all InfoSec news
Finding Deserialization Bugs in the SolarWind Platform
Zero Day Initiative - Blog www.zerodayinitiative.com
It’s been a while since I have written a blog post, please accept my sincerest apologies. This is because a lot of fun stuff that I’ve recently done is going to be presented during conferences.
Please treat this post as a small introduction to my upcoming Hexacon 2023 talk titled “Exploiting Hardened .NET Deserialization: New Exploitation Ideas and Abuse of Insecure Serialization”. The entire talk and research was inspired by two small research projects, one of which focused on issues …
accept blog blog post bugs conferences deserialization exploiting fun introduction platform upcoming written