Dragon Drop — your shortcut to new OffSec content.
New content lands in the OffSec Learning Library every week — 7,800+ hours of text, 5,400+ labs and 1,600+ videos. Dragon Drop is our monthly live format: we curate what matters, comment sharply, and practise it with you live. No passive watching — active co-learning.
Dragon Drop is on a summer break. From end of September we're back with monthly live sessions. Stay tuned — join our newsletter so you don't miss the first date.
Always up to date — hands-on, not theory.
We show you what really matters from the OffSec library — beyond exam-relevant content: cloud pentesting, ABAC, IMDSv2, ADCS, current CVEs.
Short, interactive mini-webinar with direct application. Not passive viewing — active co-learning with trainer feedback.
Priority for Exploit Labs customers. Individual sessions are opened to everyone — the ideal entry point to meet our trainer team and community.
This is what OffSec Learn Enterprise feels like day to day.
Learn Enterprise is OffSec's team license: full access to every course (OSCP, OSEP, OSWE, OSDA, OSED …), labs, and exam tracks — plus SOC 2-compliant team management. Dragon Drop makes visible what you receive with it each month: new course modules, current CVEs, cloud and AD attack paths — curated and practised.
For teams, Dragon Drop is doubly useful: as a free trial run before a Learn Enterprise rollout — and as a monthly cadence that keeps your analysts and pentesters continuously plugged into new OffSec content.
What we covered in past sessions.
OSCP+ with stronger AD focus: 24 h exam + 24 h reporting. Enumeration, exploitation, and AD attack paths — tips straight from exam experience.
NTLM vs. Kerberos, password spraying, AS-REP roasting, Kerberoasting, cached credentials, Credential Guard — including assumed-breach scenarios.
Full-chain red-team exercise against a fictional energy provider: IT-to-OT lateral movement all the way to a SCADA-driven turbine shutdown.
Apache Camel header bypass (CVE-2025-27636) and CraftCMS RCE (CVE-2025-32432) — foothold, privesc via sloppy sudo permissions, end to end.
Cloud assessment of a hospital web stack — DNS recon, app-auth bypass, PHI access. Ideal OSCP extra-mile plus cloud on-ramp.
Deeper AD attack paths: enumeration, lateral movement, credential abuse, and modern persistence techniques — compact and hands-on.
Server-Side Request Forgery in practice: identification, exploitation, bypass techniques, and impact amplification in real-world web stacks.
Arbitrary file write via AnythingLLM's upload function. Path traversal lets the attacker overwrite /root/.ssh/authorized_keys — SSH access as root, privilege escalation, and persistent remote access.
Authenticated access to the Voyager admin panel. The Compass download handler allows base64-encoded arbitrary file reads — grab SSH keys and escalate to root via SSH.
13-year-old use-after-free in redis-server's Lua parser. Authenticated attacker forces GC while dangling references remain → RCE.
Dragon Drop — FAQ
A live-moderated monthly mini-training (2–3 hours) on new content from the OffSec Learning Library — OSCP, OSEP, OSWE and cross-cutting topics like cloud pentesting or Active Directory. Short, hands-on, no marketing filler.
An active OffSec subscription (Learn One, Learn Enterprise or Course + Cert Bundle). Priority goes to customers who bought their license through Exploit Labs. We open individual sessions to everyone — stay tuned via our newsletter.
Typically at least once per month, outside the summer break. When OffSec ships particularly interesting new content, we add extra sessions.
It depends on the drop: sometimes concrete courses (OSCP, OSEP, OSWE), sometimes cross-cutting topics like cloud pentesting, ADCS abuse, current CVEs, or cyber ranges.
Dragon Drop is the best way to get a real feel — with no commitment — for what Learn Enterprise teams receive in new content each month: curated, commented, and practised together live.
Sign up — we'll reach out with the first date after the summer break.