Our courses focus on different aspects of penetration testing. Choosing the most suitable course depends on which of the many areas of information security interest you.
Penetration Testing with Kali Linux (PWK) is our foundational course, teaching the core skills required of a good pentester. It focuses on modern techniques and is a great starting point for newcomers to Offensive Security. PWK is the course you need to take if you would like to earn your OSCP certification.
Advanced Web Attacks and Exploitation (AWAE) teaches white box web application security methods, including advanced source code review. We recommend it for pentesters who need a better understanding of web app security, as well as anyone working with the code base of a web app.
Evasion Techniques and Breaching Defenses (PEN-300) covers more advanced topics of breaching network internal defenses through client-side attacks as well as evading antivirus and defeating application allow-listing technologies. As a general rule, this course does not specifically deal with the act of evading a blue team but rather focus on bypassing security mechanisms that are designed to block attacks.
For those interested in wireless penetration testing, we have Offensive Security Wireless Attacks (WiFu). WiFu teaches the skills needed to audit and secure wireless devices. Please note that this course requires a home lab setup.
Advanced Windows Exploitation (AWE) is our most difficult exploit development course. Due to the difficulty level, it's only offered as a live training.
Windows User Mode Exploit Development (EXP-301) course teaches students how to bypass DEP and ASLR security mitigations, create custom return-oriented programming (ROP) chains, and exploit format string specifiers. Students will learn how to adapt older techniques to modern versions of Windows, create custom exploits, and learn the fundamentals of reverse engineering.
Before registering, we recommend reviewing the course's overview page (linked above) and syllabus.
For more details, we have a blog post to help you learn more about the information security training paths at OffSec. You can also compare them on our Courses and Certifications page.