.NET reversing with Reflexil

by Ajay Yadav
Oct. 7, 2017 0 comments INFOSEC Institute Pen Testing & Audits

Technically speaking a .NET built software or component (DLL) resembles an executable assembly. That’s because it’s compiled in MSIL, and you can usually view the source in Reflector and many other tools such Ispy. But when it comes to commercial software, more and more complicated protection mechanisms are being implemented to shield them. After analyzing many products, I discovered so much about how all these components share to protect themselves. My motive to write this paper is that I couldn’t find any papers on this topic in detail. That’s because hackers are still not interested in this platform yet. Today, I have chosen a target that is unfortunately full of bugs, so don’t expect it to be very hard. This is just an introduction, and later I will demonstrate more difficult subjects, such as code injection.