YoVDO

The New Wave of Deserialization Bugs

Offered By: NorthSec via YouTube

Tags

NorthSec Courses Cybersecurity Courses Python Courses Java Courses PHP Courses Jenkins Courses

Course Description

Overview

Explore the critical issue of deserialization bugs in a 32-minute conference talk from NorthSec. Delve into the recent wave of vulnerabilities affecting major Java software like WebLogic, Jenkins, and JBoss due to a common bug pattern. Gain insights into the risks associated with deserialization mechanisms and learn how these vulnerabilities can be exploited. Discover available fixes for known vulnerable applications and understand the potential risks for proprietary enterprise software. Examine a tool designed to identify vulnerable patterns and extend your knowledge beyond Java, with examples provided for PHP and Python deserialization vulnerabilities.

Syllabus

Philippe Arteau - The New Wave of Deserialization Bugs


Taught by

NorthSec

Related Courses

Continuous Integration and Continuous Deployment
Microsoft via edX Introduction to Jenkins
Linux Foundation via edX Scheduling Selenium TestNG tests via Jenkins CI/CD tool
Coursera Project Network via Coursera Set up a Continuous Integration (CI) workflow in CIrcleCI
Coursera Project Network via Coursera Jenkins : Automating your delivery pipeline
Coursera Project Network via Coursera