-
I hate you COM – Pitfalls of COM object activation
Background This is not a Windows COM 101, readers are expected to have a decent understanding of COM and CLR hosting internals Dotnet unamanged-api is not a stranger to Offssec tool developers, it enables developers to tinker with managed processes and the CLR itself from within a native process(say c/c++). You can see the whole…
-
Tale of Hosting .NET in unmanaged code Part 0x3: HavocFramework
recap We are wrapping up the \”Tale of Hosting .Net\” series by covering the implementation details of InlineAssembly-Execute feature in C5pider. Here in this post we are reiterating everything we saw in the earlier posts part-2, so make sure you read it because going forward we do not go in depth rather we are going…
-
Tale of Hosting .NET in unmanaged code- PART/0x1
offensive .NET Amazing folks in the community especially those who are inclined towards adversary simulation and other advanced attack vectors started tooling in C#. Why? you might ask. The reason is the .NET is at the heart of Windows and it is heavily integrated with the architecture itself, one could simply harness the power of…