Blog
News and updates from OffSec
Sep 8, 2020
Wekan Authentication Bypass – Exploiting Common Pitfalls of MeteorJS
In this post, Dejan walks us through an authentication bypass vulnerability discovered in Wekan and reported by Offensive Security.
Categories
OffSec News
CTP Sunset FAQ
On August 13, 2020, Offensive Security announced that our Cracking the Perimeter course would be retired. Get your questions answered in this update.
Aug 26, 2020
6 min read
OffSec News
Offensive Security Academy: 13 Weeks of Intense PWK Training
OffSec launched the new Academy offering to address the impacts of COVID-19 on our PWK live training schedule. Here, we look back on the first cohort.
Aug 25, 2020
7 min read
OffSec News
New Developments: Retiring CTP and Introducing New Courses
On October 15, 2020, Offensive Security will retire its Cracking the Perimeter course. Find out more about this change, including what comes next.
Aug 13, 2020
6 min read
Kali Linux
Creating Kali i3-gaps
i3 is a tiling window manager for Linux and BSD systems. In this blog post, Arszilla gives a walk through on how he created his custom Kali i3-gaps ISO.
Aug 11, 2020
14 min read
Insights
Starting a Career in Information Security
Considering a career in infosec? Mihai’s experience pursuing the OSCP and OSWE certs can help you determine your next steps. Get inspired with this case study.
Aug 4, 2020
3 min read
OffSec News
VulnHub Joins the OffSec Family
Offensive Security is pleased to announce the acquisition of VulnHub, the platform offering free offline virtual machines for information security training.
Jul 29, 2020
2 min read
Web App Security
AWAE Frequently Asked Questions
The Advanced Web Attacks and Exploitation (AWAE) course has been updated for 2020. Get your questions about AWAE and OSWE answered.
Jul 20, 2020
8 min read
Web App Security
AWAE: Updated with More Content for 2020
The Advanced Web Attacks and Exploitation (AWAE) course has been updated for 2020. Learn what changed, why we did it, and how it will help you.
Jul 14, 2020
3 min read
Web App Security
Offensive Security AWAE/OSWE Review
In this post Mihai gives us a review of his experience with the Advanced Web Attacks And Exploitation course after obtaining his OSWE certification.
Jul 7, 2020
6 min read
Kali Linux
PowerShell Hacking: Mastering PSSession and Reverse Shells on Kali Linux
In this series, Tony Punturiero (TJ Null) will be showing how to use PowerShell on Kali Linux to obtain initial access with PSSession on Windows and Linux.
Jun 30, 2020
10 min read
Web App Security
Offensive Security Advanced Web Attacks and Exploitation (AWAE): What You Need To Know
What do you need to know before taking Advanced Web Attacks and Exploitation (AWAE)? OSCP holder and penetration tester Samuel Whang shares his perspective.
Jun 16, 2020
4 min read
Research & Tutorials
AMFI syscall
Csaba Fitzl covers the `dyld` restriction decision process in macOS and a previously undiscussed or undocumented AMFI (AppleMobileFileIntegrity) system call.
Jun 9, 2020
10 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.