May 1, 2023Xudong Wu
Xudong Wu
Certified OSWEs have a clear and practical understanding of white box web application assessment and security. They’ve proven their ability to review advanced source code in web apps, identify vulnerabilities, and exploit them.
OSWEs can:
* Perform advanced web app source code auditing
* Analyze code, write scripts, and exploit web vulnerabilities
* Implement complex chained attacks using multiple vulnerabilities
* Use creative and lateral thinking to determine innovative ways of exploiting web vulnerabilities
They are able to assist web development teams in creating and maintaining web apps that are secure by design.
Skills / Knowledge
- Persistent Cross-Site Scripting
- Session Hijacking
- Data Exfiltration
- Bypassing File Extension Filters
- Magic Hashes
- PostgreSQL Extension and User-Defined Functions
- Bypassing REGEX Restrictions
- Cross-Site Request Forgery
- Type Juggling
- Blind SQL Injection
- Bypassing File Upload Restrictions
- Loose Comparisons
- Bypassing Character Restrictions
- PostgreSQL Large Objects
- Debugging .NET Assemblies
Issued on
May 1, 2023
Expires on
Does not expire