[WEB SECURITY] Java Serialized Objects security testing

KT ktriv3di at msn.com
Thu Jan 8 16:07:38 EST 2009


Hello List

I am performing security test on an application based on Oracle Forms. The application uses JAVA to serialize all the data into binary objects before they send them on the network. From the network, I cannot see any data and the one I see is all on binary so I cannot test for integrity

Anyone been in similar situation before? Any help is appreciated

Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20090108/a0cc0583/attachment.html>


More information about the websecurity mailing list