Y
Hacker News
new
|
ask
|
show
|
jobs
by
lyu07282
763 days ago
I was thinking of BinaryFormatter and NetDataContractSerializer, etc. unsafe .NET object deserialization. I'm sure the default JSON serializer in C# is safe (lmao language fanboys)
https://github.com/pwntester/ysoserial.net