Exploiting Exchange PowerShell After ProxyNotShell: Part 4 – No Argument Constructor

This excerpt from an Exchange PowerShell research series analyzes the ConvertViaNoArgumentConstructor deserialization mechanism, explains how a recent patch changed type validation to an allow list (affecting previous RCE chains), and highlights that no-argument-constructor-based conversions remain a powerful vector for building remote code execution chains despite the mitigation.