Blog
News and updates from OffSec
Nov 17, 2021
Learn Subscriptions: Course Structure and New Courses
Our Learn subscriptions now include two new courses: SOC-200 (for cyber defense roles like SOC Analysts and Threat Hunters) & WEB-200 (for App Security Analysts and Web App Pentesters). Learn about each course and the structure of new courses added to the OffSec Training Library.
Categories
Insights
Some Thoughts on Teaching Hacking
OffSec’s Jeremy “Harbinger” Miller shares his thoughts on teaching information security, hacking and pentesting by building accurate models of systems, minds and attacks with your students.
Nov 11, 2021
8 min read
Research & Tutorials
Pythonizing Nmap
Tristram (aka gh0x0st) shares with us some tips for using python to automate nmap and other parts of your penetration testing process.
Nov 9, 2021
45 min read
OffSec News
Downloads in Subscriptions
Have you subscribed to the OffSec Training Library? Learn about the development and release of the new OffSec course downloads feature.
Oct 28, 2021
5 min read
Insights
The Value of Subscriptions
Hear from Jim O’Gorman, Chief Content and Strategy Officer on the value he sees in the new Learn One and Learn Unlimited subscriptions.
Oct 12, 2021
10 min read
OffSec News
New OffSec Training Library Subscriptions: Learn One and Learn Unlimited
The OffSec Training Library is a subscription-based cybersecurity training platform. Discover more about our Learn One and Learn Unlimited subscriptions.
Sep 21, 2021
3 min read
Research & Tutorials
PowerShell Obfuscation
In this article, community moderator Tristram (gh0x0st) shares with us an approach to scripting payload obfuscation via PowerShell in order to avoid AV and AMSI detection.
Aug 23, 2021
20 min read
Research & Tutorials
Learning how to hack has a long feedback loop.
How do we learn hacking? What is OffSec’s teaching philosophy? We answer these questions and many more in our How We Teach Hacking webinar.
Aug 11, 2021
3 min read
OffSec News
What’s New at OffSec – May 2021
Find the latest on our Discord Server Updates, our recent podcast episodes and the newest applications, tools, etc. created by our OffSec Community Members.
May 28, 2021
6 min read
Penetration Testing
Introduction of Recently Retired OSCP Exam Machines in PWK Labs
Students can now take advantage of their PWK Labs IT network with the addition of 5 retired OSCP exam machines. Learn more about why we’ve made these changes.
May 26, 2021
3 min read
Research & Tutorials
eXtended Flow Guard Under The Microscope
Microsoft seems to be continuously expanding and evolving its set of security mitigations designed and implemented for Windows 10. In this blog post, we’ll examine an upcoming security feature called eXtended Flow Guard (XFG).
May 18, 2021
8 min read
Research & Tutorials
CVE-2021-1815 – macOS local privilege escalation via Preferences
Apple fixed three vulnerabilities in macOS 11.3’s Preferences. Here we present our writeup about how we identified one of the issues, and how we exploited it.
May 6, 2021
6 min read
Research & Tutorials
Intel CET In Action
In this article, we’ll examine how effective CET is at mitigating real-world exploits that make use of ROP or stack based buffer overflow vulnerabilities.
Apr 29, 2021
9 min read
Join the OffSec community
Our community members connect, communicate, and collaborate on all things cybersecurity