ysoserial.net
A payload generator that creates malicious deserialization payloads for testing .NET applications against insecure deserialization vulnerabilities.
Free3,544
Free3,544
ysoserial.net
A payload generator that creates malicious deserialization payloads for testing .NET applications against insecure deserialization vulnerabilities.
Data verified Apr 2026
ADYour product here. Reach security decision-makers.Launch a campaignysoserial.net Description
ysoserial.net is a deserialization payload generator designed for .NET applications and frameworks. The tool creates malicious payloads that exploit deserialization vulnerabilities in various .NET formatters including BinaryFormatter, SoapFormatter, and NetDataContractSerializer. It generates serialized objects that can execute arbitrary code when deserialized by vulnerable .NET applications, making it useful for penetration testing and security research. The tool supports multiple .NET serialization formats and can be used to test applications for insecure deserialization flaws that could lead to remote code execution.
ysoserial.net FAQ
Common questions about ysoserial.net including features, pricing, alternatives, and user reviews.
ysoserial.net is A payload generator that creates malicious deserialization payloads for testing .NET applications against insecure deserialization vulnerabilities. It is a Vulnerability Management solution designed to help security teams with Net, Payload Generation.
Have more questions? Browse our categories or search for specific tools.
