Understanding the Offensive
Development Practitioner Certification
(ODPC) - On-Demand
White Knight Labs proudly presents the Offensive Development Practitioner Certification (ODPC), an intermediate-level, on-demand course meticulously crafted for cybersecurity professionals looking to elevate their offensive security skills. This course is not for beginners and is designed for those who want to dive deep into the complex methodologies of offensive development.
This on-demand version allows you to learn at your own pace, with continuous access to labs and instructional materials that never expire. Our course content is dynamically updated to incorporate the latest research and techniques, ensuring that you remain at the cutting edge of offensive cybersecurity.
Course Syllabus
- Terraform Lab Deployment in students’ AWS environments
- Guacamole Walkthrough
- Portable Executable Primer
- Windows API Primer
- Converting PE Files to Shellcode (Donut, Windows-Only Tools)
- Process Injection: CreateRemoteThread
- Shellcode Storage (text section)
- Shellcode Storage (resources section)
- Process Injection: Process Hollowing
- Process Injection: Early Bird
- Process Injection: MockingJay
- Windows API Direct Syscalls
- Windows API Indirect Syscalls
- Hiding Imports via Dynamic Resolution
- XOR Encrypting API Function Calls
- Introduction to Cobalt Strike
- Cobalt Strike C2 Deep Dive (Profiles and BOFs)
- Defeating Sandbox Detection
- Identifying an EDR’s Active Protection
- DLL Proxying for Persistence
- API Unhooking
- AMSI Primer & AMSI Bypass
- ETW Primer & Process Injection: Caro-Kann
- Custom Reflective DLL Loaders
- App Domain Injection
- ClickOnce Payload Development
Prerequisites
This course requires a solid foundation in key areas to ensure students are prepared to engage with the advanced content. Participants must meet the following prerequisites:
- Programming Background: Proficiency in C, C++, or C# is essential for understanding the complex code structures discussed in the course.
- Understanding of C2 Frameworks: Familiarity with how Command and Control (C2) frameworks operate.
- Basic Process Injection Techniques: Knowledge of basic process injection techniques.
- Shellcode Usage: Experience using shellcode in offensive operations.
- Payload Development Experience: Prior experience in developing payloads or creating initial footholds on target endpoints.
- Desire to Learn: Motivation to engage with complex subject matter and overcome challenges.
- Aspiration to Bypass Security Measures: A keen interest in techniques to bypass AV and EDR systems
Participants meeting these prerequisites will be well-prepared to tackle the challenges presented by the Offensive Development Practitioner Certification course.
What You’ll Learn
By enrolling in the Offensive Development Practitioner Certification (ODPC), you’ll gain:
- Understanding Modern Defenses: Dissect and overcome modern defense mechanisms. You’ll gain hands-on experience in Terraform lab deployments, Portable Executable (PE) file conversion, process injection strategies, and dynamic resolution techniques.
- Advanced Offensive Techniques and Cobalt Strike: Develop advanced offensive strategies with a special focus on the Cobalt Strike Command and Control (C2) framework. Learn about C2 profiles, sandbox evasion, EDR detection, and DLL proxying for persistence.
- Custom Payload Development: Build custom reflective DLL loaders, bypass AMSI and ETW protections, and create tailored offensive payloads.
- Shellcode Usage: Experience using shellcode in offensive operations.
- Payload Development Experience: Prior experience in developing payloads or creating initial footholds on target endpoints.
- Desire to Learn: Motivation to engage with complex subject matter and overcome challenges.
- Aspiration to Bypass Security Measures: A keen interest in techniques to bypass AV and EDR systems
Participants meeting these prerequisites will be well-prepared to tackle the challenges presented by the Offensive Development Practitioner Certification course.
Who Should Enroll
This course is ideal for:
- Penetration Testers, Red Teamers, and Blue Teamers: Looking to advance their malware development skills.
- Cybersecurity Professionals: Aiming to effectively deploy offensive security tools in complex scenarios.
- Security Analysts and Researchers: Interested in deepening their understanding of offensive development methodologies
Course Takeaways
By the end of this course, you’ll have:
- A comprehensive understanding of modern cybersecurity defenses and how to navigate them.
- Advanced skills in offensive techniques, Cobalt Strike usage, and payload development.
- Knowledge of the latest research and updates in offensive cybersecurity methodologies.
- Hands-on experience with dynamically updated labs in AWS, Cobalt Strike, and custom payload development strategies.
Dynamic Attack Paths and Labs
In the Offensive Development Practitioner Certification (ODPC) – On-Demand, you will engage in practical, self-paced lab environments that simulate real-world offensive operations. The course includes a dynamic lab setup involving multiple EDR hosts, a Windows development server, and a Linux attack server.
Lab Setup Overview
The first lab diagram represents the structure of the attack simulation, including:
- Cobalt Strike C2 Server: The main command and control server, where you’ll conduct red team activities.
- Windows Development Server: This server serves as your primary environment for developing and testing offensive payloads.
- Linux Attack Server: Used for launching attacks and managing offensive operations.
- Multiple EDR-Protected Hosts: You’ll attempt to bypass next-generation EDR systems to deliver your payloads and maintain persistence.
This realistic lab setup allows you to test advanced techniques like process injection, API unhooking, and AMSI/ETW bypass strategies, all while avoiding detection by EDR systems.
Cost and Discounts
The Offensive Development Practitioner Certification (ODPC) – On-Demand is priced at $500. This fee includes access to expert-created instructional materials, unlimited access to self-managed labs, and one exam voucher.
Additional Costs
- Compute Costs: Students are responsible for the AWS compute costs associated with running their lab environment.
Discounts Available
We offer a 20% discount to the following groups:
- Veterans and Active Military Personnel: Honoring those who have served or are currently serving.
- Students: Supporting the next generation of cybersecurity professionals.
- Educators: Recognizing the vital role of teachers in fostering cybersecurity knowledge.
- First Responders: Acknowledging the efforts of those who serve on the front lines in emergencies.
To take advantage of the discount, please email training-team@whiteknightlabs.com with proof of eligibility, and we’ll provide you with a custom discount code.
Register Now to take advantage of our special pricing and begin your journey toward mastering Azure security!
Frequently Asked Questions (FAQs)
The on-demand course is self-paced, allowing you to take as long as you need to complete the training. There are no deadlines, so you can learn at your own pace.
Participants should have a solid understanding of programming (C, C++, or C#), C2 frameworks, process injection, shellcode, and experience with payload development.
Yes, participants must have an AWS account for lab deployment.
Yes, all participants will receive comprehensive course materials, including instructional videos, step-by-step lab walkthroughs, code snippets, and Terraform scripts for cloud infrastructure deployment.
This on-demand training is self-paced, so you’ll be guided by pre-recorded video lessons and detailed documentation. You can also revisit the materials anytime if you need additional clarification or practice.
You will have 48 hours to complete the hands-on lab portion of the exam, followed by another 48 hours to prepare and submit your professional report.
The certification exam is a hands-on, practical test where you will be required to demonstrate your skills in bypassing EDR systems and deploying offensive techniques.
Yes, an exam voucher is included with your course registration, allowing you to schedule your certification exam at your convenience.
No, the exam voucher does not expire, allowing you to take the exam at your convenience whenever you feel ready.
Register Now for the On-Demand Training
Start at your own pace and take as long as you need to complete the course and labs. Secure your seat now and receive additional details by email once you complete the registration.
