GWAP certification holders have demonstrated knowledge of web application exploits and penetration testing methodology :
• Web application overview & OWASP 2017
• Web application session management, SQL injection attacks, and testing tools
• Cross site scripting, client injection attack, reconnaissance and mapping
• Recognize and mitigate security weaknesses in existing web applications.