Get your OSEP Certification with PEN-300 from OffSec | OffSec

Train to become OSEP certified

PEN-300: Evasion Techniques and Breaching Defenses

Starting at $1,749

Level

300
|

677h of content

  • Develop advanced ethical hacking skills, including executing client-side attacks, bypassing application whitelisting, and performing advanced Active Directory attacks
  • Earn OffSec's Experienced Penetration Tester (OSEP) certification upon passing the exam
Start training Request a demo

Overview

PEN-300 is OffSec’s advanced penetration testing course, focused on evading defenses, developing custom techniques, and preparing for the OSEP exam. Learners engage with hands-on, live machines to exploit using customized tools and countermeasures, building advanced skills in ethical hacking

PEN-300 is an advanced course for penetration testers, building on the skills and techniques learned within PEN-200. This course explores advanced penetration testing techniques against hardened targets in mature organizations with an established security function. Within this course, you will go beyond the use of existing tools and skills and be encouraged to develop new techniques and tools. By taking on this course, learners will be proving their advanced phishing skills, advanced antivirus evasion tactics, and establishing attack vectors that leverage or disclose Windows credentials.

PEN-300 includes a wide array of current techniques and skills, including:

  • Migrating between processes to evade detection and maintain control, even if one process is terminated
  • Modifying attack vectors from Word macros within an executable to deliver a staged Meterpreter payload directly in memory
  • Discussing the drawbacks of PowerShell code that invokes Win32 APIs through the .NET framework and examining a more advanced and stealthy technique known as reflection
  • Executing "living off the land" techniques to gain ever-increasing access to the system and its back-end networks
  • Adding advanced techniques for maintaining access and escalating privileges on compromised Windows systems, including navigating file systems, manipulating user accounts, extracting sensitive information, and establishing persistent backdoors

PEN-300 is organized into 20+ modules, each starting with theory and then diving into practical application of that theory. Modules have hands-on exercises and code snippets to aid learners when a more practical application of the knowledge is required for understanding and application. Many modules also have videos to help provide visual support for learners. After completion of the course materials, learners can take advantage of the 7 Challenge Labs, which bring the knowledge and skills together for learners and prepare them for the OSEP exam. The exam forces the learner to demonstrate the ability to identify, exploit, and report on vulnerabilities, culminating in the development of custom exploits.

Since the goal of this course is to teach offensive techniques that work against client organizations with hardened systems, we expect students to have taken the PEN-200 course and passed the OSCP+ exam, or have equivalent knowledge and skills. While this is not a requirement, learners may face difficulties without this formal base of knowledge or a strong understanding of operating systems, networking, and scripting (e.g., Python, Bash).

Becoming OSEP certified

  • 48-hour proctored exam

    All exams are proctored by an OffSec employee in a private VPN

  • Hands-on labs

    Identify, exploit, and report real-world vulnerabilities in live lab systems

  • Corporate network simulation

    Compromise multiple machines on one large network

  • Multiple attack paths

    Some machines require multiple exploitation steps, while other will be fully exploitable remotely

OSEP Certification

About the OSEP exam

The OffSec Experience Penetration Tester certification demonstrates advanced penetration skills making them highly sought-after experts in security organizations from sophisticated threats

Exam Guide Exam FAQ
OSCE³ certification badge

Offensive Security Mastery

About the OSCE³

Achieving the OSCE³ certification showcases your dedication to the offensive security field and your ability to tackle complex security challenges after you earn your OSWE, OSED, and OSEP certifications.

Learn more

Start learning with OffSec

$2,749/year*

Best value

Learn One

Includes one year of access to one 200 or 300-level course, the associated labs, and two exam attempts

Buy now Learn more

$1,749/once

Most popular

Course + Cert Bundle

Includes 90 days of access to one 200 or 300-level course, the associated labs, and a single exam attempt

Buy now Learn more

Train your team with OffSec

$6,099/year*

All access

Learn Unlimited

Unlimited OffSec Learning Library access plus unlimited exam attempts for one year

Contact sales Learn more

Get a quote

Large teams

Learn Enterprise

Unlimited OffSec Learning Library access with flexible terms and volume discounts available

Get quote Learn more

Validate your expertise.
Amplify your impact.

  • Mindset & work ethic

    Instill a relentless problem-solving mindset that employers value highly in security professionals

  • Globally recognized certification

    OffSec certs build elite, hands-on skills trusted by the world's top companies

  • Organization value & trust

    Trusted to train skilled, consistent, and reliable security teams

  • Certified candidates win

    91% of respondents prefer to hire candidates with certifications (Fortinet, 2024 Cybersecurity Skills Gap Report)

View of the PEN-200 syllabus in the OffSec portal

Realistic lab environments

Built to sharpen skills through practical, immersive learning

Request a free trial
View of the PEN-200 syllabus in the OffSec portal

  • On-demand lab access

    Train anytime in up-to-date, practical, cutting-edge labs

  • Structured learning modules

    Progress through clear, goal-driven topics

  • Challenge-based learning

    Build skills through real-world, hands-on challenges

  • AI-powered learning assisstant

    Get instant, guided help with complex topics

Success stories from the field

3 months of material, lots of material! And within them are the labs that I sat for weeks, but there is no doubt that the knowledge I gained during the training will accompany me later in my career.
OZ
Omry Zur Cyber Security Researcher
PEN-300 was awesome. It's packed with tons of great content and labs that really help reinforce what's taught in the course.
CM
Chris Magowan Cybersecurity Professional
I can take the skills taught in this course and immediately apply it to my day job.This course does a very impressive and consistent job of starting with theory and then diving into practical application of that theory.
N
Nullg0re Penetration Tester
I have already been able to apply the fundamentals learned in PEN-300 in my day-to-day work and have increased my skillset in a meaningful way.
J
J3rryBl4nks Information Security Engineer
I’ve been able to utilize what I learned in the course to develop innovative approaches, especially in dealing with the most advanced EDR/XDR/MDR solutions available today.
RB
Randy Becker Principle Security Architect
This achievement stands as a testament to sustained effort and perseverance. The long hours, the challenges, and the relentless pursuit of excellence have sharpened my skills and expanded my ability to innovate and solve problems.
Luca Demers Offensive Security Engineer

PEN-300 FAQ