Course Duration
5 Days

Cyber
Authorized Training

IT

Course cost:
£6,895.00

IT Certification Overview

Evasion Techniques and Breaching Defenses (PEN-300) is an advanced penetration testing course. Learners who complete the course and pass the exam will earn the OffSec Experienced Pentester (OSEP) certification. This course builds on the knowledge and techniques taught in Penetration Testing with Kali Linux, teaching learners to perform advanced penetration tests against mature organisations with an established security function and focuses on bypassing security mechanisms that are designed to block attacks. The OSEP is one of three certifications making up the OSCE³ certification along with the OSWE for advanced web attacks and OSED for exploit development.

Book Now

Newto Training Reviews

What Our Happy Alumni Say About Us

Trustpilot
Chris Ellis

I had absolutely no experience in this field, but Newto Training recognised my potential and supported me every step of the way. The real-life scenarios were invaluable in making me job-ready.

William Thompson
Chloe Bennett

The tutors at Newto are consistently patient, clear and more than willing to help. I couldn't have asked for a better learning environment.

Emily Smith
Valdi Abolins

From day one I felt welcomed and supported. The live sessions were interactive and the resources well thought-out. I passed my exam on the first attempt thanks to them.

Valdi Abolins
Almansur A O

I was nervous about switching careers but the practical approach and continual 1-to-1 support gave me the confidence I needed to succeed."

John Wilson
Mr Stephen Kafuko

The training material was excellent, and the instructors really brought the subject to life with hands-on lab work. I feel fully prepared for the workplace."

Matthew Jackson
Maryam Farooq

What impressed me most was the flexibility and responsiveness of the support team. Whenever I had a question, they were there even outside of normal hours.

Noorah Rahman
Olivia Hughes

The course structure was superb. A great mix of theory and practice delivered at a pace that made sense even for beginners. Highly recommended.

Grace Miller
Sophia Clarke

Switching into IT felt overwhelming, but Newto Training made the journey manageable and quite enjoyable. Their coaching style is top class.

Sophie Taylor
Alison Whitfield

I particularly appreciated the way complex topics were broken down into manageable chunks, and the tutor actively encouraged questions at every stage.

Charlotte Brown
Mehzabin K

The live-taught interactive classes set Newto apart from other providers. It wasn't just video-based learning and the real engagement made all the difference.

Amira Khalid
Abhishek Singh

The cyber course exceeded my expectations. They've been on hand for everything and are constantly in touch with me

Marcus Robinson

The resources provided were spot on and the teaching style made everything easy to understand. I particularly appreciated the extra help offered when needed.

Imani Brown
Ouisall

Enrolling with Newto was one of the best decisions I've made. The job-readiness focus, strong teaching and excellent support all stood out.

Ouisall Davis
Sapas

I completed my SQL course and now feel confident in my skills. The real-world examples and supportive tutors made it all click.

Abhishek Singh

I've just passed my AZ-900 exam thanks to the support received from Ken in the boot camp and his exam preparation sessions.

Rishi Gupta

I've gained a qualification and the confidence to use it in real-world scenarios.

Mei Chen

Their commitment to student success is obvious from the personalised guidance to the quality of delivery. I'd recommend them without hesitation.

Aarav Sharma

Every tutor I encountered was professional, encouraging and keen to see me succeed. That personal touch made a big difference.

Marcus Johnson

I'm now in a role I once thought was out of reach, thank you to the all the team

Ananya Singh

The bootcamps were excellent, we were given practical projects to complete and I feel so much more confident with my coding skills

Ethan Walker
Chris Ellis

I had absolutely no experience in this field, but Newto Training recognised my potential and supported me every step of the way. The real-life scenarios were invaluable in making me job-ready.

William Thompson
Chloe Bennett

The tutors at Newto are consistently patient, clear and more than willing to help. I couldn't have asked for a better learning environment.

Emily Smith
Valdi Abolins

From day one I felt welcomed and supported. The live sessions were interactive and the resources well thought-out. I passed my exam on the first attempt thanks to them.

Valdi Abolins
Almansur A O

I was nervous about switching careers but the practical approach and continual 1-to-1 support gave me the confidence I needed to succeed."

John Wilson
Mr Stephen Kafuko

The training material was excellent, and the instructors really brought the subject to life with hands-on lab work. I feel fully prepared for the workplace."

Matthew Jackson
Maryam Farooq

What impressed me most was the flexibility and responsiveness of the support team. Whenever I had a question, they were there even outside of normal hours.

Noorah Rahman
Olivia Hughes

The course structure was superb. A great mix of theory and practice delivered at a pace that made sense even for beginners. Highly recommended.

Grace Miller
Sophia Clarke

Switching into IT felt overwhelming, but Newto Training made the journey manageable and quite enjoyable. Their coaching style is top class.

Sophie Taylor
Alison Whitfield

I particularly appreciated the way complex topics were broken down into manageable chunks, and the tutor actively encouraged questions at every stage.

Charlotte Brown
Mehzabin K

The live-taught interactive classes set Newto apart from other providers. It wasn't just video-based learning and the real engagement made all the difference.

Amira Khalid
Chris Ellis

I had absolutely no experience in this field, but Newto Training recognised my potential and supported me every step of the way. The real-life scenarios were invaluable in making me job-ready.

William Thompson
Chloe Bennett

The tutors at Newto are consistently patient, clear and more than willing to help. I couldn't have asked for a better learning environment.

Emily Smith
Valdi Abolins

From day one I felt welcomed and supported. The live sessions were interactive and the resources well thought-out. I passed my exam on the first attempt thanks to them.

Valdi Abolins
Almansur A O

I was nervous about switching careers but the practical approach and continual 1-to-1 support gave me the confidence I needed to succeed."

John Wilson
Mr Stephen Kafuko

The training material was excellent, and the instructors really brought the subject to life with hands-on lab work. I feel fully prepared for the workplace."

Matthew Jackson
Maryam Farooq

What impressed me most was the flexibility and responsiveness of the support team. Whenever I had a question, they were there even outside of normal hours.

Noorah Rahman
Olivia Hughes

The course structure was superb. A great mix of theory and practice delivered at a pace that made sense even for beginners. Highly recommended.

Grace Miller
Sophia Clarke

Switching into IT felt overwhelming, but Newto Training made the journey manageable and quite enjoyable. Their coaching style is top class.

Sophie Taylor
Alison Whitfield

I particularly appreciated the way complex topics were broken down into manageable chunks, and the tutor actively encouraged questions at every stage.

Charlotte Brown
Mehzabin K

The live-taught interactive classes set Newto apart from other providers. It wasn't just video-based learning and the real engagement made all the difference.

Amira Khalid
Abhishek Singh

The cyber course exceeded my expectations. They've been on hand for everything and are constantly in touch with me

Marcus Robinson

The resources provided were spot on and the teaching style made everything easy to understand. I particularly appreciated the extra help offered when needed.

Imani Brown
Ouisall

Enrolling with Newto was one of the best decisions I've made. The job-readiness focus, strong teaching and excellent support all stood out.

Ouisall Davis
Sapas

I completed my SQL course and now feel confident in my skills. The real-world examples and supportive tutors made it all click.

Abhishek Singh

I've just passed my AZ-900 exam thanks to the support received from Ken in the boot camp and his exam preparation sessions.

Rishi Gupta

I've gained a qualification and the confidence to use it in real-world scenarios.

Mei Chen

Their commitment to student success is obvious from the personalised guidance to the quality of delivery. I'd recommend them without hesitation.

Aarav Sharma

Every tutor I encountered was professional, encouraging and keen to see me succeed. That personal touch made a big difference.

Marcus Johnson

I'm now in a role I once thought was out of reach, thank you to the all the team

Ananya Singh

The bootcamps were excellent, we were given practical projects to complete and I feel so much more confident with my coding skills

Ethan Walker
Abhishek Singh

The cyber course exceeded my expectations. They've been on hand for everything and are constantly in touch with me

Marcus Robinson

The resources provided were spot on and the teaching style made everything easy to understand. I particularly appreciated the extra help offered when needed.

Imani Brown
Ouisall

Enrolling with Newto was one of the best decisions I've made. The job-readiness focus, strong teaching and excellent support all stood out.

Ouisall Davis
Sapas

I completed my SQL course and now feel confident in my skills. The real-world examples and supportive tutors made it all click.

Abhishek Singh

I've just passed my AZ-900 exam thanks to the support received from Ken in the boot camp and his exam preparation sessions.

Rishi Gupta

I've gained a qualification and the confidence to use it in real-world scenarios.

Mei Chen

Their commitment to student success is obvious from the personalised guidance to the quality of delivery. I'd recommend them without hesitation.

Aarav Sharma

Every tutor I encountered was professional, encouraging and keen to see me succeed. That personal touch made a big difference.

Marcus Johnson

I'm now in a role I once thought was out of reach, thank you to the all the team

Ananya Singh

The bootcamps were excellent, we were given practical projects to complete and I feel so much more confident with my coding skills

Ethan Walker

Prerequisites

  • Solid ability in enumerating targets to identify vulnerabilities

  • The ability to identify and exploit vulnerabilities like SQL injection, file inclusion, and local privilege escalation

  • A foundational understanding of Active Directory and knowledge of basic AD attacks

Learning Objectives

  • Bypass defences
  • Perform advanced attacks while avoiding detection
  • Compromise systems configured with security in mind
  • Those who complete the course and pass the 48-hour exam earn the Offensive Security Experienced Penetration Tester (OSEP) certification
  • Preparation for more advanced field work
  • Knowledge of breaching network perimeter defences through client-side attacks, evading antivirus and allow-listing technologies
  • How to customise advanced attacks and chain them together

About the Exam

  • The PEN-300 course and online lab prepares you for the OSEP certification
  • 48-hour exam
  • Proctored

OffSec PEN-300 (OSEP) Course Content

Module 1 - Operating System and Programming Theory

  • Programming Theory
  • Operating System and Programming Theory
  • Client Side Code Execution With Office

Module 2 - Client Side Code Execution With Office

  • Will You Be My Dropper
  • Phishing with Microsoft Office
  • Keeping Up Appearances
  • Executing Shellcode in Word Memory
  • PowerShell Shellcode Runner
  • Keep That PowerShell in Memory
  • Talking To The Proxy
  • Wrapping Up

Module 3 - Client Side Code Execution With Windows Script Host

  • Creating a Basic Dropper in Jscript
  • Jscript and C#
  • In-memory PowerShell Revisited
  • Wrapping Up

Module 4 - Process Injection and Migration

  • Finding a Home for Our Shellcode
  • DLL Injection
  • Reflective DLL Injection
  • Process Hollowing
  • Wrapping Up

Module 5 - Introduction to Antivirus Evasion

  • Antivirus Software Overview
  • Simulating the Target Environment
  • Locating Signatures in Files
  • Bypassing Antivirus with Metasploit
  • Bypassing Antivirus with C#
  • Messing with Our Behaviour
  • Office Please Bypass Antivirus
  • Hiding PowerShell Inside VBA
  • Wrapping Up

Module 6 - Advanced Antivirus Evasion

  • Intel Architecture and Windows 10
  • Antimalware Scan Interface
  • Bypassing AMSI With Reflection in PowerShell
  • Wrecking AMSI in PowerShell
  • UAC Bypass vs Microsoft Defender
  • Bypassing AMSI in JScript
  • Wrapping Up

Module 7 - Application Whitelisting

  • Application Whitelisting Theory and Setup
  • Basic Bypasses
  • Bypassing AppLocker with PowerShell
  • Bypassing AppLocker with C#
  • Bypassing AppLocker with JScript
  • Wrapping Up

Module 9 - Bypassing Network Filters

  • DNS Filters
  • Web Proxies
  • IDS and IPS Sensors
  • Full Packet Capture Devices
  • HTTPS Inspection
  • Domain Fronting
  • DNS Tunnelling
  • Wrapping Up

Module 10 - Linux Post-Exploitation

  • User Configuration Files
  • Bypassing AV
  • Shared Libraries
  • Wrapping Up

Module 11 - Kiosk Breakouts

  • Kiosk Enumeration
  • Command Execution
  • Post-Exploitation
  • Privilege Escalation
  • Windows Kiosk Breakout Techniques
  • Wrapping Up

Module 12 - Windows Credentials

  • Local Windows Credentials
  • Access Tokens
  • 3 Kerberos and Domain Credentials
  • Processing Credentials Offline
  • Wrapping Up

Module 13 - Windows Lateral Movement

  • Remote Desktop Protocol
  • Fileless Lateral Movement
  • Wrapping Up

Module 14 - Linux Lateral Movement

  • Lateral Movement with SSH
  • DevOps
  • Kerberos on Linux
  • Wrapping Up

Module 15 - Microsoft SQL Attacks

  • MS SQL in Active Directory
  • MS SQL Escalation
  • Linked SQL Servers
  • Wrapping Up

Module 16 - Active Directory Exploitation

  • AD Object Security Permissions
  • Kerberos Delegation
  • Active Directory Forest Theory
  • Burning Down the Forest
  • Going Beyond the Forest
  • Compromising an Additional Forest
  • Wrapping Up

Module 17 - Combining the Pieces

  • Enumeration and Shell
  • Attacking Delegation
  • Owning the Domain
  • Wrapping Up

Module 18 Trying Harder: The Labs

  • Real Life Simulations
  • Wrapping Up

Upcoming Dates

Dates and locations are available on request. Please contact us for the latest schedule.

Advance Your Career with OffSec PEN-300 (OSEP)

Gain the skills you need to succeed. Enrol in OffSec PEN-300 (OSEP) with Newto Training today.

Call us today WhatsApp Us
Easter Sale 1st April - 10th April
UP TO 80% OFF
Sale ends in
00Days
00Hours
00Mins
00Secs
Claim Discount