Offensive Security - CTP Retired, NEW OSCE, 2 New courses

I missed the news last week on this one. But here it is.
You will require all 3 courses to obtain OSCE, a new, updated OSCE certification will be created (with a revised certification name).

In summary:
- October 15, 2020 will be the last day students may register for CTP.
- Students who hold an OSCE will continue to be OSCEs – we are not taking away your certification or requiring you to recertify.
- Two new courses will be released over the end of 2020 and the beginning of 2021, each with their own certifications.
- These two certs, plus the OSWE certification gained from Advanced Web Attacks and Exploitation, will comprise a new, updated OSCE certification.
Following that release, we started focusing on the remaining two areas:
- A new course that focuses exclusively on Windows userland exploit development
- A second new course that focuses on more advanced and modern pentesting techniques that cover AV avoidance, lateral movements, and so on
You will require all 3 courses to obtain OSCE, a new, updated OSCE certification will be created (with a revised certification name).

Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
2023 Cert Goals: SC-100, eCPTX
2023 Cert Goals: SC-100, eCPTX
Comments
Security+, eJPT, CySA+, PenTest+,
Cisco CyberOps, GCIH, VHL,
In progress: OSCP
@yoba222 - True, I don't see any enforced pre-reqs. However I am sure they will recommend anyone to have OSCP skill level as a pre-req.
I will be looking at the advanced pentester course and the exploit course for 2021. Then OSWE for 2022.
2023 Cert Goals: SC-100, eCPTX
Security+, eJPT, CySA+, PenTest+,
Cisco CyberOps, GCIH, VHL,
In progress: OSCP
@yoba222 , It all depends on your goals. Are you doing nothing but offensive job duties? then your offsec cert journey is a great one. Do you primarily do blue team? then elearnsecurity is the better choice. I can tell you the IHRP and the THPv2 courses are very well done. The THPv2 I am just finishing up and it was an amazing course! Those two courses alone have done more for my BlueTeam skill-set/career than ecppt or oscp.
In any case, the red team courses will always help you out if you are a blue teamer.
Also to add here, we are yet to see the syllabus for offsec's red team course, in order to compare it to ptxv2/pentester academy/Rasta/etc. eLearn's PTX still may be a better course....you never know.
2023 Cert Goals: SC-100, eCPTX
Security+, eJPT, CySA+, PenTest+,
Cisco CyberOps, GCIH, VHL,
In progress: OSCP
Having said all that, I am tempted to purchase the existing CTP course to lock myself into the single course route. But then again I feel that the new courses will be so much more improved like how they did PWK.
Also, @chrisone damn man, you're killing it this year. On an absolute tear through those certs. Much props. I've been on the struggle bus. Covid crap and the kids being home since March, plus learning new job, it's been hard. I've only done the OCI Foundations cert this year
Currently Working On: Python, OSCP Prep
Next Up: OSCP
Studying: Code Academy (Python), Bash Scripting, Virtual Hacking Lab Coursework
Man I totally get it with COVID and kids being home. I know its hard. I dont have kids yet but I am recently married and we plan on starting to have kids end of 2021.
I had a very productive year, filled with wins and losses. Pretty much been an everyday study for certs. I am getting tired don't get me wrong. I am also targeting 2021 to be my last year for certs. I plan to do the offsec "evasion and breaching defenses" (by Feb) and the "user mode exploit" course by (Summer) for 2021. I should have time to start OSWE around August/September 2021. Most likely I wont be able to finish the last cert until first quarter of 2022 which is ok. I see myself spending 5-6 months on each the user mode exploit & OSWE certs respectively. But I think I am calling it quits after I get that new OSCE.
After 2 years of a break, I may look at only 1 cert, a CISSP-ISSAP , SABSA, or some ISACA cert sometime in 2024 just for a more seniority look to my resume. I may be looking at more of an Architect role around that time. But I may just stick with my cert retirement after getting the new OSCE lol
PS. Impostor Syndrome is a serious thing lol
2023 Cert Goals: SC-100, eCPTX
Evasion Techniques and Breaching Defenses (PEN-300) is an advanced penetration testing course. It builds on the knowledge and techniques taught in Penetration Testing with Kali Linux, teaching students to perform advanced penetration tests against mature organizations with an established security function.
As a general rule, it will not specifically deal with the act of evading a blue team but rather focus on bypassing security mechanisms that are designed to block attacks.
Students will learn how to:
https://www.offensive-security.com/documentation/PEN300-Syllabus.pdf
- Operating System and Programming Theory
- Client Side Code Execution With Office
- Client Side Code Execution With Jscript
- Process Injection and Migration
- Introduction to Antivirus Evasion
- Advanced Antivirus Evasion
- Application Whitelisting
- Bypassing Network Filters
- Linux Post-Exploitation
- Kiosk Breakouts
- Windows Credentials
- Windows Lateral Movement
- Linux Lateral Movement
- Microsoft SQL Attacks
- Active Directory Exploitation
It looks like a very solid course with evasion and red team engagement. Price is not bad.My first initial thoughts, I feel impressed and if I had the money I would take it in 2021. I don't have any monies right now, still finishing THPv2 and PTXv2. Looking to do some heavy Azure & O365 skill development in 2021 as well. I like the course a lot I just don't really do much red teaming for my day to day. It will be really tough to get this course into my schedule for 2021. Time will tell and schedules always change.
Edit: Looks like Offsec leaked the next course on twitter.
"Windows Usermode Exploit Development (EXP-301) is coming in early 2021. That's all we can share for now." OSED
2023 Cert Goals: SC-100, eCPTX