GitHub - federicodotta/Java-Deserialization-Scanner: All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
GitHub - PortSwigger/java-deserialization-scanner: All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
Java Deserialization Scanner - Hands-On Application Penetration Testing with Burp Suite [Book]
Java Deserialization — From Discovery to Reverse Shell on Limited Environments | by Francesco Soncina (phra) | ABN AMRO — Red Team | Medium
Reliable discovery and exploitation of Java deserialization vulnerabilities | @Mediaservice.net Technical Blog
Insecure Deserialization explained with examples - thehackerish
Java-Deserialization-Scanner – BurpSuite JAVA deserialization vulnerability scanning plug-in – Penetration Testing | Julio Della Flora
Shells in Your Serial - Exploiting Java Deserialization on JBoss - TrustFoundry
What is Burp Extension? - Indusface Learning
Java DNS Deserialization, GadgetProbe and Java Deserialization Scanner - HackTricks
Java Deserialization — From Discovery to Reverse Shell on Limited Environments | by Francesco Soncina (phra) | ABN AMRO — Red Team | Medium
Burp Suite on Twitter: "@damian_89_ The extension settings are saved in a local config file and should persist on a restart. How many extensions do you have loaded?" / Twitter
Java Deserialization Scanner 0.7 is out! - hn security
Extracting data using Insecure Direct Object Reference (IDOR) flaws | Hands-On Application Penetration Testing with Burp Suite