Offensive Security

Creators of OSCP, Kali Linux, and Exploit-DB, offering elite penetration testing services from the team that trains the world's ethical hackers.

Headquarters

New York, New York, United States

Founded

2007

Team Size

201-500

Geography

Global

Markets

Global, North America

Last verified: Feb 2026

Review Offensive Security Write a Review

About

Offensive Security, now operating as OffSec, is a cybersecurity training and penetration testing company headquartered in New York City, best known as the creators of the OSCP certification, Kali Linux, and the Exploit Database. Founded in 2007, Offensive Security has shaped the penetration testing industry more than perhaps any other company through their training programs and tools that have become the de facto standards for aspiring and practicing penetration testers worldwide.

Beyond training, OffSec provides professional penetration testing services leveraging their team of instructors and practitioners who are among the most skilled offensive security professionals in the world. Their consulting services include web application testing, network penetration testing, red team engagements, social engineering, and advanced adversary simulation.

OffSec's unique position as both a training provider and consulting firm means their testers are constantly developing and refining the most current exploitation techniques, giving clients access to cutting-edge offensive capabilities. The company maintains Kali Linux, the world's most popular penetration testing distribution, and Exploit-DB, a critical community resource. Their try harder philosophy permeates their consulting work, driving testers to pursue every possible attack vector with persistence.

Services

Web Application Penetration Testing Network Penetration Testing Red Teaming Social Engineering Cloud Penetration Testing API Penetration Testing Wireless Penetration Testing Assumed Breach Testing

Accreditations

OSCP Employer

Compliance Expertise

PCI DSS SOC 2 NIST CSF ISO 27001 HIPAA

Best For

EnterpriseMid-MarketGovernment

Industries

Technology Financial Services Government Defense

Methodologies

OWASPPTESOSSTMM

Team Activity

Active in CTF competitions

Speaker: Black Hat

Speaker: DEF CON

Open source: Kali Linux

Open source: Exploit-DB

Open source: Google Hacking Database

Compare With

Reviews

Be the first to share your experience with Offensive Security.

Be the first to review Offensive Security

Is this your company? Claim this profile

Related Providers

Bulletproof

CREST-accredited UK cybersecurity and compliance provider offering penetration testing, managed security services, and regulatory consultancy to over 2,000 customers from its Stevenage headquarters.

Stevenage, United KingdomContact for pricing

Web ApplicationNetworkMobile AppCloud+7

CRESTISO 27001Cyber EssentialsCyber Essentials Plus+2

Verified Feb 2026

Profile Compare

Best for Mid-MarketBest for Financial Services

NetSPI

Leading penetration testing firm with the Resolve platform for continuous attack surface management, trusted by nine of the top ten US banks.

Minneapolis, Minnesota, United StatesContact for pricing

Web ApplicationNetworkCloudAPI+7

SOC 2ISO 27001CREST

Verified Feb 2026

Profile Compare

Secureworks

Dell Technologies-backed cybersecurity firm with elite Counter Threat Unit intelligence informing enterprise penetration testing and adversary simulation.

Atlanta, Georgia, United StatesContact for pricing

Web ApplicationNetworkCloudAPI+6

SOC 2ISO 27001

Verified Feb 2026

Profile Compare

Best UK ProviderBest for EnterpriseResearch Leaders

NCC Group

Global cybersecurity consultancy with CREST, CHECK, and CBEST accreditation, renowned for deep technical research and comprehensive penetration testing services.

Manchester, United KingdomContact for pricing

Web ApplicationNetworkMobile AppIoT+12

CRESTCHECKCBESTISO 27001+5

Verified Feb 2026

Profile Compare