GIAC Web Application Defender: GWEB

GIAC Web Application Defender: GWEB

The GIAC Web Application Defender (GWEB) Certification Exam allows candidates to demonstrate mastery of the security knowledge and skills needed to deal with common web application errors that lead to most security problems. The successful candidate will have hands-on experience using current tools to detect and prevent Input Validation flaws, Cross-site scripting (XSS), and SQL Injection as well as an in-depth understanding of authentication, access control, and session management, their weaknesses, and how they are best defended.

GIAC Certified Web Application Defenders (GWEB) have the knowledge, skills, and abilities to secure web applications and recognize and mitigate security weaknesses in existing web applications.

Special thanks to the following people who provided valuable feedback to improve the GWEB certification:

  • Anurag Agarwal
  • Nima Dezhkam
  • Matt Johansen
  • Abe Kang
  • Jim Manico
  • Bruce Mayhew
  • Paul O'Grady
  • Phillip Purviance
  • Ali Saadatpoor
  • Brook Schoenfield
  • Patrick Szeto
  • Chris Wysopal