Product Updates

/

January 2025 Content & Platform Update

Feb 12, 2025

January 2025 Content & Platform Update

Welcome to the OffSec January 2025 content update! Find the full scoop inside.

OffSec Team OffSec Team

2 min read

As we step into another exciting year at OffSec, we’re thrilled to share the latest enhancements and additions to our offerings. January was a bustling month of growth and innovation, and we’ve made some fantastic updates to ensure your learning experience is more robust and rewarding than ever.

Content Overview

The new Content Overview Page provides a structured way to explore learning content. Access it from Explore, Search, or My Learning to see detailed descriptions, track progress, and navigate with new tabs.

New content

Fundamentals library:

Web Session Management with Java
Job Role: Software Developer
Duration: 600mins

Defend:

Protecting Data
Job Role: IT Generalist, Software Developer
Duration: 120mins

Cloud Computing Network Forensics
Job Role: Digital Forensics Analyst
Duration: 240 minutes

PEN-300

Reflective Code Execution in Client Side Attacks
Job Role: Network Penetration Tester
Duration: 60mins

PEN-200

Information Gathering (Update)
Job Role: Network Penetration Tester
Duration: 1080mins

Machine Releases

OffSec Cyber Range

  • CVE-2024-52309
  • Lite (CVE-2024-48990)
  • Bypass (Chain)
  • Weather (Chain)
  • Installer (CVE-2024-27622)
  • Plant (this is our first SCADA/OT lab!)
  • CVE-2024-51378 (Panel)
  • ConfigMaster

Proving Grounds

  • BitForge
  • Clipper
  • Silicon
  • Pier

WEB-300 Challenge Lab

  • Answers Application

WEB-200 Challenge Lab

  • Fullmoon

Defensive Cyber Range

  • Wireshark and HTTP
  • Wireshark and FTP
  • Autopsy File Recovery

Ready to experience the full power of the OffSec Learning Library? Dive in today and explore our comprehensive training programs designed to elevate your cybersecurity skills.


Stay in the know: Become an OffSec Insider

Stay in the know: Become an OffSec Insider

Get the latest updates about resources, events & promotions from OffSec!

Latest from OffSec

Research & Tutorials

CVE-2024-39914 – Unauthenticated Command Injection in FOG Project’s export.php

Discover details about CVE-2024-39914, a critical unauthenticated command injection vulnerability in FOG Project ≤ 1.5.10.34. Learn how attackers can exploit export.php to execute system commands or deploy persistent webshells.

Jun 26, 2025

2 min read

OffSec News

What It Really Means to “Try Harder”

Discover how OffSec’s “Try Harder” mantra evolved into a mindset, and how it helps learners build grit, creativity, and real-world problem-solving skills.

Jun 23, 2025

7 min read

Research & Tutorials

CVE-2025-3248 – Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage

CVE-2025-3248 is a critical RCE vulnerability in Langflow that allows unauthenticated attackers to execute arbitrary Python code via unsanitized input to exec(). Learn how it works and how to protect your system.

Jun 18, 2025

2 min read
View all blogs