![](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Ficon-black-friday.png?auto=format&ixlib=php-4.1.0&s=fe56b83c82babb2f8fce47a2aed2f85d)
Overview
![](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Ficon-black-friday.png?auto=format&ixlib=php-4.1.0&s=fe56b83c82babb2f8fce47a2aed2f85d)
This course covers novel attacks against .NET serialization, including serialization exploits of platforms not using well-known .NET serializers, "mutation" attacks exploiting deserialization, and techniques for bypassing serialization binders. The learning outcomes include understanding how to identify and exploit serialization vulnerabilities in .NET applications. The course teaches skills such as identifying vulnerable serialization implementations and exploiting deserialization flaws. The teaching method involves demonstrating remote code execution vulnerabilities in various databases and libraries. The intended audience for this course includes cybersecurity professionals, software developers, and anyone interested in understanding and mitigating serialization vulnerabilities in .NET applications.
Syllabus
Second Breakfast: Implicit and Mutation-Based Serialization Vulnerabilities in .NET
Taught by
Black Hat