
Aug 1, 2023
August 2023 Content & Platform Update
Welcome to the OffSec August 2023 content update! Find the full scoop inside.
We’re excited to announce the immediate availability of OffSec Cyber Range new defensive capabilities – OCR Blue, as well as several new learning modules and a challenge lab in the OffSec Learning Library (OLL)!
OCR offers the most realistic hands-on, in-depth labs on the market that emulate enterprise environments, allowing teams to hone their technical, mental, and tactical skills in recognizing and handling real-world incidents. We are excited to announce OCR now supports brand new blue team capabilities!
Join us on September 12th at 11 am ET to learn how organizations can now enhance their digital forensics, incident handling, and threat hunting skills while testing and strengthening defenses against emerging and sophisticated cyber-attack scenarios with the new OCR Blue functionality!
Our Learning Modules in the OLL have been grouped to align with the diverse needs of today’s cybersecurity landscape. Each grouping is tailored to address specific challenges and skill sets.
Modules in this category are dedicated to understanding and securing cloud infrastructures, ensuring that organizations can leverage cloud technologies safely and efficiently. This month’s new cloud module is:
In an era where AWS powers many enterprises, our “Introduction to AWS” module equips learners with essential knowledge of this dominant cloud platform. Grasp core AWS components, security best practices, and their intersection with cybersecurity. This module is a must for professionals aiming to secure cloud infrastructure or expand their tech skills in today’s cloud-centric world.
These modules focus on building software with security in mind from the ground up. They cover common vulnerabilities and best practices to avoid them. This month, we’re featuring:
Tailored for professionals who identify and exploit vulnerabilities, these modules offer insights into advanced techniques and the mindset of an attacker. This month, we introduced:
Our modules in this category equip learners with the skills to effectively protect an organization’s digital assets. This month’s new modules include:
SOC-200 Challenge Lab #13: SOC-200 Challenge Labs offer a unique approach to cybersecurity training. Instead of isolated tasks, learners experience integrated real-world scenarios within the SIEM environment.
What sets our labs apart?
They’re fully automated and repeatable. No need for scheduled, human-led attacks. Configure, test, and validate defenses on your own schedule, providing a hands-on and flexible approach to blue team training.
Stay in the know: Become an OffSec Insider
Get the latest updates about resources, events & promotions from OffSec!
Latest from OffSec

Research & Tutorials
CVE-2024-39914 – Unauthenticated Command Injection in FOG Project’s export.php
Discover details about CVE-2024-39914, a critical unauthenticated command injection vulnerability in FOG Project ≤ 1.5.10.34. Learn how attackers can exploit export.php to execute system commands or deploy persistent webshells.
Jun 26, 2025
2 min read

OffSec News
What It Really Means to “Try Harder”
Discover how OffSec’s “Try Harder” mantra evolved into a mindset, and how it helps learners build grit, creativity, and real-world problem-solving skills.
Jun 23, 2025
7 min read

Research & Tutorials
CVE-2025-3248 – Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage
CVE-2025-3248 is a critical RCE vulnerability in Langflow that allows unauthenticated attackers to execute arbitrary Python code via unsanitized input to exec(). Learn how it works and how to protect your system.
Jun 18, 2025
2 min read