Java-Deserialization-Cheat-Sheet issues

Results 3 Java-Deserialization-Cheat-Sheet issues

Sort by recently updated

Question about extending list of CVEs

I recently compiled a very large list of Java Deserialization CVEs (which are located at this repo https://github.com/PalindromeLabs/Java-Deserialization-CVEs) and I thought you might be interested in incorporating the list or...

engn33r

Can I translate it and post it on my blog?

Hi, I am an information security professional from China and are following the Java tutorial to learn Java deserialization vulnerabilities. First of all thank you for your summary of this...

Ph0rse

Addition of Synacktivs CodeQL analysis

Synacktiv have done an awesome write up of using CodeQL for source/sink analysis for detection of Java deserialization that would go well in this list Writeup: https://www.synacktiv.com/en/publications/finding-gadgets-like-its-2022 Associated tool/codebase: https://github.com/synacktiv/QLinspector

AlLongley

Java-Deserialization-Cheat-Sheet
Java-Deserialization-Cheat-Sheet copied to clipboard

Metadata

Question about extending list of CVEs

Can I translate it and post it on my blog?

Addition of Synacktivs CodeQL analysis

← Metadata

Owner

Metadata

Java-Deserialization-Cheat-Sheet Java-Deserialization-Cheat-Sheet copied to clipboard

Metadata

Question about extending list of CVEs

Can I translate it and post it on my blog?

Addition of Synacktivs CodeQL analysis

← Metadata

Owner

Metadata

Java-Deserialization-Cheat-Sheet
Java-Deserialization-Cheat-Sheet copied to clipboard