certified web exploitation specialist

One certification I obtained was the Certified Web Exploitation Specialist cert from HackTheBox. This certification required me to complete dozens of modules with skills assessments which I needed to use to pass the final 7-day long exam. To prepare for the exam, I studied the basics of web security like the OWASP Top 10, including things like SQL injection, XSS, and authentication flaws. I spent most of my time doing HTB labs and practice machines so I could learn by actually breaking web apps. I also used Burp Suite a lot to inspect and change web requests. When I got stuck, I looked up the issue and took simple notes so I wouldn’t repeat the same mistakes. Over time, I started to see common patterns in how websites are vulnerable, which helped me solve problems faster.

Hack The Box. (n.d.). Certified Web Exploitation Specialist (CWES). https://academy.hackthebox.com/preview/certifications/htb-certified-web-exploitation-specialist