EXP-401 Course with OSEE Certificate

In the Advanced Windows Exploitation (EXP-401) course, OffSec challenges students to develop creative solutions that work in today's increasingly challenging exploitation environment. The course takes a deep dive into topics such as security bypass techniques, complex heap manipulation, and 64-bit kernel exploitation.

Topics covered in the EXP-401 course

Bypass and evasion of user mode security mitigations such as DEP, ASLR, CFG, ACG and CET.

Advanced heap manipulations to obtain code execution along with guest-to-host and sandbox escapes.

Disarming WDEG mitigations and creating version independence for weaponization.

64-Bit Windows Kernel Driver reverse engineering and vulnerability discovery.

Bypass of kernel mode security mitigations such as kASLR, NX, SMEP, SMAP, kCFG and HVCI.

See full course syllabus

Who is this course for?

AWE is a particularly demanding penetration testing course.

This is the hardest course we offer and it requires a significant time investment. Learners need to commit to reading case studies and reviewing the provided reading material each evening.

Need to have a large group trained from your organization?

OffSec's In-House Training can bring our Advanced Windows Exploitation course to you.

Benefits of the EXP-401 Course

Case Studies

The case studies in AWE are large, well-known applications that are widely deployed in enterprise networks. The course dives deep into topics ranging from security mitigation bypass techniques to complex heap manipulations and 64-bit kernel exploitation.

40 (ISC)² CPE credits

This course may qualify you for 40 (ISC)² CPE Credits after you submit your documentation at the end of the training course or pass the certification challenge.

Hands-on Experience

OSEE certified specialists can analyze vulnerable software, locate problematic code, and create working exploits for a variety of modern Windows operating systems.

Adapting to Challenges

The OSEE exam assesses not only the course content, but also the ability to think laterally and adapt to new challenges.

Certificate

The course ends with an exam, the successful completion of which results in the awarding of the OffSec Exploitation Expert (OSEE) certificate.

Exam

- EXP-401 course and online labs will prepare you for OSEE certification
- The exam lasts 71 hours 45 minutes
- The exam is supervised

Find out more about the exam

Prerequisites

Learners should be experienced in developing windows exploits and understand how to operate a debugger. Familiarity with WinDBG, x86_64 assembly, IDA Pro and basic C/C++ programming is highly recommended. A willingness to work and put in real effort will greatly help students succeed in this security training course.

We recommend completing 300-level certifications before registering for this course.

Hardware Requirements

Bring a solid laptop to this course. It should be able to run three virtual machines without any problems. Please do not use netbooks or other low-resolution systems. The only supported host operating system is Windows 10. A stable, fast internet connection is required for the exam.

- VMware Workstation 15 or later
- 64-bit processor with at least 4 cores and support for NX, SMEP, VT-d/IOMMU and VT-x/EPT
- At least 160 GB of free disk space
- At least 16 GB RAM

Order course or subscription

Are you interested in purchasing a course or subscription?

Do you have any questions?

Write to us through the contact form.

Do you want to maintain confidentiality?

Download our PGP/GPG key under the icon below and send an encrypted message to szkolenia@efigo.pl.

OffSec Training

Organization name / First name and Surname

Course or subscription name

E-mail address

Phone number

Message

Consent to data processing

I consent to the processing of my personal data provided in this form in order to obtain information, present an offer and settle via telephone and e-mail the OffSec and Efigo Sp. z o.o. courses and subscriptions. I provide the data to Efigo Sp. z o.o., ul. Mikołaja Kopernika 8/6, 40-064 Katowice.

Consent to commercial information

I consent to receiving commercial information from Efigo Sp. regarding the offer of OffSec Courses. The administrator is Efigo sp. z o.o. with its registered office in Katowice, ul. Kopernika 8/6. The administrator processes data in accordance with the Privacy Policy.

If you are human, leave this field blank.