Learning Solutions

Learning Library

Courses & Certifications

Industry-leading certifications and training for continuous learning
Learning Paths

Focused training to develop skills based on a specific area of interest
Job Roles

Rigorous training content and labs for the most critical and in-demand job roles
Skills Development

Focused training to develop critical cybersecurity skills
Industry Frameworks

MITRE ATT&CK- and D3FEND-aligned learning paths
Explore Learning Library

Cyber Ranges

Enterprise Cyber Range & Versus

Set up tournaments and test red and blue team skills in a live-fire cyber range
Offensive Cyber Range

Train on the latest attack vectors to address vulnerabilities
Defensive Cyber Range

Prepare for the next attack with simulated real-world training environments
Watch a demo
Why OffSec

Organizations

Teams & Enterprises

Continuous learning & hands-on skills development for cybersecurity teams
Public Sector

Unique training for government agencies and educational institutions
Use Cases

Meet critical cyber workforce needs with OffSec's learning platform
Contact sales

Individuals

Attain a Certification

Prove critical knowledge & skills with an industry-standard certification
Get Hands-on Practice

Challenge yourself in real-world lab environments
Increase Career Prospects

Ready yourself for the next step in your cybersecurity career
Buy now
Plans & Pricing

Organizations

Subscription Pricing

Provide continuous Learning Library access to build cyber workforce resilience
Cyber Ranges

Hands-on training in live-fire, simulation environments
Pentesting Services

Let OffSec conduct a comprehensive vulnerability assessment
Contact sales

Individuals

Pricing

Flexible options based on your learning goals
Learn One
Learn One

12-month access to a single course, related labs, and two exam attempts
Course & Certification Bundle
Course & Certification Bundle

90-day access to a single course, related labs, and one exam attempt
Learn Fundamentals
Learn Fundamentals

12-month access to introductory- and essential-level content
Proving Grounds Labs

OffSec-curated private labs to practice and perfect your pentesting skills
Buy now
Partners
Global Partner Program
Partner Portal Login
Find a Partner
Kali & Community
Join Our Community
Kali Linux
Community Projects
OffSec Discord
OffSec Live
Resources
Launching New Vulnerable Machines in OCR | OffSec

Blog
Enterprise Security

Jun 27, 2024

Launching New Vulnerable Machines in OCR

Learn about the new vulnerable machines we have added to OCR.

Sam Nawab

3 min read

At OffSec, our mission with the Offensive Cyber Range (OCR) is to empower penetration testers and offensively minded students by providing them with the best realistic vulnerable machines to hone their skills on. 

This week, we are excited to announce the launch of two new vulnerable machines/chains: CVE-2024-2912 and SecuraLyze.

CVE-2024-2912 (Free-Standing)

This free-standing machine focuses on a single vulnerability, namely: CVE-2024-2912. This box allows students to explore and understand the intricacies of the recent security flaw and by engaging with this machine, students will:

  • Gain hands-on experience with the specific exploitation techniques related to CVE-2024-2912, which is an insecure deserialization vulnerability in the BentoML framework, allowing remote code execution (RCE). 
  • Enhance their problem-solving skills through practical application and testing.

Securalyze (Complex Active Directory Exploitation Chain)

This Active Directory chain consists of 7 machines and offers a comprehensive and challenging scenario that simulates the complexities found in many of today’s organizational environments. 

Key components of this chain’s attack path include:

  1. Abusing Flaws in Kerberos:
    • Explore weaknesses in the Kerberos authentication protocol, and learn to exploit these vulnerabilities to gain unauthorized access.
  2. Abusing MSSQL Servers:
    • Identify and exploit misconfigurations and vulnerabilities in Microsoft SQL Servers.
    • Understand the impact of database server vulnerabilities on the overall security posture.
  3. Analyzing/Spotting Data of Interest in Network Dump Files:
    • Develop skills in analyzing network traffic.
    • Spot and extract valuable data from network dumps to further the exploitation process.
  4. Post Exploitation:
    • Perform post-exploitation activities to consolidate access and gather intelligence.
    • Understand the steps attackers take after gaining an initial foothold.
  5. Abusing ADIDNS to Add Attacker-Controlled DNS Records:
    • Learn techniques for manipulating AD Integrated DNS to add malicious DNS records, as well as understand the implications of DNS manipulation in an AD environment.
  6. NTLM Relaying:
    • Explore NTLM relay attacks to escalate privileges and move laterally within a network.
    • Understand how NTLM vulnerabilities can be leveraged for further exploitation.
  7. DCSync:
    • Perform DCSync attacks to replicate domain controller data.
    • Learn how attackers use this technique to harvest credentials and compromise the entire AD infrastructure.

This new chain will be particularly valuable for students looking to deepen their understanding of complex attack chains and the real-life issues faced by organizations today. 

Our Mission

At OffSec, we have a big mission: to empower individuals and organizations to fight cyber threats with indispensable cybersecurity skills and resources. That means we are committed to providing the tools and resources necessary for all students to excel in their field!

The launch of these new VMs represents our ongoing effort to stay at the forefront of cybersecurity training and to provide invaluable learning opportunities to our customers. 

Stay tuned for more updates, and happy hacking!