Merge branch 'master' of github.com:NetSPI/JavaSerialKiller

egru · egru · commit 98b827472d5c · 2016-03-09T16:27:16.000-06:00
diff --git a/README.md b/README.md
@@ -1 +1,21 @@
-# JavaSerialKiller
+# Java Serial Killer
+
+Burp extension to perform Java Deserialization Attacks using the ysoserial payload generator tool.
+
+Blog https://blog.netspi.com/java-deserialization-attacks-burp/
+
+Chris Frohoff's ysoserial (https://github.com/frohoff/ysoserial)
+
+Requirements: Java 8 
+
+Download from the Releases tab: https://github.com/NetSPI/Burp-Extensions/releases
+
+Right-click on a request and select Send to Java Serial Killer
+
+![alt tag](https://blog.netspi.com/wp-content/uploads/2016/03/img_56d5dddfa31e3.png)
+
+Select the payload that you want, type in the command, and press Serialize
+
+![alt tag](https://blog.netspi.com/wp-content/uploads/2016/03/img_56d5de37cf801.png)
+
+From here you can press Go button to send the request or right-click and send it to another tool.
