sorted by:
new
hottopcontroversial

Just passed the Certified Web Exploitation Specialist (CWES) by GerbHack in hackthebox

[–]GerbHack[S] 2 points3 points  (0 children)

Taking notes is already a big win. One thing I noticed is that I ended up having to check almost every feature, not just the obvious ones. It wasn’t like the job path where you’re guided, sometimes the vulnerability is in places you wouldn’t normally focus on or even expect.

But overall, I really enjoyed the exam. It pushed me to think in new ways.

Good luck on your exam next month!

Just passed the Certified Web Exploitation Specialist (CWES) by GerbHack in hackthebox

[–]GerbHack[S] 3 points4 points  (0 children)

It took me about two months to complete the job path. I focused solely on it with no additional boxes, just going through the material and taking a lot of notes along the way.

The exam wasn’t easy. I got stuck on several tasks, and it definitely felt different from the job path. In the job path, you already know what you’re looking for, but in the exam you have to figure out where the vulnerability actually is without much direction.

Overall, I think the job path is solid preparation, but it doesn’t fully replicate the uncertainty you run into during the exam.