Java exploiting with ysoserial and how gadget chains work

Name: Java exploiting with ysoserial and how gadget chains work
Uploaded: Dec 18, 2021
Duration: 984 s
Description: Exploits like #log4j #log4shell uses Java deserialization with gadget chains. Learn how that works here. https://www.synacktiv.com/en/publications/finding-gadgets-like-its-2015-part-1.html http://gursevkalra.blogspot.com/2016/01/ysoserial-commonscollections1-exploit.html https://github.com/frohoff/ysoserial/blob/master/src/main/java/ysoserial/payloads/CommonsCollections1.java

Kandy Phan926 subscribers

4.8K views

Dec 18, 2021

16:24

Exploits like #log4j #log4shell uses Java deserialization with gadget chains. Learn how that works here. https://www.synacktiv.com/en/publications/finding-gadgets-like-its-2015-part-1.html http://gursevkalra.blogspot.com/2016/01/ysoserial-commonscollections1-exploit.html https://github.com/frohoff/ysoserial/blob/master/src/main/java/ysoserial/payloads/CommonsCollections1.java

Download

0 formats

No download links available.