Course Details
WEB-300: Advanced Web Attacks and Exploitation
Advanced Web Attacks and Exploitation (WEB-300) specializes in white box web app penetration tests. Earn the OffSec Web Expert (OSWE) certification upon completing the course and passing the exam, demonstrating expertise in exploiting front-facing web apps as part of the OSCE³ certification suite.
Offsec Course Types
90 Day Access
- Number of courses: 1
- Days of lab access: 90
- Exam attempts: 1
LearnOne
- Number of courses: 1
- Days of lab access: 365
- Exam attempts: 2
- Fundamental content: Unlimited
- PEN-103 & KLCP Exam: Included
- PEN-210 & OWSP Exam: Included
- Proving Grounds Practice: Included
LearnUnlimited
- Number of courses: Unlimited
- Days of lab access: 365
- Exam attempts: Unlimited
- Fundamental content: Unlimited
- PEN-103 & KLCP Exam: Included
- PEN-210 & OWSP Exam: Included
- Proving Grounds Practice: Included
WEB-300: Advanced Web Attacks and Exploitation
Advanced Web Attacks and Exploitation (WEB-300) is an advanced course in web application security, focusing on conducting white box web application penetration tests. Upon successful completion of the course and exam, participants earn the OffSec Web Expert (OSWE) certification, demonstrating expertise in exploiting front-facing web applications. The OSWE is one of three certifications that comprise the OSCE³ certification, along with the OSEP for advanced penetration testing and the OSED for exploit development.
Benefits of this course include:
✔ Learning how to conduct an extensive examination of decompiled web application source code
✔ Learning how to detect logical vulnerabilities that evade detection by many enterprise scanners
✔ Learning how to integrate logical vulnerabilities to construct a proof of concept within a web application
✔ Learning how to exploit vulnerabilities by linking them to execute complex attacks
✔ OSWE Certification
Information about the exam:
✔ Protected
✔ 48-hour exam
✔ The WEB-300 web application security course and online lab prepares you for the OSWE certification
Prerequisites
✔ Comfort reading and writing at least one coding language
✔ Familiarity with Linux
✔ Capability to create simple Python / Perl / PHP / Bash scripts
✔ Experience with web proxies
✔ General understanding of web app attack vectors, theory, and practice