What is deserialization and how it is vulnerable to RCE or logic manipulation?
Live attack on java and PHP web application.
And we will see some mitigation for deserialization vulnerability.


Raunak parmar

Raunak Parmar is an information security professional whose areas of interest include web penetration testing, Azure/AWS security, source code review, scripting, and development.

He has 2+ years of experience in information security. Raunak likes to research new attack methodologies and create open-source tools that can be used during Cloud Security assessments. He has worked extensively on Azure and AWS.

He is the author of Vajra an offensive cloud security tool. He has spoken at multiple conferences like Blackhat, Defcon, and Nullcon.


Starts at Saturday October 12 2019, 10:45 AM. The sessions runs for about 1 hour.