Day 42/100 Hack and Improvement
Day 42 comes with SAML Testing and Deserialization vulnerabilities and practice.
SAML Testing
From Rajesh Ranjan. Here is the link of the article.
Deserialization Vulnerabilities and Exercises
From Sam (CoffeeJunkie). Deserialization vulnerabilities are pretty interesting due to their capabilities to the point where it can achieve RCE (Remote Code Execution). There are several articles and reports that we have shared before in other days, but this time I’m gonna share where you can actually put hands on practice.
-
Pentesterlab: Pentesterlab has some pretty good exercises which are simple and pretty interesting to do.
-
ZeroNights-WebVillage-2017: Which has been gathered from this tweet, it offers hand on practice with different programming languages.
Sounds like a weekend plan for whoever is interested in this vulnerabilities!
Leave a comment