Automatically exported from code.google.com/p/jdeserialize

jdeserialize is a library that interprets Java serialized objects -- the data generated by an ObjectOutputStream.

It is a full implementation of the Object Serialization Stream Protocol, as described in the Java Object Serialization Specification, chapter 6. It does not instantiate any classes described in the stream; instead, it builds up an intermediate representation of the types, instances, and values. Because of this, it can analyze streams without access to the class code that generated them.

It is aimed at reverse engineers working with serialized streams of unknown provenance, as well as developers working with code that uses Java serialization to store data.

This code is in the public domain. It has no dependencies other than the standard Java library.