Deserialization Attacks
1 h 30 min
Serialization is an extremely easy and convenient way to store complex states on disk or transfer them over the network. However, ease of use brings a downside, as unpacking a serialized object is comparable to defusing a bomb. It must be done exactly right, or the consequences can be catastrophic.
Modules