Learning Paths

Explore OffSec curated cybersecurity Learning Paths
Filters

Categories

Difficulty

Job Roles

DevSecOps Essentials

DevSecOps Essentials

Master threat hunting fundamentals to protect your organization. Learn threat actor analysis, network/endpoint investigation, custom hunting techniques and more.

Build Advanced Incident Responder
Git Operations Training

Git Operations Training

Use Git effectively, build security perspectives on Git, and practice Git hands-on. Whether you're a developer, DevOps engineer, security engineer, or in another technical role, you'll benefit from a solid understanding of Git.

Build Foundational Cloud Engineer
Integrating Security into Software Development

Integrating Security into Software Development

Integrate security into every phase of the software development lifecycle from coding to deployment.

Build Foundational Software Developer
Intermediate Secure Development

Intermediate Secure Development

Tackle sophisticated attacks and elevate secure coding skills. Dive into configuration hardening, and vulnerability analysis to protect web applications with greater depth.

Build Advanced Software Developer
Internet of Things (IoT) Training

Internet of Things (IoT) Training

Embark on a journey into the world of embedded systems and gain a holistic understanding of their design, components, and inner workings.

Build Foundational Software Developer
MITRE ATT&CK Training

MITRE ATT&CK Training

Aligned with the MITRE ATT&CK framework, This learning path covers nearly 70% of the skills required to match the entire attack framework including tactics like, Reconnaissance, Resource Development, Initial Access and eight more!

Attack Advanced Penetration Tester
MITRE D3FEND Training

MITRE D3FEND Training

3 learning paths that Build your team's defensive skill sets and address cybersecurity countermeasure components and capabilities for these three techniques.

Defend Advanced Penetration Tester
Practical Approach to Secure Software Development

Practical Approach to Secure Software Development

Fortify web applications and explore proven techniques to safeguard software and systems.

Build Foundational Software Developer
Red Teaming

Red Teaming

Learn advanced techniques to emulate real-world adversaries. Master event tracing, obscure Windows event logs, and execute stealthy process injection to refine your Red Team arsenal.

Attack Expert Red Teamer
Threat Hunting Essentials

Threat Hunting Essentials

Learn to identify and investigate threats, uncover potential attack techniques, and proactively improve your security posture by addressing vulnerabilities.

Defend Advanced Threat Hunter
UNIX System Administration

UNIX System Administration

Develop UNIX system administration skills and harden infrastructure against attacks. Learn to configure Debian and macOS, harden the nginx web server, and utilize advanced security controls like SELinux and AppArmor. 

Defend Foundational System Administrator
Web System Administration

Web System Administration

Build secure web infrastructure. Master web server hardening, secure coding techniques, database protection, and TLS/PKI. Take our OffSec Web System Administration Learning Path

Defend Foundational System Administrator
Windows System Administration

Windows System Administration

Develop Windows system administration skills and harden infrastructure against attacks. Learn secure configuration, Active Directory, IIS, MSSQL, and more.

Defend Foundational System Administrator
Network Penetration Testing Essentials

Network Penetration Testing Essentials

Get a comprehensive introduction to information security concepts and hands-on experience with tools and techniques. Understanding the basics of Linux and Windows systems and dive into scripting, networking, and cryptography.

Attack Foundational Penetration Tester
Security Operations Essentials

Security Operations Essentials

Build strong fundamentals for security operations. Equip learners with fundamental skills for defensive cybersecurity challenges.

Defend Foundational SOC Analyst
Web Application Assessment Essentials

Web Application Assessment Essentials

A primer for advanced web application training, blending theory with practical, hands-on experiences. Dive into core web attacker methodologies, secure coding, and critical aspects like cryptography and version control with Git.

Attack Foundational Web App Tester
Secure Software Development

Secure Software Development

Practical approach to integrating security into software design and implementation, vital for protecting digital assets.

Build Foundational IT Generalist
OffSec OWASP Top 10

OffSec OWASP Top 10

Explore OWASP’s critical risks, from Injection flaws to Broken Authentication. Gain insight into defending against Cross-Site Scripting and Insecure Deserialization.

Build Foundational Software Developer
Introduction to Cloud Security

Introduction to Cloud Security

Understand and apply the fundamentals of cloud security, from Cloud Architecture and Container Technology to mastering essential security controls.

Build Foundational Cloud Engineer
Incident Responder Essentials

Incident Responder Essentials

Understand the essentials of incident response, from preparation and detection to recovery and post-mortem analysis. OffSec's modules are meticulously designed to provide a solid foundation for handling cyber incidents.

Defend Advanced Incident Responder
Exploit Development Essentials

Exploit Development Essentials

Teaches the basics of various operating systems and their vulnerabilities. Including, essential scripting skills with Python, Bash, and other tools. In addition, students learn techniques for analyzing and writing exploits.

Attack Foundational Security Researcher
Cloud Essentials Security Training

Cloud Essentials Security Training

Strengthen your cloud security proficiency with an emphasis on secure cloud practices. Develop a security-centric understanding of essential cloud technologies to confidently tackle real-world cloud challenges.

Build Advanced Cloud Engineer
Offensive Cloud Security Training

Offensive Cloud Security Training

Learn to outsmart attackers and proactively defend your cloud assets in this learning path. Delve into sophisticated cloud penetration testing, CI/CD pipeline exploitation, and container escape techniques.

Attack Advanced Penetration Tester