PEN-300: Evasion Techniques and Breaching Defenses (OSEP)

  • Develop advanced ethical hacking skills, including executing client-side attacks, bypassing application whitelisting, and performing advanced Active Directory attacks
  • Earn OffSec’s Experienced Penetration Tester (OSEP) certification upon passing the exam
Google 4.8/5 Average Rating
1,200+ Learners
Industry Recognized
Certification Body Offensive Security
Delivery Profice
Lowest price guaranteed
Self Paced Learning - 90 Days Access
€1946
Excl. VAT
Self Paced Learning - 365 Days Access
€3000
Excl. VAT
  • Exam voucher
  • Hands-on labs
  • Certificate
  • Lifetime support
  • Official courseware

Flexible payment — invoice, card or PayPal

About This Course

PEN-300 is an advanced penetration testing course for experienced offensive security practitioners. Building on the skills taught in PEN-200, PEN-300 focuses on real-world techniques for breaching and operating within hardened targets and mature organizations with established security programs. The course emphasizes hands-on development of techniques and tooling, encouraging learners to move beyond off-the-shelf solutions and craft custom approaches that work against modern defenses and evolving cyber threats.

Learners will practice advanced offensive techniques covering client-side exploitation, social engineering, credential theft, lateral movement, privilege escalation, and persistence. The curriculum teaches how to evade detection from EDR and AV solutions, live off the land, and exploit application and operating system weaknesses across Windows and Linux environments.

 

What You’ll Learn

Advanced offensive techniques and tool development
Learn when to use common frameworks such as Metasploit and when to build custom toolchains or exploits tailored to the target environment.

Client-side attacks and social engineering
Design and execute convincing client-side vectors that compromise users and applications, including advanced phishing methods.

EDR and AV evasion
Master advanced antivirus evasion tactics, detection avoidance strategies, process migration, and in-memory payload delivery techniques.

Privilege escalation and lateral movement
Chain exploits to escalate privileges on Windows and Linux hosts, leverage Active Directory weaknesses, and reduce exposure created by a single misconfiguration or vulnerability.

Advanced Windows offensive tradecraft
Cover Windows-specific techniques such as credential harvesting, exploitation of administrative groups, persistence mechanisms, reflection-based stealth techniques, and executing staged payloads directly in memory.

Application exploitation
Find and exploit weaknesses in modern application stacks, including Java and JavaScript components, and craft reliable attack vectors against web and enterprise applications.

Maintaining access and post-exploitation
Implement advanced methods for persistence, data exfiltration, and long-term control while minimizing detection risk and protecting sensitive data.

 

Course Structure and Hands-on Work

PEN-300 is organized into 20-plus modules. Each module begins with theory and then moves into practical application through hands-on exercises and code examples. Many modules include video walk-throughs for visual learners. After completing the modules, learners apply what they learned in seven Challenge Labs that simulate complex, realistic engagements and prepare them for the OSEP exam. The exam requires demonstration of the ability to identify, exploit, and report on vulnerabilities, including the development of custom exploits, reflecting professional pen test reporting standards.

 

Prerequisites

This course is intended for those with a strong foundation in offensive security. We expect students to have completed PEN-200 and passed OSCP+ or to possess equivalent knowledge and experience. Learners should be comfortable with operating systems, TCP/IP networking, scripting (for example Python or Bash), and basic exploit development. Without that base, students may find the material challenging.

 

Certification

Upon successful completion of the proctored exam, learners earn OffSec’s Experienced Penetration Tester certification, OSEP, validating practical pen testing capability in advanced offensive security engagements.

Course Information

Course Code OSEP
Duration Self Paced
Delivery Self Paced
Exam Voucher Included
Certification Body Offensive Security
Certification OSEP

What You Will Learn

Develop client-side attack techniques using Microsoft Office and other common applications, including building a reliable attack vector
Master antivirus evasion methods and tools
Bypass application whitelisting mechanisms like AppLocker
Implement advanced lateral movement strategies in Windows and Linux environments
Conduct sophisticated Active Directory exploitation and attacks to uncover hidden vulnerabilities
Evade network detection systems, including IDS and IPS
Perform advanced exploitation of Microsoft SQL and Active Directory
Use advanced programming concepts and Win32 APIs for attack development

Course Curriculum

Study memory management, process scheduling, file systems, and other essential OS components, gaining a solid foundation for understanding and exploiting vulnerabilities

Focus on leveraging known vulnerabilities in Microsoft Office applications to craft malicious documents that trigger code execution on a victim’s machine, gaining unauthorized access and control

Exploit Jscript for code execution attacks, gaining unauthorized access and control of machines in Windows environments

Master the art of stealth and persistence by injecting malicious code into legitimate running processes, migrating between processes to evade detection and maintain control when processes are terminated

Create malware that goes undetected with basic techniques like obfuscation and packing to bypass and evade antivirus software

Use advanced methods like signature-based and heuristic-based evasion to create malware that goes undetected by complex antivirus solutions

Bypass security measures intended to restrict the execution of unauthorized software

Gain access to restricted resources and networks with different techniques for bypassing network filters and firewalls

Navigate file systems, manipulate user accounts, extract sensitive information, and establish persistent backdoors on compromised Linux systems

Navigate file systems, manipulate user accounts, extract sensitive information, and establish persistent backdoors on compromised Windows systems

Break out of restricted kiosk environments like ATMs or point-of-sale terminals to gain control of their operating systems

Use different methods and techniques to extract valuable credentials like passwords and hashes from Windows systems

Exploit trust relationships, leverage vulnerabilities in services and protocols with tools like PsExec and Mimikatz to gain access to systems throughout a compromised Windows network

Exploit trust relationships, leverage vulnerabilities in services and protocols to gain access to systems throughout a compromised Linux network

Attack vulnerabilities in Microsoft SQL Server databases to extract sensitive data, escalate privileges, and gain control over entire systems

Exploit vulnerabilities in Active Directory to compromise domains in Windows networks

Combine multiple exploits, techniques, and tools to create complex, multi-stage attacks to bypass multiple layers of security

Apply your knowledge and skills in challenging, real-world scenarios with complex network environments, hardened security measures, and realistic attack scenarios

Get the Full Syllabus as a PDF

Curriculum, exam format & everything included — sent straight to your inbox.

All You Need to Know

Who Should Attend

The PEN-300 course is ideal for:

  • Experience penetration testers and security professionals
  • Those seeking to master advanced penetration testing methodologies
  • Existing OSCP+ certification holders

While the completion of PEN-200 (Penetration Testing with Kali Linux) is not a formal prerequisite, it is highly recommended due to the advanced nature of PEN-300.

Prerequisites

All learners are recommended to have either taken Penetration Testing with Kali Linux (PEN-200) and passed the OSCP+ certification or have equivalent knowledge and skills.

These skills include:

  • Working familiarity with Kali Linux and the Linux command line
  • Solid ability in the enumeration of targets to identify vulnerabilities
  • Basic scripting abilities in Bash, Python, and PowerShell
  • Ability to identify and exploit vulnerabilities like SQL injection, file inclusion, and local privilege escalation
  • Foundational understanding of Active Directory and knowledge of basic AD attacks
  • Familiarity of C# programming is a plus for this course

Premium training, now at the lowest price.

Self Paced Learning - 90 Days Access €1946 excl. VAT
Self Paced Learning - 365 Days Access €3000 excl. VAT
4.8/5 Official Offensive Security partner Exam included 1,200+ alumni
Lowest price guaranteed Ready to enrol?

No payment now — reserve your seat and we'll send the invoice.

Under a minute · invoice, card or PayPal
How it works: 1 Submit your details 2 Receive your invoice 3 Pay & get access