Blog
News and updates from OffSec
May 6, 2021
CVE-2021-1815 – macOS local privilege escalation via Preferences
Apple fixed three vulnerabilities in macOS 11.3’s Preferences. Here we present our writeup about how we identified one of the issues, and how we exploited it.
Categories
Research & Tutorials
Intel CET In Action
In this article, we’ll examine how effective CET is at mitigating real-world exploits that make use of ROP or stack based buffer overflow vulnerabilities.
Apr 29, 2021
9 min read
Penetration Testing
Understanding the Penetration Testing Tools and Scripts You Can Use
In this blog post Offensive Security will explain why you should take the time to understand and learn about your tools before you run them.
Apr 22, 2021
5 min read
OffSec News
What’s New for April 2021
We’re spilling the details! Find out what’s new and what’s coming with this monthly recap of what’s happening at Offensive Security.
Apr 14, 2021
5 min read
Penetration Testing
The Broader Application of Pentesting Skills
Learn how the fundamental skills taught in Penetration Testing with Kali Linux (PWK) are applicable beyond a career in pentesting.
Mar 9, 2021
4 min read
Community Spotlight
J3rryBl4nks’s PEN-300 Approach
OSCP holder J3rryBl4nks shares his thoughts on Offensive Security’s Evasion Techniques and Breaching Defenses course.
Feb 9, 2021
4 min read
Penetration Testing
EVASION TECHNIQUES AND BREACHING DEFENSES (PEN-300) AND OSEP EXAM REVIEW
What do you need to know before taking Evasion Techniques and Breaching Defenses (PEN-300)? Nullg0re gives us his review on the new course.
Jan 19, 2021
7 min read
OffSec News
OffSec 2020 Recap
Take a look back at 2020’s course launches and updates, and learn what to expect in 2021 with this year-end recap from Offensive Security.
Dec 15, 2020
5 min read
Community Spotlight
Student Spotlight: Perseverance with Rana Khalil
OSCP holder Rana Khalil shares her journey to becoming a cybersecurity analyst and her thoughts on what it takes to succeed.
Nov 24, 2020
6 min read
Research & Tutorials
Microsoft Teams for macOS Local Privilege Escalation
Security researchers at Offensive Security discovered a vulnerability in the XPC service of Microsoft Teams. Here’s how it works and how to secure it.
Nov 17, 2020
13 min read
Penetration Testing
New Pentesting Course: PEN-300
Learn about OffSec’s new Evasion Techniques and Breaching Defenses course (PEN-300) and OSEP certification. This course is one of the replacements for CTP.
Oct 27, 2020
3 min read
Penetration Testing
A Path to Success in the PWK Labs
As part of our ongoing efforts to support student success, we’re introducing a new learning path for the PWK labs. Find out more – along with pass rate data.
Oct 15, 2020
4 min read
Research & Tutorials
How to Build a Cybersecurity Homelab
Build your own home lab with this extensive guide from TJnull. He covers the why and how, offers points of consideration, and shares his top resources.
Sep 23, 2020
19 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.