Blog
News and updates from OffSec
May 6, 2024
Continuing to support cybersecurity teams with Award winning & innovative training in April
Announcing new award willing continuous learning opportunities for cybersecurity professionals from OffSec.
Categories
Research & Tutorials
AMSI Write Raid Bypass Vulnerability
In this blog post, we’ll introduce a new bypass technique designed to bypass AMSI without the VirtualProtect API and without changing memory protection.
May 3, 2024
14 min read
Enterprise Security
How Cybersecurity Training Lowers Insurance Premiums
Discover the essential cybersecurity training elements that insurers look for and how to build a winning program.
May 1, 2024
5 min read
Security Operations
Infrastructure Automation and Defense: Introducing DevSecOps Essentials
Accelerate your DevOps journey with OffSec. Build secure, scalable, and efficient software delivery pipelines through real-world training.
Apr 23, 2024
3 min read
Enterprise Security
The Role of Cybersecurity Training in Compliance
Learn about the role of cybersecurity training in compliance. Discover how OffSec’s training can contribute to a strong compliance posture.
Apr 22, 2024
4 min read
Enterprise Security
What is Cybersecurity Compliance? The Ultimate Guide
Learn about the importance of cybersecurity compliance, the most common cybersecurity compliance frameworks and how to ensure your organization is compliant.
Apr 16, 2024
13 min read
Threat Hunting
Proactive Threat Detection: Introducing Threat Hunting Essentials
Outsmart evolving cyber threats with Threat Hunting Essentials. This hands-on training path builds expertise in threat actor analysis, advanced hunting techniques, and data analysis.
Apr 16, 2024
3 min read
Insights
The Race Against the Hackers: How the OffSec Cyber Ranges Keep You Ahead
Stay ahead of hackers! OffSec Cyber Ranges train your team on the latest exploits for a proactive, adaptable defense.
Apr 15, 2024
7 min read
Insights
Communication Skills in Cybersecurity
Learn about the importance of clear and effective communication skills in cybersecurity.
Apr 12, 2024
4 min read
Research & Tutorials
Behind Enemy Lines: Understanding the Threat of the XZ Backdoor
The following is an excerpt from our new module on the recent XZ Utils backdoor, CVE-2024-3094. On Mar 29, 2024, at 12:00PM ET, Andres Freund posted on the Openwall mailing list about a backdoor he discovered in the XZ Utils package. The backdoor targeted the OpenSSH binary, allowing remote code execution on impacted machines.
Apr 9, 2024
5 min read
OffSec News
OffSec Versus: Revolutionizing Cybersecurity Training Through Live-Fire Collaboration
Did you know that 95% of cybersecurity breaches are caused by human error? Traditional training methods often fail to address this critical factor, leaving organizations exposed. OffSec Versus, part of the Enterprise Cyber Range, is designed to change that. It’s a live-fire training environment where your Red and Blue teams learn by doing, battling head-to-head,
Apr 9, 2024
5 min read
Enterprise Security
Soft Skills for Cybersecurity Leaders: CISO’s Perspective
The emphasis on technical skills and knowledge in cybersecurity has always been present. However, as the field becomes increasingly complex and intertwined with every facet of business operations, the spotlight has shifted to the indispensable role soft skills hold in cybersecurity leadership. This perspective was the focal point of our recent webinar, led by Thereasa
Apr 3, 2024
5 min read
OffSec News
Transform Your Cybersecurity Training with OffSec’s Cyber Ranges
In 2024, the cybersecurity landscape is bleak, with 62% of organizations acknowledging a pressing need for enhanced cybersecurity skills amidst growing digital threats. This statistic underscores the urgent demand for comprehensive training in modern cybersecurity practices. In response to this critical need, OffSec is introducing a new suite of Cyber Ranges. OffSec’s Cyber Ranges –
Apr 1, 2024
6 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.