Virtual Event: Threat Detection and Incident Response Summit - Watch Sessions
Connect with us

Hi, what are you looking for?



Offensive Security Acquires Cybersecurity Training Project VulnHub

Information security training and certification provider Offensive Security this week announced the acquisition of VulnHub, an open-source catalog of security training resources.

Information security training and certification provider Offensive Security this week announced the acquisition of VulnHub, an open-source catalog of security training resources.

Headquartered in New York City and active since 2007, Offensive Security offers security counseling and training, including penetration testing and digital forensics. The company is also known for the creation of Kali Linux and for the Exploit Database and Metasploit Unleashed projects.

Founded in 2012, VulnHub helps anyone practice with digital security and learn new skills by enabling them to easily set up private labs where they can practice. The VulnHub platform is used by governments, schools, and universities, for training purposes.

The open-source hub includes a range of IT assets designed to be legally hackable and exploitable. Thus, professionals can use their penetration testing skills in a controlled environment.

The new acquisition, OffSec says, falls in line with its focus on delivering practical training content to all those who want to become cyber-security professionals.

“With OffSec’s backing, VulnHub now has an opportunity to grow to its full potential. As before, we hope that the community will continue to come together to help each other learn, either by making new material or providing walkthroughs or solutions,” the company says.

Following the acquisition, OffSec will continue to provide the VulnHub content for free, in line with the company’s commitment to open source.

Advertisement. Scroll to continue reading.

Additionally, the company plans on offering more open source tools to security professionals looking for hands-on experience, including the aforementioned Kali Linux, Exploit DB, and Metasploit Unleashed.

“Over time, we will work toward an expansion of the services available on VulnHub and its integration with OffSec products. The goal of any changes will be to expand accessibility to information security training resources to as many people as possible,” the company said.

Related: Accenture Acquires Critical Infrastructure Protection Firm Revolutionary Security

Related: WatchGuard Technologies to Acquire Panda Security

Related: PE Firm Gets Cold Feet With $1.9 Billion Acquisition of Forescout Technologies

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cybersecurity Funding

SecurityWeek investigates how political/economic conditions will affect venture capital funding for cybersecurity firms during 2023.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...


Forty cybersecurity-related M&A deals were announced in January 2023.


Seventeen cybersecurity-related M&A deals were announced in the first half of February 2023.


Thirty-five cybersecurity-related M&A deals were announced in February 2023


More than 450 cybersecurity-related mergers and acquisitions were announced in 2022, according to an analysis conducted by SecurityWeek