Options
Passed GWAPT!
![[Deleted User]](https://us.v-cdn.net/6030959/uploads/defaultavatar/nE1RZK93BLG3K.jpg)
[Deleted User]
Senior MemberPosts: 0 ■■□□□□□□□□
in GIAC
Well after a long process, I passed the GWAPT! 
Out of all the GIAC exams I have taken, I found the GWAPT to be the hardest out of them. Not all of the questions/answers are from the books they require you to understand the concepts. To anyone looking into taking the exam, learn the concepts and have a solid index and bring your books. Know your AJAX/JSON, Know SQL Injection concepts Blind vs regular SQL Injection and injection techniques. Know your different types of authentication (Forms, Digest, Basic etc.) Know your google dorks and finally know your XSS/CSRF. I'd say those were the heavy hitters on my exam but each exam varies. Can't go into detail due to NDA but hopefully that gives you an idea of the exam. The practice exams are similar in style to the actual exam. Best of luck!
Out of all the GIAC exams I have taken, I found the GWAPT to be the hardest out of them. Not all of the questions/answers are from the books they require you to understand the concepts. To anyone looking into taking the exam, learn the concepts and have a solid index and bring your books. Know your AJAX/JSON, Know SQL Injection concepts Blind vs regular SQL Injection and injection techniques. Know your different types of authentication (Forms, Digest, Basic etc.) Know your google dorks and finally know your XSS/CSRF. I'd say those were the heavy hitters on my exam but each exam varies. Can't go into detail due to NDA but hopefully that gives you an idea of the exam. The practice exams are similar in style to the actual exam. Best of luck!
Comments
-
Options
JoJoCal19
Mod Posts: 2,835 Mod
Congrats on the pass!!Have: CISSP, CISM, CISA, CRISC, eJPT, GCIA, GSEC, CCSP, CCSK, AWS CSAA, AWS CCP, OCI Foundations Associate, ITIL-F, MS Cyber Security - USF, BSBA - UF, MSISA - WGU
Currently Working On: Python, OSCP Prep
Next Up: OSCP
Studying: Code Academy (Python), Bash Scripting, Virtual Hacking Lab Coursework