Blog
News and updates from OffSec
Jan 9, 2026
Offensive Security in the Age of AI: Red Teaming LLM
LLMs change how red teams test applications. Explore OffSec’s LLM Red Teaming Learning Path and build practical AI testing skills.
Categories
Enterprise Security
How OffSec Maps Cybersecurity Training to Industry Frameworks
How MITRE ATT&CK, D3FEND, and NICE/NIST frameworks help connect hands-on cybersecurity training to real-world work.
Jan 9, 2026
4 min read
OffSec News
Closing Out 2025 with Gratitude (and Momentum)
To the OffSec community, As 2025 comes to a close, we want to pause and say thank you. Whether you trained with us, earned a certification, hired through our platform, or cheered others on from the sidelines, you helped make this year one of our most meaningful yet. This year, we focused on one goal:
Dec 19, 2025
6 min read
Product Updates
November 2025 Content & Platform Update
Explore OffSec’s November 2025 Content & Platform Update with new Admin functionalities and even more labs.
Dec 17, 2025
Product Updates
October 2025 Content & Platform Update
Explore OffSec’s October 2025 Content & Platform Update with a new Learning Path, and even more new content and labs.
Dec 17, 2025
Product Updates
September 2025 Content & Platform Update
Explore OffSec’s September 2025 Content & Platform Update with NIST NICE Mapping, MITRE ATT&CK Coverage Report & SkillScope.
Dec 17, 2025
Enterprise Security
6 Benefits of a Fully Certified Cybersecurity Team
Discover 6 key benefits of a fully certified cybersecurity team, from faster onboarding to confident hiring. Learn how unified training drives performance.
Dec 16, 2025
11 min read
Enterprise Security
Blue Team vs Red Team: Should Defenders Learn Offensive Skills?
Discover why blue team defenders benefit from red team skills. Learn how offensive knowledge improves detection, incident response, and career growth.
Dec 16, 2025
10 min read
Insights
How Will AI Affect Cybersecurity?
As organizations deploy AI tools to improve detection accuracy, streamline investigations, and strengthen defenses, threat actors are leveraging the same technologies to develop more efficient and adaptive attack methods. This article outlines the current and emerging roles of AI in cybersecurity, including its defensive applications, its misuse by attackers, and the new attack surfaces it
Dec 9, 2025
10 min read
Career Advice
How to Gain Experience in Cybersecurity
Developing meaningful experience in the cybersecurity field is a common challenge for professionals who have already entered the industry and want to advance their cybersecurity skills. As roles become more technical and responsibilities broaden, it becomes clear that foundational exposure alone is not enough. Employers expect practitioners to demonstrate practical capability, sound judgment, and the
Dec 9, 2025
11 min read
Research & Tutorials
CVE-2025-55182 – React Server Components RCE via Flight Payload Deserialization
React Server Components promise less client-side JavaScript, but that convenience can hide serious risk. Learn how CVE-2025-55182 (CVSS 10.0) enables critical RCE in the RSC ecosystem, why it happened, and how the public exploit works against React’s server-side handling.
Dec 5, 2025
5 min read
Enterprise Security
Why Enterprises Are Moving from Generic Cyber Training to Cyber Ranges
Transform enterprise cyber training with realistic cyber ranges. Move beyond generic courses to hands-on attack simulations in production-like environments.
Nov 5, 2025
11 min read
Research & Tutorials
Unauthenticated Remote Code Execution Vulnerability in WSUS Service
CVE-2025-59287 exposes a critical WSUS deserialization flaw enabling unauthenticated remote code execution via unsafe AuthorizationCookie handling. Learn the risks and fixes.
Nov 3, 2025
4 min read
Join the OffSec Community!
Our community members connect, communicate and collaborate on all things cybersecurity.