📣"Fuzzing 1001: Introductory white-box fuzzing with AFL++" by Francesco Pollicino is now released!📣. This class covers progressively more features and functionality of AFL++ to teach students how to find real past vulnerabilities.

Got any other examples of companies adding references to OST2 in their hiring? Let us know!.

The job posts here are a good example of how companies are starting to recognize the value of students learning from OST2 and seek self-starter employees who are using our classes to skill up!

Last chance to sign up to learn how to interact with TPMs via Python. Beta classes on OST2 are when the instructors are most active and looking for student feedback. Class starts July 14th and runs for a month. Register here:

🥳We're happy to say that we've passed 29k registered OST2 students! Keep letting people know about our classes via your RTs and word of mouth, and we'll keep finding new future instructors!🎊.

The new "Fuzzing 1001: Introductory white-box fuzzing with AFL++" by Francesco Pollicino was recently released at We've also released updated Learning Paths (LPs) that show how the class fits in to the Vulnerabilities & Secure Development LPs:

Periodic call for volunteers: we've got a deep slate of Bluetooth classes on the horizon, but we need more classes on other wireless protocols. If you'd be interested in teaching a class on WiFi, Zigbee, LoRa, Thread, etc, let us know at teach@ost2.fyi.

📢Call for beta testers!📢.Microsoft mandated the presence of Trusted Platform Modules for new Windows 11 machines. Now's a good time for security experts & hackers to familiarize themselves with what TPMs are, and what they can (and can't) add to the security of a system. You

📢Call for beta testers!📢.The beta for "Trusted Computing 2202: TPM 2.0 Programming using Python and the tpm2-pytss libraries" by William Roberts (maker of the tpm2-pytss library) will start July 14th and run for 1 month. It will take ~8 hours to complete. If you're interested.

This class dovetails nicely with the "Secure Development / Vulnerabilities 1001: C-Family Software Implementation Vulnerabilities" class (, which introduces fuzzing as a necessary tool in both the developer and vuln hunter's toolbox, but which left more.

Periodic call for volunteers: we'd love to see more enterprise-relevant topics. Things like red/blue/purple teaming companies, managing servers and endpoints, EDR log analysis, incident planning and response, etc. If you're interested in contributing, let us know at.

The "Fuzzing 1001: Introductory white-box fuzzing with AFL++" class by Francesco Pollicino has been finalized, and will be publicly released in 2 weeks (June 30th).

Has OST1 or #OST2 helped your career? If so, drop us a line here to let us know how!

RT @jeppojeps: Thanks y'all for our last live session.In 2 weeks hosting a final session for the @OpenSecTraining E….

The "Debuggers 1103: Introductory Binary Ninja" beta class begins June 9th. Sign up by end of day at to join the class and learn how to use @vector35's Binja, not just for static analysis, but for debugging and learning assembly!.

RT @vector35: Xusheng put together a super practical intro that gets you using Binary Ninja alongside a debugger right away! You won't want….

📢Call for beta testers!📢."Debuggers 1103: Introductory Binary Ninja" by Xusheng Li of @Vector35 (makers of Binary Ninja) will start June 9th, and run for 3 weeks. It is a mini-class and is expected to take 4 or less hours to complete. It will integrate with the assembly classes.

Some people assume that because OST releases material for free, that it's not high quality. We need to show them that's not the case, by highlighting how it has helped real engineers. If #OST2 has helped your career, please tell us how, here:.