Learning Solutions

Learning Library

Courses & Certifications

Industry-leading certifications and training for continuous learning
Learning Paths

Focused training to develop skills based on a specific area of interest
Job Roles

Rigorous training content and labs for the most critical and in-demand job roles
Skills Development

Focused training to develop critical cybersecurity skills
Industry Frameworks

MITRE ATT&CK- and D3FEND-aligned learning paths
Explore Learning Library

Cyber Ranges

Enterprise Cyber Range & Versus

Set up tournaments and test red and blue team skills in a live-fire cyber range
Offensive Cyber Range

Train on the latest attack vectors to address vulnerabilities
Defensive Cyber Range

Prepare for the next attack with simulated real-world training environments
Watch a demo
Why OffSec

Organizations

Teams & Enterprises

Continuous learning & hands-on skills development for cybersecurity teams
Public Sector

Unique training for government agencies and educational institutions
Use Cases

Meet critical cyber workforce needs with OffSec's learning platform
Contact sales

Individuals

Attain a Certification

Prove critical knowledge & skills with an industry-standard certification
Get Hands-on Practice

Challenge yourself in real-world lab environments
Increase Career Prospects

Ready yourself for the next step in your cybersecurity career
Buy now
Plans & Pricing

Organizations

Subscription Pricing

Provide continuous Learning Library access to build cyber workforce resilience
Cyber Ranges

Hands-on training in live-fire, simulation environments
Pentesting Services

Let OffSec conduct a comprehensive vulnerability assessment
Contact sales

Individuals

Pricing

Flexible options based on your learning goals
Learn One
Learn One

12-month access to a single course, related labs, and two exam attempts
Course & Certification Bundle
Course & Certification Bundle

90-day access to a single course, related labs, and one exam attempt
Learn Fundamentals
Learn Fundamentals

12-month access to introductory- and essential-level content
Proving Grounds Labs

OffSec-curated private labs to practice and perfect your pentesting skills
Buy now
Partners
Global Partner Program
Partner Portal Login
Find a Partner
Kali & Community
Join Our Community
Kali Linux
Community Projects
OffSec Discord
OffSec Live
Resources
SOC-200: Foundational Security Operations and Defensive Analysis

SOC-200: Foundational Security Operations and Defensive Analysis

The Security Operations and Defensive Analysis (SOC-200) course delves into the foundations of defending networks and systems against cyber threats. Learners gain practical experience within a hands-on, self-paced environment designed to teach the principles of SOC operations.

Individuals completing the online training course and passing its rigorous exam, earn the OffSec Defense Analyst (OSDA) certification. This credential demonstrates your ability to detect, analyze, and assess a potential security incident through live exercises. The OSDA stands out in the cybersecurity field, reflecting a commitment to hands-on defensive skills sought after by employers.

Buy now Get a quote
OSDA Certification Badge

Topics covered in the Foundational Security Operations and Defensive Analysis course (SOC-200)

  • Attack Methodology Introduction

    Explore the fundamental mindsets, tactics, and phases of a cyberattack. Build a strong foundation for understanding attacker behavior and how to anticipate their moves during your penetration testing engagements.

  • Windows Endpoint Introduction

    Gain a solid understanding of the concepts and security concerns surrounding Windows endpoints, including desktops, laptops, and other Windows-based user devices. Discover common vulnerabilities and the attack vectors adversaries use to target them.

  • Windows Server Side Attacks

    Uncover the techniques attackers employ to compromise Windows servers – the backbone of many networks. Learn methods for exploiting critical services and vulnerabilities to gain elevated access.

  • Windows Client-Side Attacks

    Investigate how attackers manipulate the user-facing side of Windows systems. Analyze browser-based attacks, vulnerabilities in software, and social engineering tactics designed to compromise endpoints.

  • Windows Privilege Escalation

    Examine the art of elevating your privileges on Windows systems. Learn to exploit misconfigurations, software flaws, and zero-day vulnerabilities, increasing your level of network control.

  • Windows Persistence

    Learn the techniques attackers use to stay hidden on compromised Windows systems. Explore file system persistence, registry modification, scheduled tasks, and other methods to maintain a foothold.

  • Linux Endpoint Introduction

    Gain an understanding of the concepts surrounding Linux endpoints, their security mechanisms, and potential vulnerabilities. Become familiar with common attack vectors used to target them.

  • Linux Server Side Attacks

    Examine how adversaries compromise Linux servers, utilizing privilege escalation methods, service exploits, and configuration weaknesses.

  • Network Detections

    Develop a comprehensive understanding of network security incidents and detection techniques. Learn how firewalls, intrusion detection systems, and other tools identify malicious activity, allowing you to refine your evasion strategies.

  • Antivirus Alerts and Evasion

    Explore advanced methods for evading antivirus solutions. Understand payload obfuscation, exploit customization, and techniques designed to minimize your digital footprint while maximizing success.

See more in course syllabus

How to enroll today

Most
popular

Course + Certification Exam Bundle

Course + Cert
Exam Bundle

$1649

One-time payment

Buy now

More information

# of Courses

1

Days of lab access

90

# of Exam attempts included

1

Best
value

Learn One

Learn
One

$2599/year

Billed annually*

Buy now

More information

# of Courses

1

Days of lab access

365

# of Exam attempts included

2

Fundamental content

Unlimited

Fundamental learning paths and assessments

Included

PEN-103 & KLCP Exam

Included

PEN-210 & OWSP Exam

Included

Proving Grounds Practice

Included

All
access

Learn Unlimited

Learn
Unlimited

$5799/year

Billed annually*

Contact us

More information

Recommended # of learners

2-9

# of Exam attempts included

Unlimited

Subscription Term

Annual

OffSec Learning Library Access

All access

Proving Grounds Play

Included

Proving Grounds Practice

Included

Labs for every course

Included

# of Courses

All

Days of lab access

365

Fundamental content

Unlimited

PEN-103 & KLCP Exam

Included

PEN-210 & OWSP Exam

Included

*Subscription auto-renews unless cancelled

# of Courses

1

1

All

Days of lab access

90

365

365

# of Exam attempts included

1

2

Unlimited

Fundamental content

N/A

Unlimited

Unlimited

PEN-103 & KLCP Exam

N/A

Included

Included

PEN-210 & OWSP Exam

N/A

Included

Included

Proving Grounds Practice

N/A

Included

Included

Financing is now available through Climb Credit with as little as 0% APR and up to 36 monthly payments, excluding Learn Unlimited. State exclusions may apply. Learn more.

Once started, 90 day lab access cannot be paused.

Buying for a team?

Advance your cybersecurity career with OffSec

Become an in-demand cybersecurity professional

  • Become a defensive specialist with hands-on training

    Develop the proactive skills needed to identify and neutralize threats by learning the techniques and tools used by certified SOC analysts.

  • Elevate your value in the cybersecurity field

    OSDA-certified defensive professionals demonstrate sought-after threat mitigation expertise.

  • Expand your defensive arsenal

    Gain proficiency in the tools and methodologies used for advanced threat detection, making you a vital asset to any cybersecurity team.

  • Advance your defensive career

    Open doors to exciting information security roles like SOC analyst, cybersecurity analyst, threat hunter, incident responder, or security-focused network engineer by understanding attack methodology, mindsets and techniques.

  • Demonstrate your defensive commitment

    The OSDA certification signifies your dedication to proactive defense in a rapidly evolving threat landscape.

Open doors to exciting cybersecurity roles

  • SOC Analyst (Tier 1/2)

    Monitor security systems, identify potential threats, triage events, and escalate incidents as needed.

  • Threat Hunter

    Proactively search for signs of intrusion or compromise within networks and systems using advanced detection techniques.

  • Incident Responder

    Investigate security incidents, determine the scope of a breach, contain threats, and lead remediation efforts.

  • Security Engineer (Defense focus)

    Implement, configure, and maintain defensive security solutions like SIEMs, log analysis tools, and threat intelligence platforms.

  • Forensic Analyst (Network focus)

    Perform in-depth analysis of network data and logs to reconstruct cyberattacks and gather evidence for investigations.

FAQ

  • What is the OSDA exam?

    The OffSec Defense Analyst (OSDA) exam is a rigorous, 24-hour practical assessment of your defensive security skills. You’ll demonstrate your ability to identify, analyze, and respond to potential threats within a live lab environment. Following the exam, you have an additional 24 hours to submit a well-structured incident response report.

  • What format is the OSDA exam in?

    The OSDA exam is entirely hands-on. You will be given access to a lab environment and tasked with defending against simulated attacks, showcasing your practical defensive capabilities.

  • Who is the SOC-200 course for?

    The SOC-200 certification course is ideal for security professionals seeking to enhance their defensive analysis and response skills and earn the OSDA. It’s designed for individuals who have a solid foundation in networking and basic familiarity with Linux and Windows systems.

  • What are the prerequisites for SOC-200?

    While there are no formal prerequisites, it’s strongly recommended that you have:

    • A solid foundation in TCP/IP networking
    • Familiarity with Linux and Windows operating systems
    • Basic understanding of cybersecurity concepts
    • All of the above can be found in our Security Operations Essentials Learning Path, available in Learn Enterprise, Learn Unlimited, Learn One, Learn Fundamentals or a Course & Certification Bundle.

  • What competencies will I gain?

    Upon completing SOC-200 and successfully passing the OSDA exam, you’ll have mastered core defensive methodologies, including:

    • Security monitoring and log analysis
    • Incident detection and threat identification
    • Triaging and escalating events
    • Incident response process and procedures
    • Network and host-based forensics (basics)

  • How does OffSec support my online journey?

    Throughout the online training course, you’ll have access to:

    • A virtual lab environment for hands-on practice
    • Extensive course information and materials, including videos and exercises
    • A vibrant online community of students and OffSec professionals

  • What is the exam retake policy?

    For details on exam retakes, please refer to OffSec’s official policies.

  • Can I extend my lab time?

    For information on lab extensions, please refer to OffSec’s official policies.

Advance your cybersecurity career with OffSec

  • Start your journey

    Establish a strong foundation in defensive cybersecurity with the Security Operations Essentials Learning Path.

  • Become a defensive analyst

    Dive into the heart of defensive strategies with the Foundational Security Operations and Defensive Analysis (SOC-200) course. Learn to detect, analyze, and respond to a wide range of cyber threats.

  • Enhance your cybersecurity expertise

    OffSec’s Learning Paths and courses help you develop your defensive skill set. Explore threat intelligence, incident response, and security monitoring to become a well-rounded cybersecurity professional.

  • Become a blue team specialist

    Specialize in Security Operations Center (SOC) workflows by exploring additional courses and Learning Paths that focus on security analysis tools, threat-hunting techniques, and incident response.

Most
popular

Course & Cert <br /> Exam Bundle Course & Cert <br /> Exam Bundle

Course & Cert
Exam Bundle

$1649/once

The bundle includes 90 days of access to a single course, the associated labs and a single exam attempt.

Best
value

Learn <br/>One Learn <br/>One

Learn
One

$2599/year*

One year of lab access alongside a single course plus two exam attempts.

All
access

Learn <br/>Unlimited Learn <br/>Unlimited

Learn
Unlimited

$5799/year

Unlimited OffSec Learning Library access plus unlimited exam attempts for one year.

Large teams

Learn <br/>Enterprise Learn <br/>Enterprise

Learn
Enterprise

Get a quote

Flexible terms and volume discounts available.

*Subscription auto-renews unless canceled.
learn-one

Learn One is an annual subscription for individuals and organizations who want to enroll in a single course and ultimately earn an OffSec certification. Learn One includes one course of your choice, two cert exam attempts, hands-on lab access, and all Learn Fundamentals content.

Buy now Learn more
What’s included

1 year of access to the course of your choice

2 exam attempts during your subscription

365 days of lab access

1 year of unlimited access to all fundamental content and OffSec curated Learning Paths

PEN-103 + 1 KLCP exam attempt

PEN-210 + 1 OSWP exam attempt

Proving Grounds Practice labs

1 download of course material

Financing for Learn Fundamentals and Learn One now available through Climb Credit with as little as 0% APR and up to 36 monthly payments.

State exclusions may apply. Learn more.
Graduation cap icon colored in with a gradient fading from purple to teal

New to cybersecurity want to get educated on fundamental content before signing up?

Check out Cyberversity - our free resource library covering essential cybersecurity topics.

Learn more