Evasion Techniques and Breaching Defenses (PEN-300) is an advanced penetration testing course. Learners who complete the course and pass the exam will earn the OffSec Experienced Pentester (OSEP) certification. This course builds on the knowledge and techniques taught in Penetration Testing with Kali Linux, teaching learners to perform advanced penetration tests against mature organisations with an established security function and focuses on bypassing security mechanisms that are designed to block attacks. The OSEP is one of three certifications making up the OSCE³ certification along with the OSWE for advanced web attacks and OSED for exploit development.
Solid ability in enumerating targets to identify vulnerabilities
The ability to identify and exploit vulnerabilities like SQL injection, file inclusion, and local privilege escalation
A foundational understanding of Active Directory and knowledge of basic AD attacks
About the Exam
Module 1 - Operating System and Programming Theory
Module 2 - Client Side Code Execution With Office
Module 3 - Client Side Code Execution With Windows Script Host
Module 4 - Process Injection and Migration
Module 5 - Introduction to Antivirus Evasion
Module 6 - Advanced Antivirus Evasion
Module 7 - Application Whitelisting
Module 9 - Bypassing Network Filters
Module 10 - Linux Post-Exploitation
Module 11 - Kiosk Breakouts
Module 12 - Windows Credentials
Module 13 - Windows Lateral Movement
Module 14 - Linux Lateral Movement
Module 15 - Microsoft SQL Attacks
Module 16 - Active Directory Exploitation
Module 17 - Combining the Pieces
Module 18 Trying Harder: The Labs
Join our public courses in our Germany facilities. Private class trainings will be organized at the location of your preference, according to your schedule.