Serialize Badge

2300 Completed
5 Videos
5 Exercises
Easy image for XMLDecoder

XMLDecoder

  • This exercise covers the exploitation of an application using XMLDecoder
  • 1 video
  • Completed by 3752 students
  • Takes Less than an hour on average
  • Java
Easy image for CVE-2016-0792

CVE-2016-0792

  • This exercise covers the exploitation of an Xstream vulnerability in Jenkins
  • 1 video
  • Completed by 3352 students
  • Takes Less than an hour on average
  • Java/Tomcat
Medium image for ObjectInputStream

ObjectInputStream

  • This exercise covers the exploitation of a call to readObject in a Spring application
  • 1 video
  • Completed by 3080 students
  • Takes Less than an hour on average
  • Java
Medium image for CVE-2013-0156: Rails Object Injection

CVE-2013-0156: Rails Object Injection

  • This exercise covers the exploitation of a code execution in Ruby-on-Rails using XML and YAML.
  • 1 video
  • Completed by 2849 students
  • Takes Less than an hour on average
  • Rails
Hard image for API to Shell

API to Shell

  • This exercise covers the exploitation of PHP type confusion to bypass a signature and the exploitation of unserialize.
  • 6 videos
  • Completed by 2437 students
  • Takes Between 2 and 4 hours on average
  • PHP/Apache/Mysql
  • API