Skip to content

Latest commit

 

History

History
35 lines (27 loc) · 1.44 KB

README.md

File metadata and controls

35 lines (27 loc) · 1.44 KB

Learn-Java-Deserialization-Vulnerability

Recently learning about Java deserialization vulnerabilities, I will push the vulnerability payload and vulnerability analysis articles that I have analyzed.

Deserialization Vulnerability List

I will first analyze the vulnerability payload in the following Java libraries.

  • Groovy
  • JDK7u21
  • Apache Common Collection
  • Spring
  • FastJson
    • FastJson Basic
    • FastJson TemplatesImpl
    • FastJson JdbcRowSetImpl
    • FastJson Bypass
  • JNDI Injection
  • Jackson
  • XMLDecoder
  • SnakeYaml

After that, I will find some deserialization vulnerabilities in practical applications for analysis.

Articles List

My Blog

👉 Welcome to my blog 👈