Got a question? Call 0800 835 835 | Login
Specialise in web application security with the updated version of WEB-300. From XSS attacks to advanced SQL injections and server side request forgery, learn how to exploit and secure web apps using white box pentesting methods.
This challenging certification program will develop their skills in a white box and black box environment, with insight and instruction from top cybersecurity leaders. The bulk of your time will be spent analysing source code, decompiling Java®, debugging DLLs, manipulating requests, and more, using tools like Burp Suite, dnSpy, JD-GUI, Visual Studio, and the trusty text editor.
Students who complete the course and pass the exam earn the OffSec Web Expert (OSWE) certification, demonstrating mastery in exploiting front-facing web apps.
The OSWE is one of three certifications making up the OSCE³ certification, along with the OSEP for advanced penetration testing and the OSED for exploit development.
This self-paced course includes:
10-hour video series
410+ page PDF course guide
Private labs
Active student forums
Access to virtual lab environment
OSWE exam voucher
About the OSWE exam:
The WEB-300 course and online lab prepares you for the OSWE certification
48-hour exam
Proctored