Featured resource
2025 Tech Upskilling Playbook
Tech Upskilling Playbook

Build future-ready tech teams and hit key business milestones with seven proven plays from industry leaders.

Check it out
  • Course
    • Libraries: If you want this course, consider one of these libraries.
    • Security

Specialized Testing: Deserialization

Insecure deserialization vulnerabilities are frequently encountered in web applications. This course will teach you how to test for and exploit these vulnerabilities in web applications.

Peter Mosmans - Pluralsight course - Specialized Testing: Deserialization
Peter Mosmans
What you'll learn

Most web application programmers can tell you that the deserialization process can be exploited, but how? In this course, Specialized Testing: Deserialization, you’ll learn to find and exploit insecure deserialization vulnerabilities. First, you’ll explore the intricacies of the deserialization process. Next, you’ll discover how to find locations where insecure deserialization takes place, and how to test those. Finally, you’ll learn how to perform advanced insecure deserialization exploitation. When you’re finished with this course, you’ll have the skills and knowledge of insecure deserialization needed to perform specialized security testing for it.

Table of contents

About the author
Peter Mosmans - Pluralsight course - Specialized Testing: Deserialization
Peter Mosmans

Peter started out in the nineties as software engineer working on internet banking applications for various European financial institutions. Since 2004, he started specializing in pentesting complex and feature-rich web applications. Currently, he leads a global team of highly skilled and enthusiastic penetration testers as lead pentester.

Get access now

Sign up to get immediate access to this course plus thousands more you can watch anytime, anywhere.

Get started with Pluralsight