: Save time by using the Official OSWE Word Template or community favorites like the Markdown-based OSWE Template .
If you write, "I sent a POST request to /admin with parameter 'cmd' set to 'id'", you will fail. You must write: "As seen in admin.js , line 14, the execute function passes user-controlled parameter cmd directly to child_process.exec without sanitization (Ref: Line 17)."
Here is a stylized example of a passing "Solution" section for a hypothetical OSWE box.
A screenshot of a black terminal with a tiny flag is useless. Use scrot or gnome-screenshot to capture the entire window. Annotate the screenshot with a red arrow or box pointing to the flag text. OffSec graders go through hundreds of reports; make their job easy.
: Save time by using the Official OSWE Word Template or community favorites like the Markdown-based OSWE Template .
If you write, "I sent a POST request to /admin with parameter 'cmd' set to 'id'", you will fail. You must write: "As seen in admin.js , line 14, the execute function passes user-controlled parameter cmd directly to child_process.exec without sanitization (Ref: Line 17)." oswe exam report
Here is a stylized example of a passing "Solution" section for a hypothetical OSWE box. : Save time by using the Official OSWE
A screenshot of a black terminal with a tiny flag is useless. Use scrot or gnome-screenshot to capture the entire window. Annotate the screenshot with a red arrow or box pointing to the flag text. OffSec graders go through hundreds of reports; make their job easy. A screenshot of a black terminal with a tiny flag is useless