Blog | OffSec

Blog

News and updates from OffSec

Information Security Training Paths - Offensive Security
Insights

Mar 12, 2020

7 min read

Information Security Training Paths at OffSec

Find out where to start with OffSec’s information security training courses. We outline our learning paths to certification and career development.

Read more
PWK: 2020 UPDATE

Penetration Testing

PWK: All New for 2020

Penetration Testing with Kali Linux (PWK) has gotten a massive overhaul for 2020. Find out what’s new in Offensive Security’s foundational pentesting course.

Feb 11, 2020

6 min read
Suhyun Smith, OSCP

Community Spotlight

Student Spotlight: Mindset and Community with Suhyun Smith, OSCP

Learn how dedication, mindset, and community empowered Suhyun Smith in her OSCP certification journey, and get her tips for success.

Jan 7, 2020

4 min read
MEET MIHAI, A 16 YEAR OLD OSCP HOLDER

Community Spotlight

Student Spotlight: Meet Mihai, a 16 year old OSCP holder

Meet Mihai, a 16 year old OSCP holder and PWK graduate out of Romania. Read more about his tremendous start and journey into infosec.

Dec 10, 2019

3 min read
OSCP Flood

Community Spotlight

Student Spotlight: Flood Survivor and OSCP Graduate

OffSec student Christopher M Downs takes trying harder to another level: completing (and passing) his OSCP exam in the middle of a New Orleans flood. Read more about Christopher’s inspiring journey.

Nov 27, 2019

4 min read
Try Harder: From Mantra to Mindset

OffSec News

Try Harder: From Mantra to Mindset

Our community manager, Tony Punturiero, breaks down the meaning of OffSec’s legendary motto “Try Harder”, and how it can help jump start your cyber career.

Nov 12, 2019

5 min read
My philosophical approach to the OSCP

Community Spotlight

My OSCP Guide: A Philosophical Approach

Samuel Whang, a PWK graduate, details his recommendations and a unique philosophical approach for those looking to pursue their OSCP. This article originally appeared on Sep 24, 2019, posted by Samuel Whang. It has been posted with minor edits, with permission from the author. Original post: https://medium.com/@klockw3rk/my-oscp-guide-a-philosophical-approach-a98232bc818

Oct 17, 2019

4 min read
Web App Fundamentals

Web App Security

Understanding the Fundamentals of Securing Web Applications

Web application security can be a rewarding career path. However, the web application security space, and cybersecurity industry as a whole, lives in a constant state of change. An unrelenting curiosity and passion for lifelong learning is mandatory for anyone seeking to specialize in this niche. Here are some fundamentals to help you pursue these skills.

Oct 8, 2019

7 min read
analyzing-a-creative-attack-chain

Research & Tutorials

Analyzing a Creative Attack Chain Used to Compromise a Web Application

In this piece, we’ll analyze a creative scenario where a malicious actor can use an attack chain to exploit a web application via Simple Network Management Protocol (SNMP) > Cross-site scripting (XSS) > Remote Code Execution (RCE).

Sep 3, 2019

5 min read
5-best-practices-web-app-security

Enterprise Security

5 Best Practices for Web Application Security

When it comes to web application security, there are many measures you can implement to reduce the chances of an intruder stealing sensitive data, injecting malware into a webpage, or public defacement. As more and more organizations transition their business operations to web applications, security in the development process can no longer be an afterthought. Whether it’s a code injection, privilege escalation, DDoS attack, or a vulnerable element, bad actors are constantly looking for creative ways to manipulate exploits for personal gain. We’ve rounded up our top five (5) best practices to help you fortify your application security.

Aug 20, 2019

6 min read
Black Hat USA 2019 Recap

Enterprise Security

BlackHat 2019 Recap

BlackHat has always been one of our favorite industry conferences. Although OffSec has been providing educational workshops for years at BlackHat, this was our first year holding an official booth. The booth was a major hit, as we had the opportunity to chat with long-time Offensive Security alumni and also meet some new faces…Did you attend one our BlackHat workshops or stop by the OffSec booth? If so, we’d love to hear about your experience and any feedback you might have — tag us on Twitter @OffSecTraining!

Aug 13, 2019

1 min read
oscp-oswp-osce-review

OffSec News

OSCP/OSCE/OSWP Review

It’s no secret that Offensive Security offers some of the best technical training in the information security field. Their brand has become synonymous with penetration testing in the eyes of most tech recruiters on LinkedIn.Some of the most common questions I get on LinkedIn are related to the OSCP/OSCE/OSWP certifications. Some people even go as far as asking for solutions to their exam machines. Sorry, you won’t be finding anything like that here (TRY HARDER). I will however offer an honest review and offer some tips to help you decide if you are ready to take the plunge into any of these 3 awesome courses!This article originally appeared on Jul 20, 2019, posted by Joey Lane and has been republished unedited and in its entirety with permission from the author. Original post: https://blog.own.sh/oscp-osce-oswp-review/

Jul 23, 2019

12 min read
Kali netHunter Android App Store

Kali NetHunter

Kali NetHunter App Store – Public Beta

Kali NetHunter has been undergoing a ton of changes as of late. Now supporting over 50 devices and running on Android devices from KitKat (v4.4) to Pie (v9.0), its amazing the extra capabilities that have been introduced.But, we don’t want to stop there. After a ton of work, we are really excited to introduce the Kali NetHunter App Store!

Jul 16, 2019

3 min read

Showing 222 - 234 of 377 entries