) and OSEP certification. This course is one of the replacements for CTP.
Oct 27, 2020
3 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.