From 9dbfae0ee83e9571e409e458f241f6085bf70055 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Thu, 31 May 2018 15:17:20 +0700
Subject: [PATCH] Articles: Web Application Security: Understanding Java
 deserialization

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 43474a4..aed09c3 100644
--- a/README.md
+++ b/README.md
@@ -709,6 +709,7 @@ _return-to-libc techniques_
 
 #### Web Application Security: Technique: Serialization/Deserialization
 
+- [Understanding Java deserialization](https://nytrosecurity.com/2018/05/30/understanding-java-deserialization/)
 - [Why You Should Never Pass Untrusted Data to Unserialize When Writing PHP Code](https://www.netsparker.com/blog/web-security/untrusted-data-unserialize-php/)
 
 #### Web Application Security: Technique: SQL Injection