Sonar helps you commit clean code every time. With over 600 unique rules to find Java bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work. Learn more →
Top 12 Java Serialization Projects
FASTJSON 2.0.x has been released, faster and more secure, recommend you upgrade.Project mention: [Release] Java Tron GreatVoyage-v4.4.6 (David) | reddit.com/r/TronLabs_RO | 2022-05-25
Update for a security vulnerability in fastjsonhttps://github.com/alibaba/fastjson/wiki/security_update_20220523two improvements are suggested:
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.Project mention: Java deserialization payloads in log4j (Unified starting point) | reddit.com/r/hackthebox | 2022-12-23
So I've finished the unified box in stage 2 of the starting point and have tons of questions about the box. In the box they use veracode-research/rogue-jndi to exploit the log4j vulnerability. But when I test it with deserialize payload generated by frohoff/ysoserial it's not running. I've try to look at the java log in the challenge container but can't find anything that java complain or error out. Is it because the ysoserial payload too complex that it running but fail at some point and don't throw error or maybe the author just hard code so that only the payload from rogue-jndi work? can it's because of the java version/framework/library/weirdness? Do I need to test both kind of payload if I want to exploit log4j in the future or just stick with pimps/JNDI-Expoit-Kit or cckuailong/JNDI-Injection_Exploit-Plus (my senior recommendation when exploiting log4j).
Write Clean Java Code. Always.. Sonar helps you commit clean code every time. With over 600 unique rules to find Java bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.
Java serialization library, proto compiler, code generatorProject mention: Favorite hidden gem library? | reddit.com/r/java | 2022-10-21
FST: fast java serialization drop in-replacementProject mention: JEP draft: 64 bit object headers | news.ycombinator.com | 2022-10-11
jsoniter (json-iterator) is fast and flexible JSON parser available in Java and Go (by json-iterator)Project mention: Why is json logging the “standard”? | reddit.com/r/golang | 2023-03-10
If JSON decoding ever becomes a bottleneck, use https://jsoniter.com/ . Even fhe drop-in replacement API is faster than the stdlib. If you need absolute insane performance, use the streaming API.
MessagePack serializer implementation for Java / msgpack.org[Java]Project mention: What is the fastest way to encode the arbitrary struct into bytes? | reddit.com/r/golang | 2023-03-02
so appreciate such a detailed reply, thanks. btw, why did you choose tinylib/msgp from 4 available go-impls?
💡Extremely fast enterprise server framework, can be used in RPC, web server framework, game server framework.（极致性能的Java服务器框架，RPC，游戏服务器框架，web应用服务器框架。）Project mention: Extremely fast enterprise server framework, can be used in RPC, web server framework, game server framework. | reddit.com/r/java | 2023-02-17
I'm guessing it's this one: https://github.com/zfoo-project/zfoo
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
Fast object or data serialize and deserialize libraryProject mention: Interesting example of how “JEP 374” affects performance | news.ycombinator.com | 2022-04-19
An effective and well designed serialization framework.
KDL Parser for the JVM
A Java library for serializing objects as PHP serialization format.Project mention: What is serialization in PHP | dev.to | 2023-01-02
Framework for serialization to Json, XML, Byte and Excel, therefore an oviparous wool milk sow J
Java Serialization related posts
gRPC on the client side
9 projects | dev.to | 16 Mar 2023
Why is json logging the “standard”?
2 projects | reddit.com/r/golang | 10 Mar 2023
Extremely fast enterprise server framework, can be used in RPC, web server framework, game server framework.
1 project | reddit.com/r/java | 17 Feb 2023
QuickBuffers 1.1 released
8 projects | reddit.com/r/java | 10 Feb 2023
Using Arduino as input to Rust project (help needed)
2 projects | reddit.com/r/rust | 11 Jan 2023
What is serialization in PHP
1 project | dev.to | 2 Jan 2023
JEP draft: 64 bit object headers
4 projects | news.ycombinator.com | 11 Oct 2022
A note from our sponsor - Sonar
www.sonarsource.com | 21 Mar 2023
What are some of the best open-source Serialization projects in Java? This list will help you: