Category: OffSec

In this blog post, we’ll introduce a new 0day technique designed to bypass AMSI without the VirtualProtect API and without changing memory protection. The post AMSI Write Raid 0day Vulnerability appeared first on OffSec. This article has been indexed from…

Read more →

Discover the essential cybersecurity training elements that insurers look for and how to build a winning program. The post How Cybersecurity Training Lowers Insurance Premiums appeared first on OffSec. This article has been indexed from OffSec Read the original article:…

Read more →

Accelerate your DevOps journey with OffSec. Build secure, scalable, and efficient software delivery pipelines through real-world training. The post Infrastructure Automation and Defense: Introducing DevSecOps Essentials appeared first on OffSec. This article has been indexed from OffSec Read the original…

Read more →

Learn about the role of cybersecurity training in compliance. Discover how OffSec’s training can contribute to a strong compliance posture. The post The Role of Cybersecurity Training in Compliance appeared first on OffSec. This article has been indexed from OffSec…

Read more →

Outsmart evolving cyber threats with Threat Hunting Essentials. This hands-on training path builds expertise in threat actor analysis, advanced hunting techniques, and data analysis. The post Proactive Threat Detection: Introducing Threat Hunting Essentials appeared first on OffSec. This article has…

Read more →

Learn about the importance of cybersecurity compliance, most common cybersecurity compliance frameworks and how to navigate their complexities. The post Cybersecurity Compliance: Understanding Regulatory Frameworks appeared first on OffSec. This article has been indexed from OffSec Read the original article:…

Read more →

Attacks happen all the time – just this month, the cybersecurity community was shaken by the discovery of the Xz backdoor, a malicious exploit hidden within the popular open-source project XZ Utils. This backdoor, cleverly concealed within a seemingly legitimate…

Read more →

Attacks happen all the time – just this month, the cybersecurity community was shaken by the discovery of the Xz backdoor, a malicious exploit hidden within the popular open-source project XZ Utils. This backdoor, cleverly concealed within a seemingly legitimate…

Read more →

This blog is based on a conversation we had with Eugene Lim. Eugene is a Senior Cybersecurity Engineer who has earned the OSCP, OSCE3, and OSEE certifications. Follow him on X @spaceraccoonsec and learn about infosec and white hat hacking…

Read more →

The emphasis on technical skills and knowledge in cybersecurity has always been present. However, as the field becomes increasingly complex and intertwined with every facet of business operations, the spotlight has shifted to the indispensable role soft skills hold in…

Read more →

In 2024, the cybersecurity landscape is bleak, with 62% of organizations acknowledging a pressing need for enhanced cybersecurity skills amidst growing digital threats. This statistic underscores the urgent demand for comprehensive training in modern cybersecurity practices​. In response to this…

Read more →

Pentesters are well known for their technical skill sets, they simulate cyber attacks on computer systems, networks, or applications in a controlled environment. And, their primary goal is to identify vulnerabilities and weaknesses to assess the security posture of a…

Read more →

The cybersecurity landscape is indeed challenged by a significant skills gap, with reports highlighting the critical shortage of professionals equipped to handle escalating cyber threats. The 2023 Global Cybersecurity Skills Gap Report from Fortinet underscores the urgency of this issue,…

Read more →

Strong cybersecurity relies on an understanding of the importance of security throughout the entire organization. OffSec is committed to delivering security training to offensive, defensive, development and IT teams that can best protect organizations. In the first 10 weeks of…

Read more →

The MITRE ATT&CK framework was developed in 2013 as a knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is a foundation for specific threat models and methodologies in the private sector, government, and…

Read more →

The cloud’s potential is undeniable – but securing it remains a daunting challenge. A recent SC Magazine survey revealed a troubling statistic: one in four companies cite a critical cloud security skills gap. This gap leaves organizations vulnerable, as attackers…

Read more →

Learn about the essential role of soft skills in enhancing the effectiveness and resilience of cybersecurity leaders amidst evolving cyber threats. The post The Essential Soft Skills for Cybersecurity Leaders appeared first on OffSec. This article has been indexed from…

Read more →

Mixed sentiment surrounds the application of AI in cybersecurity. Join us for an examination of where AI fits into our cybersecurity toolkits. The post How to Leverage AI as a Cybersecurity Professional appeared first on OffSec. This article has been…

Read more →