奇安信攻防社区-【补天白帽黑客城市沙龙-杭州站】.NET反序列化漏洞全链路攻防

议题从攻防角度出发，剖析.NET常见高危反序列化组件，结合实战案例,深入解析JavaScriptSerializer的特殊漏洞触发机制，从上传恶意DLL到加载混合程序集的完整利用链，同时针对定制化WAF展示代码层面的绕过方法，系统呈现.NET反序列化漏洞的攻防全链路。

### Speaker：Ekkoo

![幻灯片1.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-98bfa0fb1ae4c433c6b2e0377888f462bc50dee3.png)

![幻灯片2.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-5d21920873e86bf322ef89ddf66b0a5f7d75efc2.png)

![幻灯片3.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-6361b966a63d46fbaa2ad0b5bed205fa9ef59534.png)

![幻灯片4.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-c97e9216ea02fee68c542ddf1b533db6fc48bff9.png)

![幻灯片5.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-24aa5e0736080c8b526996490db4609a3559a212.png)

![幻灯片6.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-89c555cdddf04714af282e4663190aaeb3f7231b.png)

![幻灯片7.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-1d263a22c00d8d23339c5991da3f17269a3d7608.png)

![幻灯片8.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-46693a5a33378f1533f8aa1e6651391046996136.png)

![幻灯片9.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-a077f178f4f6562c6a2f06d315640a65c403915d.png)

![幻灯片10.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-17b2498236afa7f1588651ef22d96dcbbe6fd20f.png)

![幻灯片11.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-fc9e2078fa55455a5355b599ad6c6e1c4964f531.png)

![幻灯片12.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-727ffde500bc62a5268dbc82fc6d0ee856c6e55d.png)

![幻灯片13.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-cb9a02007825fdd3ef07a163e6612a64d5321aac.png)

![幻灯片14.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-1d2b46361a5a48e95d29670d3bab6b913db63c3b.png)

![幻灯片15.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-d73530fe52d3c2e599acf68762aae3addb8283c4.png)

![幻灯片16.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-4cff803cf363777a0a9a33af14701f9bbef4da0c.png)

![幻灯片17.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-664bb91608458d19d8febfb550880f8218e8d5d7.png)

![幻灯片18.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-f511f9bcce19571cba310eab3e1a4f669a3b2c38.png)

![幻灯片19.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-963b86c6fe4c8c54dd13bc51d9fff2f8c934dcca.png)

![幻灯片20.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-4b15d4c38cf03651baf2954a72087be773d4246c.png)

![幻灯片21.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-75c00c6508e7595db3dfeaec82b13f01c73deaff.png)

![幻灯片22.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-2e93654990ffac59715d11599f8c50eaa90e26ea.png)

![幻灯片23.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-c3b1b7be5af8c731e5e49f0c4698bc77cfece133.png)

![幻灯片24.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-2b87463a0da251af43ba5bc5ab831f09468f184e.png)

![幻灯片25.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-dfaf984c28cbe168235586d1d1e112c755378c98.png)

![幻灯片26.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/08/attach-601681ac49ea8b1915df3f1f8c3f4d54f07eec6d.png)

0 条评论