Here, you'll find answers to frequently asked questions regarding OffSec's Advanced Windows Exploitation (EXP-401) live course which is designed to deepen your understanding of Windows exploitation techniques and tactics. Whether you're considering enrollment or already registered, this resource aims to provide clarity on various aspects of the course, including prerequisites, exam and certification, and support.
- Overview of EXP-401
- EXP-401 Training: Schedules, Venues, In-House Options, and Registration
- EXP-401 Exam and Certification
- Additional Resources and Support
Overview of EXP-401
What is Advanced Windows Exploitation (EXP-401)?
Advanced Windows Exploitation (EXP-401) is the most challenging course offered by OffSec which focuses on developing modern exploits for Windows-based platforms. It involves creating creative solutions to bypass Microsoft's defenses in today's complex exploitation environment.
What are the case studies like in EXP-401?
The case studies in EXP-401 revolve around large, well-known applications commonly found in enterprise networks. These case studies delve deep into various topics, including security mitigation bypass techniques, complex heap manipulations, and 64-bit kernel exploitation.
Is EXP-401 suitable for beginners?
No, EXP-401 is specifically designed to be taught in an in-person, hands-on environment due to its demanding nature and the need for extensive learner-instructor interaction.
What are the prerequisites for taking EXP-401?
Learners should have experience in developing Windows exploits and be proficient in operating a debugger. Familiarity with tools such as WinDBG, x86_64 assembly, IDA Pro, and basic C/C++ programming is highly recommended. A strong willingness to work and dedicate real effort will greatly aid in success in this security training course.
What are the computer lab requirements for EXP-401?
To fully participate in EXP-401, it's essential to have a serious laptop meeting the following specifications:
- Able to run three VMs simultaneously with ease.
- Operating system: Windows 10 (the only supported host OS).
- Hardware requirements:
- VMware Workstation 15 or higher.
- 64-bit CPU with a minimum of 4 cores, supporting NX, SMEP, VT-d/IOMMU, and VT-x/EPT.
- Minimum 160 GB of free hard disk space.
- At least 16 GB of RAM.
- Please refrain from bringing netbooks or low-resolution systems.
Does EXP-401 course includes online content?
No, the EXP-401 course does not include online content. It is specifically designed to be conducted in an in-person, hands-on environment to ensure optimal learning and interaction with instructors and fellow learners.
EXP-401 Training: Schedules, Venues, In-House Options, and Registration
What are the scheduled EXP-401 trainings and where are the venues?
Scheduled EXP-401 trainings are offered periodically throughout the year at various venues. To view the current schedule and venues for EXP-401, please visit this page.
Can OffSec bring EXP-401 to our organization for in-house training?
Yes, OffSec offers In-House Training options where EXP-401 can be brought to your organization. Please reach out to our training consultants for more details on arranging in-house training.
How can I register for the EXP-401 course?
To register for the EXP-401 course, you can visit https://www.offsec.com/training-and-events/. From there, you'll find the details on course availability and upcoming training dates along with the registration links and/or instructions.
Where can I found the exact location of the venue?
Once you have registered for the course, the precise location of the venue will be communicated to you via email, along with recommended reading materials, ideally few weeks prior to the scheduled training.
EXP-401 Exam and Certification
What is the virtual lab environment like for EXP-401 exam?
The virtual lab environment for EXP-401 exam contains a limited number of target systems with specific, unknown vulnerabilities. Students have 72 hours to develop and document exploits. A stable, high-speed internet connection is required for the exam.
What is required for the exam in EXP-401?
In addition to developing and documenting exploits within the virtual lab environment, students must also submit a comprehensive penetration test report. This report should include in-depth notes and screenshots detailing the steps taken and the exploit methods used during the exam.
What certification can I earn upon completing EXP-401?
Students who successfully complete EXP-401 and pass the exam will earn the Offensive Security Exploitation Expert (OSEE) certification. The OSEE exam evaluates not only the course content but also the ability to think laterally and adapt to new challenges.
If I fail on my first OSEE certification exam attempt, how can I purchase an exam retake?
Should a retake be necessary, simply submit a request, and our dedicated support team will be happy to assist you on how to purchase an exam retake.
What real-world skills can OSEE certification holders bring to the table?
Offensive Security Exploitation Experts (OSEEs) possess the ability to analyze vulnerable software, identify problematic code, and develop functioning exploits for various modern Windows operating systems. This skill set is highly valuable in the field of cybersecurity and penetration testing.
Additional Resources and Support
For relevant information about EXP-401, kindly refer to the following articles:
- EXP-401: Advanced Windows Exploitation OSEE Exam Guide
- How can I obtain (ISC)² CPE credits and/or a course completion letter for my course?
- Where can I find the syllabus for each of the courses provided by OffSec?
Still have questions?
Feel free to reach out by submitting a request, and our dedicated support team will be happy to assist you.