homepage
Open menu
Offensive_Ops_Digital_Assets_Landing_Page_Header5.jpg

SANS Offensive Operations Training & Certifications

Penetration Testing | Red Team | Purple Team | Exploit Development
Courses & Certifications Resources & Tools
News & UpdatesCoursesFeatured EventCertificationsInstructorsSlingshotSANS.edu ProgramFree ResourcesAbout

Latest Offensive Operations News & Updates

OO_Beta_Course_Page_Graphics4.jpg
Course
SEC598: Security Automation for Offense, Defense, and Cloud - Available For Registration
Learn how to apply automated solutions to prevent, detect, and respond to security incidents. Train to understand the concept of automation, then learn how existing technologies can be best leveraged to build automation stories that translate repeatable problems to automated scripts.
Learn More
OO_Course_OnDemand_Page_Graphics5.jpg OO_Course_OnDemand_Page_Graphics5.jpg
Course
SEC554: Blockchain and Smart Contract Security OnDemand
The newly updated 5-day version of SEC554 covers expanded sections on DeFi and DeFi protocols, an entire day on hacking with Rust, and new Web3 content. OnDemand presale is now open!
Learn More
SEC560_Curriculum_Web_Tiles_OO-Generic-Final.jpg

HUGE Update to SEC560 - Now Covering Azure Attacks

We've updated our flagship pen test course to further address both on-prem and cloud systems, including Azure AD and the modern Windows Domain, all working in an entirely new lab environment targeting real-world systems and software seen in large organizations. Click through to learn more!

Learn More

Featured Offensive Operations Courses & Certifications

Beta
Penetration Testing and Red Teaming
SEC670: Red Teaming Tools - Developing Windows Implants, Shellcode, Command and Control
SEC670 prepares you to create custom-compiled programs specifically for Windows and introduces students to techniques that real nation-state malware authors are currently using. You will learn the essential building blocks for developing custom offensive tools through required programming, APIs...
Course Details
New
Penetration Testing and Red Teaming
SEC565: Red Team Operations and Adversary Emulation
Develop and improve Red Team operations for security controls in SEC565 through adversary emulation, cyber threat intelligence, Red Team tradecraft, and engagement planning. Learn how to execute consistent and repeatable Red Team engagements that are focused on the effectiveness of the people,...
Course Details
Beta
Penetration Testing and Red Teaming
SEC598: Security Automation for Offense, Defense, and Cloud
SEC598: Security Automation for Offense, Defense, and Cloud will equip you with the expertise to apply automated solutions to prevent, detect, and respond to security incidents. Students first train to understand the concept of automation, then learn how existing technologies can be best leveraged...
Course Details
New
Cloud Security, Penetration Testing and Red Teaming
SEC588: Cloud Penetration Testing
SEC588 will equip you with the latest cloud-focused penetration testing techniques and teach you how to assess cloud environments. The course dives into topics like cloud-based microservices, in-memory data stores, serverless functions, Kubernetes meshes, and containers. It also looks at how to...
Certification:

  • GCPN

Course Details
New
Penetration Testing and Red Teaming
SEC661: ARM Exploit Development
SEC661 is designed to break down the complexity of exploit development and the difficulties with analyzing software that runs on IoT devices. Students will learn how to interact with software running in ARM environments and write custom exploits against known IoT vulnerabilities.
Course Details
New
Penetration Testing and Red Teaming
SEC556: IoT Penetration Testing
SEC556 facilitates examining the entire IoT ecosystem, helping you build the vital skills needed to identify, assess, and exploit basic and complex security mechanisms in IoT devices. This course gives you tools and hands-on techniques necessary to evaluate the ever-expanding IoT attack surface.
Course Details
New
Penetration Testing and Red Teaming
SEC554: Blockchain and Smart Contract Security
SEC554 will teach you all topics relevant to securing, hacking, and using blockchain and smart contract technology. The course takes a detailed look at the technology that underpins multiple implementations of blockchain, the cryptography and transactions behind them, the various smart contract...
Course Details
    See All Offensive Operations Courses & Certifications
    2340x500_PenTest-Austin-2023.jpg

    SANS Pen Test Austin 2023

    If you like to break things, put them back together and find out how they work, this event is for you! Join us for: - World-class offensive cyber security training taught by experts - Hands-on workshops and social engagement opportunities - Two nights of Core NetWars including Coin-A-Palooza (In-Person Only) Austin, TX, US and Virtual - CT Mon, Apr 17 - Sat, Apr 22, 2023
    Register Now
    Landing_Page_Cert.jpg

    Offensive Operations Certifications

    GIAC's offensive operations certifications cover critical domains and highly specialized usages, ensuring professionals are well-versed in essential offensive abilities. GIAC certifications prove that you have the knowledge and skills necessary to work across specialized red, purple, and exploit development teams.

    Learn More

    The Most Offensive Faculty on The Planet

    "The SANS family of Instructors bring an incredible amount of worldwide, real-time practical experience into the classroom and have both a passion and a gift for helping students master complex subject matter. They are true leaders in the information security space." – Stephen Sims, Curriculum Lead
    View All Instructors Become an Instructor
    Offensive Operations: Slingshot

    Slingshot Linux Distribution

    Ubuntu-based Linux distribution with the MATE Desktop Environment built for use in the SANS Offensive Operations courses and for the community. Designed to be stable, reliable and lean, Slingshot is built with Vagrant and Ansible, and includes many standard pen testing tools.

    Download Slingshot
    Graduate Certificate Program in Pen Testing & Ethical Hacking

    Graduate Certificate Program in Pen Testing & Ethical Hacking

    Designed for working InfoSec and IT professionals to learn how to conduct vulnerability scanning and exploitation of various systems, provide documentation and reporting of activities performed, produce estimated risk, and provide actionable results for organizations of all sizes. The certificate includes:

    • Highly technical 13-credit-hour program
    • 4 industry-recognized GIAC certifications
    • SANS's in-depth offensive simulation capstone for real-world testing, Jupiter Rockets
    Learn More

    More Free Offensive Operations Resources

    About Offensive Operations

    SANS Offensive Operations leverages the vast experience of our esteemed faculty to produce the most thorough, cutting-edge offensive cyber security training content in the world. Our goal is to continually broaden the scope of our offensive-related course offerings to cover every possible attack vector.

    SANS Offensive Operations Curriculum offers courses spanning topics ranging from introductory penetration testing and hardware hacking, all the way to advanced exploit writing and red teaming, as well as specialized training such as purple teaming, wireless or mobile device security, and more.

    GIAC offensive operations certifications cover critical domains and highly specialized usages, ensuring professionals have the knowledge and skills necessary to work in security roles requiring hands-on experience in specific focus areas like, penetration testing, purple teaming, or exploit development. It's important for organizations and practitioners to have a training provider who covers the attack surface of the entire threat landscape, from authors and instructors who are leaders in those respective areas.