Login
Register
Introduction 00 (next)
Course
Videos
Scoring
Introduction Badge
Introduction Badge (next)
Badges
Introduction Badge
Unix Badge
Essential Badge
PCAP badge
White Badge
Serialize Badge
Yellow Badge
Blue Badge
Green Badge
Orange Badge
Intercept Badge
Authentication / Authorization Badge
Android Badge
Capture-The-Flag Badge
Brown Badge
Recon Badge
API Badge
Media Badge
Code Review Badge
Java Serialize Badge
HTTP Badge
Login
Register
Serialize Badge
2157
Completed
5
Exercises
Easy
XMLDecoder
This exercise covers the exploitation of an application using XMLDecoder
1 video
Completed by 3512 students
Takes Less than an hour on average
Java
Easy
CVE-2016-0792
This exercise covers the exploitation of an Xstream vulnerability in Jenkins
1 video
Completed by 3135 students
Takes Less than an hour on average
Java/Tomcat
Medium
ObjectInputStream
This exercise covers the exploitation of a call to readObject in a Spring application
1 video
Completed by 2887 students
Takes Less than an hour on average
Java
Medium
CVE-2013-0156: Rails Object Injection
This exercise covers the exploitation of a code execution in Ruby-on-Rails using XML and YAML.
1 video
Completed by 2664 students
Takes Less than an hour on average
Rails
Hard
API to Shell
This exercise covers the exploitation of PHP type confusion to bypass a signature and the exploitation of unserialize.
6 videos
Completed by 2293 students
Takes Between 2 and 4 hours on average
PHP/Apache/Mysql
