Training Courses
Providing high-quality, impactful training is at the core of ogSec's mission. We're not interested in creating training that merely lists vulnerability classes to exploit or misconfigurations to learn. Instead, we aim to share over a decade of penetration testing and consultancy experience to help individuals tackle complex and challenging engagements.
Our courses are designed to teach the approach, the mindset, consultancy skills, communication, organisational strategies, and preparation needed to excel in delivering assessments. Where we do delve into technical topics, they are presented in a way that equips you with practical tools and methodologies, enabling you to confidently hit the ground running on complex assessments.
Code Review & Architecture Fundamentals
This series of courses is designed to equip security professionals with solid approaches, methodologies, and technical skills to conduct thorough code and architecture reviews of modern web applications.
The initial courses in this series cover essential assessment preparation activities and demonstrate how threat modelling can be used to focus engagements, ensuring critical attack scenarios are tested and important functional areas are reviewed for vulnerabilities and misconfigurations.
Over the coming months, we'll be releasing additional courses in this series that delve into performing code and architecture assessments from a technical perspective—covering how to navigate real-world, complex environments and solutions, large codebases, and how to communicate your findings clearly to clients.
For more information on the courses available in this series, as well as other courses we offer, please follow the link below.
The Art of Report Writing
Our maiden course - this is a comprehensive programme that covers the entire reporting process from start to finish. It guides you through every stage, from assessment kick-off and effective report writing to final remediation verification and re-testing.
This course is designed to significantly elevate your client communication and report writing skills. By the end, you’ll have the confidence to produce reports with clarity and impact, making your work truly valuable to clients. You'll also set yourself apart from peers in terms of report quality and professional execution.
Our approach fast-tracks these essential skills, guiding you through the entire assessment journey—from defining scope to producing comprehensive reports that communicate risks and remediation steps clearly, minimising follow-up questions. Based on proven feedback that has helped many team members progress from average to outstanding report writers, this course equips you with the skills to thrive in today’s cybersecurity landscape.
For a detailed course overview and curriculum breakdown, visit the Zero-Point Security training site below.
Latest blog post - Code Review & Architecture Fundamentals - Initial Release & More
Lots of news below! ogSec is thrilled to announce the release of our first batch of courses in the Code Review & Architecture Fundamentals series! Drawing on years of experience in reviewing complex web applications and SaaS solutions, this series is crafted for individuals looking to elevate their skills in app security testing and code review. Our initial set of courses provides the essential groundwork for preparing and conducting effective assessments.
Read MoreogSec is in start-up mode!
Throughout 2024/2025, we will be developing a series of cyber security courses designed to offer substantial depth and quality. These courses are intended not only to cover common tasks of a penetration tester but also to address how to handle challenging assessments. Our aim extends beyond simply teaching how to identify specific vulnerabilities; we are committed to providing actionable guidance that prepares you for the real-world scenarios you will encounter while testing clients.
We also have a range of useful tools and interesting research ideas in the pipeline — stay tuned for updates!