Skills
.Work. You
Rest

deserialization-testing

Community

Detect and exploit deserialization flaws.

Software Engineering#vulnerability#python#php#security testing#java#deserialization#rce
AuthorEd1s0nZ
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill addresses the critical security vulnerability of deserialization flaws, which can lead to remote code execution and data breaches.

Core Features & Use Cases

  • Vulnerability Identification: Detects common serialization formats and potential deserialization points in applications.
  • Exploitation: Provides methods and tools (like ysoserial and PHPGGC) to craft and deploy payloads for Java, PHP, and Python.
  • Bypass Techniques: Offers strategies for overcoming encoding and filter bypasses.
  • Use Case: A security analyst can use this skill to systematically test a web application for deserialization vulnerabilities, identify exploitable gadgets, and demonstrate the impact through a proof-of-concept.

Quick Start

Use the deserialization-testing skill to generate a Java CommonsCollections1 payload for the command 'id'.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: deserialization-testing
Download link: https://github.com/Ed1s0nZ/CyberStrikeAI/archive/main.zip#deserialization-testing

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.