https://x3ric.com/blog/tags/deserialization/CTF notes, systems work, and writeups.Hugoen-usSat, 06 Jun 2026 21:41:13 +0200https://x3ric.com/blog/posts/HackTheBox-C.O.P-Challenge/https://x3ric.com/blog/posts/HackTheBox-C.O.P-Challenge/Sat, 30 Nov 2024 09:20:00 +0800challengehtbwebsql-injectiondeserializationrceC.O.P: exploit the SQL injection, extract the needed data, and reach the flag.https://x3ric.com/blog/posts/HackTheBox-DLLAMA-Challenge/https://x3ric.com/blog/posts/HackTheBox-DLLAMA-Challenge/Sat, 30 Nov 2024 09:20:00 +0800challengehtbwebdeserializationDLLAMA: abuse unsafe deserialization to cross the trust boundary and reach the flag.https://x3ric.com/blog/posts/HackTheBox-Toxic-Challenge/https://x3ric.com/blog/posts/HackTheBox-Toxic-Challenge/Sat, 30 Nov 2024 09:20:00 +0800challengehtbwebdeserializationrcephpToxic: abuse unsafe deserialization to cross the trust boundary and reach the flag.