Insecure Deserialization - How to trace down a gadget chain - Other examples in Ruby
links
Web Application Security
Web Security Academy
Labs
Insecure Deserialization
Remote Code Execution
Gadget Chains
Ruby
These are some Ruby examples equivalents of my previous post2(about gadget chains in PHP), that show the process of finding gadget chains in Ruby programming language; also as mentioned in one of these articles, there may still be some undiscovered gadget chains for cybersecurity researchers to find.
Also there is a Web Security Academy lab to practice these types of documented gadget chains.3
External Links
-
RUBY 2.X UNIVERSAL RCE DESERIALIZATION GADGET CHAIN
-
Universal Deserialisation Gadget for Ruby 2.x-3.x