Offensive Development and Tradecraft

Offensive Development and Tradecraft is a course crafted for people who want to take their skills to the next level. In this course you will learn to do your own research craft advanced payloads.

Get Lifetime Access now for $529.99

Course curriculum

1. 01 - Introduction
2. 02 - Changelog
3. 03 - Learning Resources
4. 04 - Archive Passwords
1. 01 -Download ISO and VM
2. 02 - Install Windows VM
3. 03 - Install Kali Linux
4. 04 - Install Tools on Windows VM
5. 05 - Installing Tools on Kali VM
6. 06 - Setting up Shares
7. 07 - Elastic EDR Setup on Kali VM
8. 08-Havoc Installation on Kali VM
9. 09 - Ready made VM Download Links
1. 00 - Introduction
2. 01 - Compile First Exe file
3. Makefile Explained
4. 02 - Compile First Dll File
5. 03 - Write Code on Kali Linux VM
6. 04 - Finding Main Code from X64Dbg and IDA Pro
7. 05 - Debug GetHostName In X64Dbg
8. 06 - Debug Welcome Dll in X64Dbg
9. 07 - Code Review Apps in IDA Pro
10. 08 - LoadDll Code Review and Debugging
1. 00 - Intro
2. 01 - PrintMe
3. 02 - ChangeMe
4. 03 - Arithmetic Operations
5. 04 - If than else statements in C
6. 05 - While Loops and Switch Statements
7. 06 - Arrays And Pointers
8. 07 - Strings
1. 01 - Intro to PE File, Processes, Threads and Fibers
2. 02 - Processes
3. 03 - Threads
4. 04 - Fibers
1. 01 - Assembly Language Introduction
1. 01 - X64Dbg UI Overview
2. 02 - X64Dbg - Menu Options
3. 03 - Debugging in X64Dbg
1. 01 - IDA Pro Introduction
2. 02 - IDA Pro Workflows - Part 1
3. 03 - IDA Pro Workflows - Part 2
4. 04 - Using IDA Pro to Migrate Calls from Kernel32 Api to NtApi
1. To be Released.
1. 01 - Basic Payload Execution
2. 02 - Debug Basic Payload Execution
3. 03 - Payload In Text Section - 1
4. 04 - Payload in Text Section - 2
5. 05 - Payload in New Section
6. 06 - Payload in Resource Section
7. 07 - Payload Stored at Remote Location
1. Project to embed a payload in Image and load it from a remote location.
1. Free Preview : Discovering the source of the detection
  FREE PREVIEW
2. Getting into the weeds of shellcode manipulation
3. Manipulating the shellcode to fully bypass the detections
1. 00 - Intro
2. 01 - How is Import Address Table Generated
3. 02A - Removing the C Runtime Initialization Code
4. 02B - Debugging the exe after removing the C Runtime Init code
5. 03 - Api Hashing Intro
6. 04 - Generating Hashes Via Python
7. 05 - Custom GetProcessAddress Via ApiHashing
8. 06 - Compiler Optimisation problems during IAT Removal
9. 07 - Custom GetModuleHandle
1. 00 - Introduction
2. 01 - Hash based detection
3. 02 - Yara Rules
4. 03 - IOA(Indicators of Attack)
5. 04 - Introduction to Machine Learning
6. 04 - 01 - Introduction to ML Bypass
7. 04 - 02 - MLBypass Havoc - Initial Attempt
8. 04 - 03 - Moving Havoc Beacon to an alternate location
9. 04 - 04 - Debugging the new approach
10. 04 - 05 - Final Changes to complete ML Bypass
1. 01 - Base64 Encoding
2. 02 - Xor
3. 03 - Rc4
4. 04 - AES
5. 05 - ShikataGaNai
1. 00 - Api Hooking Intro
2. 01 - ApiHooking-Detours
3. 02 - DetoursYara
4. 03 - Minhooks
5. 04 - InlineHooking
1. To be Released
1. 01 - DllInjection
2. 02 - LocalModuleStomping - 1
3. 03 - LocalModuleStomping - 2
4. 04 - MapViewInjection
5. 05A - RemoteModuleStomping
6. 05B - RemoteModuleStomping
7. 07- Threadless Inject - Part 1
8. 08 - Threadless Inject - Part 2
1. 00 - Syscall Intro
2. 01 - Extract SSN Details
3. 02 - Executing Payload Via NTApi
4. 03 - Executing Payload Via Syswhispers3
5. 04 - HellsGate
6. 05 - HellFireLounge
1. 01 - Tasklist Dll Code
2. 02 - Reflective Dll Injection - Intro
3. 03 - Reflective Dll Injection Repo
4. 04 - Reflective Dll Loader Code Review
5. 05 - ReflectiveLoaderCodeReview
6. 06 - Convert Any dll Code to Reflective Dll
7. 07 - Covert Tasklistdll to Reflective Dll
8. 08-Build Reflective Loader
1. 01 - PIC
2. 02 - Pic Troubleshooting
3. 03 - PIC Automation
1. 00 - Introduction
2. 01 - Build Payload
3. 02 - Build PIC Executable
4. 03 - Extract PIC from Executable
5. 04 - BuildModuleStomper Section
6. 05 - Debugging Final Executable
7. 06 - Review Changes to bypass EDR
1. 01 - Phoenix Introduction

About this course

$529.99
118 lessons
12 hours of video content

Learn advanced skills in Offensive Development.

For Example: How to bypass Yara Rules/ML Detections. How to craft your own Position Independent Code, using Indirect Syscalls, Reflective Dll Injection and Module Stomping. Learn the skills to test your organisations security boundaries.

Unlock Lifetime Access for $529.99

FAQ

What kind of learning resources are available ?

The course material contains details explanations in Videos and Text based format. We will also provide access to Discord and for the first time we are going to provide access to special Notion Template to help with tracking progress, keeping notes etc.
Why take this course ?

This course is ideal for cybersecurity professionals seeking to advance their skills in offensive development, including penetration testers, red teamers, blue teamers, security analysts, and researchers. Whether you're a penetration tester, red teamer, blue teamer, or security analyst, mastering offensive cybersecurity techniques opens doors to new career opportunities. Employers value professionals who can think strategically and understand both offensive and defensive tactics.
Who this course is for ?

This course is ideal for cybersecurity professionals seeking to advance their skills in offensive development, including penetration testers, red teamers, blue teamers, security analysts, and researchers.
Is the Course updated regularly?

Yes the course will be updated every month with new and advanced materials.
Does this course expire ?

No, the course does not expire. You will have life time access.

About me

Ahmed Kasmani

Course Instructor

[email protected]

Hi! I am Ahmed! I am currently working as Research Lead in Fortune 500 Company, where I reverse engineer malware and perform security research to understand attacker behavior. I have worked in Microsoft and CrowdStrike in Security Research, Security Engineering and Managed Detection and Response team. I have been working in Cyber Security industry for more than 15 years. I am passionate about making Cyber Security accessible to everyone. Through my course/s, my YouTube channel and social media I share what I am working on, support people in this wonderful field. I have spent a significant portion of my career on the front line. During this time, I have had the opportunity to work on major cybersecurity incidents, including WannaCry, NotPetya, Solar Winds, Proxy Shell, and others. Additionally, I have successfully protected numerous clients from major ransomware attacks. I am always happy to share my knowledge through social media, my YouTube channel and I have lately started working on accessible Cyber Security Courses. I understand that most of the courses out there are expensive, which is why this academy is solely focused on creating comprehensive courses which are affordable for our students.