W-DESER-JAVAExecution

Deserialization — Java (ysoserial)

ObjectInputStream.readObject on attacker bytes — ysoserial gadget chains (CommonsCollections, Spring, JRE-only) reach Runtime.exec.

§ Where this technique fits

W-DESER-JAVA is catalogued under the Execution tactic of the offensive-security kill-chain. It appears in 1 approved dossier in the registry, typically at step 2 on average.

§ Dossiers chaining this technique

Java deserialization → ysoserial → RCE
An endpoint deserializes a Java object from user-controlled bytes. ysoserial produces a gadget chain whose readObject() reaches Runtime.exec().
step 2 / 6

§ What commonly comes next

01
Command and Scripting Interpreter
T1059 · Execution
seen 1×

§ Where this technique fits

§ Dossiers chaining this technique

Java deserialization → ysoserial → RCE

§ What commonly comes next