OSWE : My Journey & Review

Astik Rawat
7 min readDec 20, 2022

Hi, I am finally back after so many months! I wanted to share my honest review on Offensive Security Web Expert (OSWE) as this one took me a while to finish it. It was called AWAE i.e. Advance Web Attack and Exploitation in past. This was one of the longest proctor exam I have ever given till to this date. As always I wanted to share my personal experience and review with whole course and it’s material.

Note: If you don’t wanna go with the whole blog I would suggest do read all my attempts and personal tips. I hope it would be enough if you are going for the exam soon.

Background

Before going for OSWE, just wanna let you know my experience with Penetration Testing just with Web Application. I have already done Burp Suite Certified Professional (BSCP) and some hands on experience with Webapp CTFs challenges. If you are someone who wants to get into web application penetration testing, I would definitely suggest going with Port Swigger Academy as it teaches you so much about vulnerabilities when comes to web app. As OSWE is more on White box that is source code reading and understanding the code, BSCP is more on black box web app testing with understanding the methodology to find a vulnerability on Web Application.

Prerequisites

--

--

Astik Rawat
Astik Rawat

Written by Astik Rawat

Security Consultant | OSCE3 | OSED | OSWE | OSEP | CRTO | OSCP | OSWA | OSWP | PNPT | eMAPT | PJPT | CPENT | eJPT | CEH Master | KLCP | CNSP | OSCC | 9xCVEs

Responses (1)