PracticeStudy GuidesBlogFlashcardsEspañol
All Practice Exams

200+ Free OSWE Practice Questions

Pass your OSWE OffSec Web Expert (WEB-300) exam on the first try — instant access, no signup required.

✓ No registration✓ No credit card✓ No hidden fees✓ Start practicing immediately
200+ Questions
100% Free

Loading practice questions...

2026 Statistics

Key Facts: OSWE Exam

4

Scored Objectives

OffSec exam guide

85/100

Passing Score

OffSec exam guide

47h 45m

Exam Time

OffSec exam guide

24 hours

Report Upload Window

OffSec FAQ / proctoring article

17

Syllabus Modules

OffSec WEB-300 page

20

Challenge Labs

OffSec WEB-300 page

As of March 11, 2026, OffSec's OSWE exam remains a 47-hour-45-minute practical with 4 objectives worth 25 points each and an 85/100 passing score. Candidates then have 24 hours to upload their report. OffSec currently allows notes and online resources during the open-book exam, but the FAQ explicitly excludes AI chatbots and LLMs with direct prompt access.

About the OSWE Exam

OSWE is OffSec's advanced web exploitation certification tied to WEB-300: Advanced Web Attacks and Exploitation. The exam is a long-form, open-book, remotely proctored practical that expects candidates to analyze source code, chain complex web vulnerabilities, develop reliable exploits, retrieve proof, and submit a professional report.

Assessment

4 hands-on objectives worth 25 points each, plus required report submission

Time Limit

47h 45m exam + 24h report upload window

Passing Score

85/100

Exam Fee

$1,749 Course + Cert Bundle or $2,749/year Learn One (OffSec)

OSWE Exam Content Outline

~18%

Tooling, Source Recovery, and Debugging

Burp workflow, Python interaction, source-code recovery, routing analysis, IDE use, and remote debugging. OffSec does not publish official percentages; this weighting is inferred from the current WEB-300 syllabus.

~18%

Authentication Bypass and Logic Flaws

Broken reset flows, weak token generation, session abuse, CORS/CSRF chaining, insecure defaults, and application logic mistakes.

~20%

Injection and Data Exfiltration

Blind SQL injection, SQLi-assisted account takeover, data extraction, file-upload bypass, command injection, and database-to-RCE thinking.

~16%

Deserialization, Type Confusion, and SSTI

PHP loose comparison, magic hashes, .NET deserialization, object-graph abuse, template injection discovery, and filter evasion.

~14%

XXE, SSRF, and Server-Side Chaining

XML parser abuse, blind SSRF enumeration, API discovery, microservice pivoting, and internal-service exploitation.

~9%

Client-Side and JavaScript Attack Chains

Persistent or DOM-based XSS, JavaScript source analysis, WebSocket abuse, prototype pollution, and template-engine RCE paths.

~5%

Custom Exploitation and Reporting

Choosing stable exploit paths, writing reproducible proof-of-concept code, collecting evidence, and documenting every objective clearly.

How to Pass the OSWE Exam

What You Need to Know

  • Passing score: 85/100
  • Assessment: 4 hands-on objectives worth 25 points each, plus required report submission
  • Time limit: 47h 45m exam + 24h report upload window
  • Exam fee: $1,749 Course + Cert Bundle or $2,749/year Learn One

Keys to Passing

  • Complete 500+ practice questions
  • Score 80%+ consistently before scheduling
  • Focus on highest-weighted sections
  • Use our AI tutor for tough concepts

OSWE Study Tips from Top Performers

1Treat source-code review as a primary skill, not a backup plan. OSWE expects you to read unfamiliar code fast and map routes, data flow, and trust boundaries.
2Build repeatable blind-SQLi workflows for boolean checks, response-diffing, timing, and controlled data extraction instead of memorizing one payload shape.
3Practice finding exploit chains, not isolated bugs. The exam rewards candidates who can turn a logic flaw, parser weakness, or internal service exposure into reliable access.
4Get comfortable debugging .NET, Java, JavaScript, and templating behavior so you can verify assumptions instead of guessing about object state or render paths.
5Rehearse SSRF, XXE, and internal API abuse with a systematic enumeration method so blind server-side bugs turn into actionable targets quickly.
6Write concise proof-of-concept scripts and clean notes while you work. The report window is short, and poor documentation can waste points you already earned.
7Plan your reporting format before exam day. Screenshots, request/response evidence, reproduction steps, and proof-file handling should be routine by then.

Frequently Asked Questions

What is the OSWE exam format?

OffSec's current OSWE exam guide states that WEB-300 candidates have 47 hours and 45 minutes to complete the exam and that the exam contains 4 objectives worth 25 points each. The guide also states that you must score 85 points to pass. After the practical ends, OffSec gives you another 24 hours to upload your report.

How many questions are on the OSWE exam?

OSWE is not a multiple-choice exam. OffSec currently describes it as a hands-on practical with 4 scored objectives rather than a bank of conventional questions. This practice set provides 200 multiple-choice items to help you rehearse the knowledge and reasoning behind the live exam.

Does OffSec publish official OSWE domain percentages?

As of March 11, 2026, I did not find official percentage weightings for OSWE on OffSec's current WEB-300 course page, syllabus, exam guide, or FAQ. The content sections on this page are therefore inferred from the published WEB-300 syllabus topics and the exam objectives OffSec does describe publicly.

Is OSWE open book, and can I use AI during the exam?

The current OSWE FAQ says the exam is open book and that you may use your notes, online resources, and the OffSec Learning Platform. The same FAQ also explicitly excludes AI chatbots and LLMs with direct prompt access, so you should treat interactive AI assistance as off-limits during the active exam.

How much does the OSWE exam cost in 2026?

The current public WEB-300 page shows pricing starting at $1,749 for the Course + Cert Bundle, while OffSec's current products page lists Learn One at $2,749 per year. OffSec's OSWE pages do not currently show a separate public OSWE standalone-exam listing similar to OSCP+, so the most visible public purchase paths are the training bundle and Learn One subscription.

What changed for OSWE in 2026?

As of March 11, 2026, I did not find a new OSWE-specific overhaul notice comparable to OffSec's separate OSCP+ change announcements. The current official OSWE materials still describe WEB-300/OSWE as a 48-hour-class practical path, and the most relevant current policy language is the FAQ's explicit ban on AI chatbots and direct-prompt LLM use during the open-book exam.