[&] Which interface must a Java class implement to be serialized?
- Transmittable
- Streamable
- Serializable -- Correct
- Deserializable

[&] What is serialization in Java?
- Encrypting data for secure transmission
- Connecting Java applications with other languages
- Transforming text into binary code
- Converting an object's state into a byte stream -- Correct

[&] What role do gadget libraries play in exploiting deserialization vulnerabilities?
- They are secure encryption methods
- They contain known exploitation patterns -- Correct
- They automate code execution
- They provide user authentication features

[&] How does YsoSerial exploit Java deserialization vulnerabilities?
- By cleaning up serialized data
- By compressing transmitted data
- By enhancing serialized data's performance
- By generating payloads for arbitrary code execution -- Correct

[&] In the context of insecure deserialization, what is a gadget?
- A property in an exploit object -- Correct
- A security tool
- A serialization tool
- A data compression method