ASP.NET ViewState

• https://hacktricks.wiki/en/pentesting-web/deserialization/exploiting-__viewstate-parameter.html
• https://medium.com/@pauldipesh29/the-complete-failed-guide-to-asp-net-viewstate-exploitation-1a582471fc59

If you have an ASP.NET webpage, chances are it uses ViewState. These states are deserialized, which can result in RCE (e.g., Exchange CVE-2020-0688).

Tools:

• https://github.com/pwntester/ysoserial.net
• https://github.com/blacklanternsecurity/badsecrets