Java Serialize 05

Bookmarked!

This exercise is one of our challenges to help you learn Java Serialisation exploitation

PRO Medium 2-4 Hrs. 73 Java Deserialization Badge

Course

This exercise covers the exploitation of a serialization issue in Java. Specifically, it focuses on building your own gadgets without relying on ysoserial to gain command execution via ObjectInputStream.

Skills covered

Injection

Included with PRO

Full course content Common mistakes

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account