OffSec PEN-300 (OSEP) Training in Singapore

  • Learn via: Online Instructor-Led / Classroom Based / Onsite
  • Duration: 5 Days
  • Level: Expert
  • Price: From SGD 12,837
  • Upcoming Date:
  • UK & Singapore Based Global Training Provider

Evasion Techniques and Breaching Defenses (PEN-300) is an advanced penetration testing course. Learners who complete the course and pass the exam will earn the OffSec Experienced Pentester (OSEP) certification. This course builds on the knowledge and techniques taught in Penetration Testing with Kali Linux, teaching learners to perform advanced penetration tests against mature organisations with an established security function and focuses on bypassing security mechanisms that are designed to block attacks. The OSEP is one of three certifications making up the OSCE³ certification along with the OSWE for advanced web attacks and OSED for exploit development.

We can organize this training at your preferred date and location. Contact Us!

HAVELSAN
ASELSAN
PepsiCo Türkiye
JTI TÜTÜN ÜRÜNLERİ SANAYİ A.Ş.
ING Bank
DHL
MASTERCARD
Huawei
TotalEnergies
Mercedes-Benz Türk A.Ş.
Goodyear
FORD OTOMOTIV SANAYI A.S.
3M COMPANY
Schneider Electric
Central Bank of Azerbaijan
BP Petrolleri
Procter & Gamble (P&G)
Qatar Foundation
Bank Of China
GlaxoSmithKline (GSK)
MORGAN STANLEY & CO Inc
Novo Nordisk
DEUTSCHE BANK
Azerbaycan Cumhuriyeti Emek ve Ahalinin Sosyal Güvenliği Bakanlığı
ACCENTURE

Prerequisites

  • Solid ability in enumerating targets to identify vulnerabilities

  • The ability to identify and exploit vulnerabilities like SQL injection, file inclusion, and local privilege escalation

  • A foundational understanding of Active Directory and knowledge of basic AD attacks

What You Will Learn

  • Bypass defences
  • Perform advanced attacks while avoiding detection
  • Compromise systems configured with security in mind
  • Those who complete the course and pass the 48-hour exam earn the Offensive Security Experienced Penetration Tester (OSEP) certification
  • Preparation for more advanced field work
  • Knowledge of breaching network perimeter defences through client-side attacks, evading antivirus and allow-listing technologies
  • How to customise advanced attacks and chain them together

About the Exam

  • The PEN-300 course and online lab prepares you for the OSEP certification
  • 48-hour exam
  • Proctored

Training Outline

Module 1 - Operating System and Programming Theory

  • Programming Theory
  • Operating System and Programming Theory
  • Client Side Code Execution With Office

Module 2 - Client Side Code Execution With Office

  • Will You Be My Dropper
  • Phishing with Microsoft Office
  • Keeping Up Appearances
  • Executing Shellcode in Word Memory
  • PowerShell Shellcode Runner
  • Keep That PowerShell in Memory
  • Talking To The Proxy
  • Wrapping Up

Module 3 - Client Side Code Execution With Windows Script Host

  • Creating a Basic Dropper in Jscript
  • Jscript and C#
  • In-memory PowerShell Revisited
  • Wrapping Up

Module 4 - Process Injection and Migration

  • Finding a Home for Our Shellcode
  • DLL Injection
  • Reflective DLL Injection
  • Process Hollowing
  • Wrapping Up

Module 5 - Introduction to Antivirus Evasion

  • Antivirus Software Overview
  • Simulating the Target Environment
  • Locating Signatures in Files
  • Bypassing Antivirus with Metasploit
  • Bypassing Antivirus with C#
  • Messing with Our Behaviour
  • Office Please Bypass Antivirus
  • Hiding PowerShell Inside VBA
  • Wrapping Up

Module 6 - Advanced Antivirus Evasion

  • Intel Architecture and Windows 10
  • Antimalware Scan Interface
  • Bypassing AMSI With Reflection in PowerShell
  • Wrecking AMSI in PowerShell
  • UAC Bypass vs Microsoft Defender
  • Bypassing AMSI in JScript
  • Wrapping Up

Module 7 - Application Whitelisting

  • Application Whitelisting Theory and Setup
  • Basic Bypasses
  • Bypassing AppLocker with PowerShell
  • Bypassing AppLocker with C#
  • Bypassing AppLocker with JScript
  • Wrapping Up

Module 9 - Bypassing Network Filters

  • DNS Filters
  • Web Proxies
  • IDS and IPS Sensors
  • Full Packet Capture Devices
  • HTTPS Inspection
  • Domain Fronting
  • DNS Tunnelling
  • Wrapping Up

Module 10 - Linux Post-Exploitation

  • User Configuration Files
  • Bypassing AV
  • Shared Libraries
  • Wrapping Up

Module 11 - Kiosk Breakouts

  • Kiosk Enumeration
  • Command Execution
  • Post-Exploitation
  • Privilege Escalation
  • Windows Kiosk Breakout Techniques
  • Wrapping Up

Module 12 - Windows Credentials

  • Local Windows Credentials
  • Access Tokens
  • 3 Kerberos and Domain Credentials
  • Processing Credentials Offline
  • Wrapping Up

Module 13 - Windows Lateral Movement

  • Remote Desktop Protocol
  • Fileless Lateral Movement
  • Wrapping Up

Module 14 - Linux Lateral Movement

  • Lateral Movement with SSH
  • DevOps
  • Kerberos on Linux
  • Wrapping Up

Module 15 - Microsoft SQL Attacks

  • MS SQL in Active Directory
  • MS SQL Escalation
  • Linked SQL Servers
  • Wrapping Up

Module 16 - Active Directory Exploitation

  • AD Object Security Permissions
  • Kerberos Delegation
  • Active Directory Forest Theory
  • Burning Down the Forest
  • Going Beyond the Forest
  • Compromising an Additional Forest
  • Wrapping Up

Module 17 - Combining the Pieces

  • Enumeration and Shell
  • Attacking Delegation
  • Owning the Domain
  • Wrapping Up

Module 18 Trying Harder: The Labs

  • Real Life Simulations
  • Wrapping Up

Why Choose Us

Experience OffSec PEN-300 (OSEP) in Singapore through Bilginç IT Academy's live and interactive virtual classroom environment, accessible from your home, office, or any location. Connect with expert trainers in real time and bring the energy of classroom learning into the digital experience.

  • Live Instructor-Led Sessions: Join scheduled training sessions with your instructor and fellow delegates in real time.
  • Interactive Learning Experience: Take part in discussions, practical exercises, group activities, and Q&A sessions throughout the course.
  • Expert Trainer Network: Learn from experienced trainers with strong industry backgrounds and practical field expertise.
  • Over 30 Years of Training Expertise: Benefit from Bilginç IT Academy's long-standing experience in delivering professional training since 1995.
  • Flexible and Scalable Delivery: Access live virtual classrooms from Singapore and worldwide, with flexible planning options for individual and corporate training needs.

Experience OffSec PEN-300 (OSEP) in a focused classroom environment in Singapore. Bilginç IT Academy's carefully selected training venues provide a professional setting where delegates can interact directly with expert trainers and peers.

  • Experienced Trainers: Learn from specialists with extensive field experience and real-world knowledge.
  • Professional Training Venues: Attend courses in comfortable, well-equipped classrooms designed to support effective learning.
  • Focused Classroom Experience: Benefit from limited class sizes that encourage discussion, interaction, and personalized support.
  • Quality-Driven Learning: Develop practical skills through structured, up-to-date, and professionally designed training content.

Meet your team's training needs with Bilginç IT Academy's onsite OffSec PEN-300 (OSEP) in Singapore solution, delivered at your office or preferred location. Align your team's development with your business goals through a training experience tailored to your organization.

  • Tailored Course Content: Adapt the training program to your organization's projects, team structure, and specific business requirements.
  • Time and Cost Efficiency: Reduce travel, accommodation, and operational costs while maximizing the value of your training investment.
  • Team-Focused Learning: Help your employees develop around the same knowledge base and strengthen collaboration across your organization.
  • Simplified Planning and Tracking: Manage the training process, participant development, and organizational requirements with greater control.
Contact us for more detail about our trainings and for all other enquiries!

OffSec PEN-300 (OSEP) Training Course in Singapore Schedule

Join our public courses in our Singapore facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

We can organize this training at your preferred date and location.
30 June 2026 (5 Days)
Singapore
SGD 12,837
11 July 2026 (5 Days)
Singapore
SGD 12,837
15 July 2026 (5 Days)
Singapore
SGD 12,837
23 July 2026 (5 Days)
Singapore
SGD 12,837
26 July 2026 (5 Days)
Singapore
SGD 12,837
08 August 2026 (5 Days)
Singapore
SGD 12,837
13 August 2026 (5 Days)
Singapore
SGD 12,837
11 September 2026 (5 Days)
Singapore
SGD 12,837

Other trainings and courses related to the OffSec PEN-300 (OSEP)

Singapore is widely recognized as Asia's leading 'Smart Nation,' serving as a global financial and technology powerhouse with unparalleled infrastructure for IT training and research. Strategically located in the heart of Southeast Asia, it acts as a magnet for international tech talent and investment, supported by the research prestige of the National University of Singapore (NUS) and Nanyang Technological University (NTU). The city-state is a world leader in Cybersecurity, Blockchain, and Data Science, fostering an environment where digital transformation is integrated into every level of society. Our training programs in Singapore are built for a workforce that demands the highest technical standards and strategic insight. We offer advanced certifications in AI, Cloud Engineering, and Digital Governance, ensuring that Singapore continues to set the global benchmark for technological sophistication and excellence in the modern digital era.

Bilginç IT Academy All Rights Reserved

By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.