Monthly OffSec Mini-Training

Dragon Drop — your shortcut to new OffSec content.

New content lands in the OffSec Learning Library every week — 7,800+ hours of text, 5,400+ labs and 1,600+ videos. Dragon Drop is our monthly live format: we curate what matters, comment sharply, and practise it with you live. No passive watching — active co-learning.

Status · Summer break
The dragon is hibernating — back end of September.

Dragon Drop is on a summer break. From end of September we're back with monthly live sessions. Stay tuned — join our newsletter so you don't miss the first date.

Why Dragon Drop?

Always up to date — hands-on, not theory.

Curated content

We show you what really matters from the OffSec library — beyond exam-relevant content: cloud pentesting, ABAC, IMDSv2, ADCS, current CVEs.

Hands-on, not theory

Short, interactive mini-webinar with direct application. Not passive viewing — active co-learning with trainer feedback.

Community access

Priority for Exploit Labs customers. Individual sessions are opened to everyone — the ideal entry point to meet our trainer team and community.

A glimpse of Learn Enterprise

This is what OffSec Learn Enterprise feels like day to day.

Learn Enterprise is OffSec's team license: full access to every course (OSCP, OSEP, OSWE, OSDA, OSED …), labs, and exam tracks — plus SOC 2-compliant team management. Dragon Drop makes visible what you receive with it each month: new course modules, current CVEs, cloud and AD attack paths — curated and practised.

For teams, Dragon Drop is doubly useful: as a free trial run before a Learn Enterprise rollout — and as a monthly cadence that keeps your analysts and pentesters continuously plugged into new OffSec content.

Past drops

What we covered in past sessions.

February 2026
Hacktrack: OSCP+ Exam Preparation

OSCP+ with stronger AD focus: 24 h exam + 24 h reporting. Enumeration, exploitation, and AD attack paths — tips straight from exam experience.

January 2026
Hacktrack: Attacking AD Authentication

NTLM vs. Kerberos, password spraying, AS-REP roasting, Kerberoasting, cached credentials, Credential Guard — including assumed-breach scenarios.

December 2025
DynamoDam — Red Team OT/IT

Full-chain red-team exercise against a fictional energy provider: IT-to-OT lateral movement all the way to a SCADA-driven turbine shutdown.

September 2025
PEN-200 · CraftStorm & CVE-2025-27636

Apache Camel header bypass (CVE-2025-27636) and CraftCMS RCE (CVE-2025-32432) — foothold, privesc via sloppy sudo permissions, end to end.

August 2025
PEN-200 · Offensive Cloud Lab (St Hubbins Hospital)

Cloud assessment of a hospital web stack — DNS recon, app-auth bypass, PHI access. Ideal OSCP extra-mile plus cloud on-ramp.

June 2025
Another Dive into Active Directory Attacks

Deeper AD attack paths: enumeration, lateral movement, credential abuse, and modern persistence techniques — compact and hands-on.

May 2025
SSRF Web Attacks Hands-on

Server-Side Request Forgery in practice: identification, exploitation, bypass techniques, and impact amplification in real-world web stacks.

April 2025
Lab XP · CVE-2024-13059 (AnythingLLM)

Arbitrary file write via AnythingLLM's upload function. Path traversal lets the attacker overwrite /root/.ssh/authorized_keys — SSH access as root, privilege escalation, and persistent remote access.

March 2025
CVE-2024-55415 (Voyager v1.7.0)

Authenticated access to the Voyager admin panel. The Compass download handler allows base64-encoded arbitrary file reads — grab SSH keys and escalate to root via SSH.

February 2025
CVE-2025-49844 · Redis Lua UAF

13-year-old use-after-free in redis-server's Lua parser. Authenticated attacker forces GC while dangling references remain → RCE.

Frequently asked

Dragon Drop — FAQ

What is Dragon Drop?

A live-moderated monthly mini-training (2–3 hours) on new content from the OffSec Learning Library — OSCP, OSEP, OSWE and cross-cutting topics like cloud pentesting or Active Directory. Short, hands-on, no marketing filler.

What do I need to join?

An active OffSec subscription (Learn One, Learn Enterprise or Course + Cert Bundle). Priority goes to customers who bought their license through Exploit Labs. We open individual sessions to everyone — stay tuned via our newsletter.

How often does Dragon Drop run?

Typically at least once per month, outside the summer break. When OffSec ships particularly interesting new content, we add extra sessions.

Which courses does Dragon Drop cover?

It depends on the drop: sometimes concrete courses (OSCP, OSEP, OSWE), sometimes cross-cutting topics like cloud pentesting, ADCS abuse, current CVEs, or cyber ranges.

How does Dragon Drop relate to Learn Enterprise?

Dragon Drop is the best way to get a real feel — with no commitment — for what Learn Enterprise teams receive in new content each month: curated, commented, and practised together live.

Don't miss it when the dragon wakes up.

Sign up — we'll reach out with the first date after the summer break.

Notify me