Java Deserialization — From Discovery to Reverse Shell on Limited Environments | by Francesco Soncina (phra) | ABN AMRO — Red Team | Medium
Demystifying Insecure Deserialisation on JSF Application – Geek Freak
Statement of work
Java Deserialization Scanner - Hands-On Application Penetration Testing with Burp Suite [Book]
Java DNS Deserialization, GadgetProbe and Java Deserialization Scanner - HackTricks
Java DNS Deserialization, GadgetProbe and Java Deserialization Scanner - HackTricks
GitHub - federicodotta/Java-Deserialization-Scanner: All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
Exploiting a Java Deserialization Vulnerability using Burp Suite - YouTube
dotnet-deserialization-scanner/BurpExtender.java at master · pwntester/dotnet-deserialization-scanner · GitHub
Extending Burp Suite | SpringerLink
TwelveSec Blog - Pentesting Java Clients using Burp & JDSer-DComp
Red-Team: Java Deserialization — From Discovery to Reverse Shell on Limited Environments | by ABN AMRO | ABN AMRO Developer Blog | Medium
Java Deserialization Scanner 0.7 is out! - hn security
5 Common BurpSuite Extension | Automation for deserialization - Securium Solutions
GitHub - federicodotta/Java-Deserialization-Scanner: All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities