
Jun 1, 2024
June 2024 Content & Platform Update
Welcome to the OffSec June 2024 content update! Find the full scoop inside.
This month we’re thrilled to announce the immediate availability of a new course and certification: SEC-100: CyberCore – Security Essentials!
This brand-new course is crafted to provide foundational knowledge and practical skills crucial for thriving in cybersecurity roles. This course isn’t just about learning the basics; it’s about building a robust understanding and applying your knowledge in real-world scenarios.
Key highlights of SEC-100: CyberCore – Security Essentials:
- Comprehensive curriculum: Covering offensive and defensive techniques, networking, script automation, application security, and much more.
- Practical labs: Engage with hands-on labs that mirror real-world challenges.
- Proctored exam: Validate your skills with a rigorous, proctored, 6-hour examination, earning the OffSec CyberCore Certified (OSCC-SEC-100) certification upon passing.
- Innovative learning approach: Developed with OffSec’s unique pedagogy that emphasizes a curious, critical-thinking mindset—learn to think like an attacker and defend effectively.
Who Will Benefit?
- Recent graduates: Jumpstart your career with skills that make you competitive in the job market.
- Career changers: Transition smoothly into cybersecurity roles with structured, practical training.
- Team leaders: Enhance your team’s capabilities with training that fills skill gaps with real-world, hands-on practice.
Pricing and Enrollment:
- Fee: $899, which includes 12 months of online access to all course materials and hands-on labs, plus two attempts at the proctored exam.
- Additional Resources: Opt for Learn Unlimited for extended access and resources.
Ready to take the first step toward a successful career in cybersecurity? Enroll in SEC-100: CyberCore – Security Essentials and equip yourself with the knowledge and skills to open doors to numerous opportunities in cybersecurity.
In June, we also released the following machines to the Offensive Cyber Range (OCR):
- RTC
- CVE-2024-3408
- CVE-2024-3955
- TrackYourCar
- CVE-2024-24401 (xDay machine)
And Versus has also been updated with numerous new machines:
- Sandworm
- Leto
- Ghanima
- Gurney
- Alia
- Moneo
- Hwi
- Siona
- Cinnamon
Stay in the know: Become an OffSec Insider
Get the latest updates about resources, events & promotions from OffSec!
Latest from OffSec

Research & Tutorials
CVE-2024-39914 – Unauthenticated Command Injection in FOG Project’s export.php
Discover details about CVE-2024-39914, a critical unauthenticated command injection vulnerability in FOG Project ≤ 1.5.10.34. Learn how attackers can exploit export.php to execute system commands or deploy persistent webshells.
Jun 26, 2025
2 min read

OffSec News
What It Really Means to “Try Harder”
Discover how OffSec’s “Try Harder” mantra evolved into a mindset, and how it helps learners build grit, creativity, and real-world problem-solving skills.
Jun 23, 2025
7 min read

Research & Tutorials
CVE-2025-3248 – Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage
CVE-2025-3248 is a critical RCE vulnerability in Langflow that allows unauthenticated attackers to execute arbitrary Python code via unsanitized input to exec(). Learn how it works and how to protect your system.
Jun 18, 2025
2 min read