A Study on .NET Framework for Red Team - Part I

Aj MaChInE
Aj MaChInE
A Study on .NET Framework for Red Team – Part I @ 若渴 2019.10.20 <ajblane0612@gmail.com> AjMaChInE
Reference [0] 2019, IronPython… OMFG Introducing BYOI Payloads (Bring Your Own Interpreter) [1] 2019, Common Language Runtime Hook for Persistence [2] 2019, .NET Manifesto [3] 2019, Executing C# Assemblies from Jscript and wscript with DotNetToJscript [4] 2017, .NET HIJACKING to DEFEND POWERSHELL [5] 2014, .NET Framework Rootkits
WSH – Window Script Host DLR – Dynamic Language Runtime CLR – Common Language Runtime BYOI – Bring Your Own Interpreter ADM – Application Domain Manager MSIL – Microsoft Intermediate Language
[0]
A Study on .NET Framework for Red Team - Part I
[1]
[1]
BYOI – Bring Your Own Interpreter
[0]
[0]
[0]
WSH File Smuggling
Executing C# Assemblies from Jscript and wscript with DotNetToJscript [3] ● WSH (Window Script Host) ● Embedded lanuage & binding, like .NET ● Jscript -> .NET ● File smuggling ● Jscript – data (own assembly) -> save file -> load file -> execution
Can it be used to reach file smuggling? [2]
Persistence
CLR Profiler Dynamic DLL Hook Injection Specifying the CLR environment Defining the CLR Profiler [4]
ModuleLoadFinished CLR Profiler for Hooking [4]
Common Language Runtime Hook for Persistence [1] – Step 0
Common Language Runtime Hook for Persistence [1] – Step 1
Common Language Runtime Hook for Persistence [1] – Step 2
Common Language Runtime Hook for Persistence [1] – Step 3
Common Language Runtime Hook for Persistence [1] – Step 4
Common Language Runtime Hook for Persistence [1] – Result
How to Influence/Encourage Any .NET Application in System32 to Load Arbitrary Assembly [2]
[2]
[2]
.NET-Spolit [5] [5] [Microsoft Docs]
Futher Study ● 2018, .NET Instrumentation via MSIL bytecode injection ● 2018, Offensive Retooling in donet for Red Team ● med0x2e/GadgetToJScript
1 of 28

A Study on .NET Framework for Red Team - Part I

Download to read offline
Education

一直沒有對.NET好好的了解,喜歡從 Red Team 觀點來學習。利用中秋連假閱讀了幾篇相關投影片整理成 Part I 在若渴分享。

Aj MaChInE
Aj MaChInE

Recommended

Direct3D to WPFDirect3D to WPF
Direct3D to WPFDaosheng Mu
1.9K views12 slides
Dotnet Course in PuneDotnet Course in Pune
Dotnet Course in Puneharshclassboat
62 views7 slides
LibreOffice Online – Nextcloud, One Step Closer Towards Open Source HeavenLibreOffice Online – Nextcloud, One Step Closer Towards Open Source Heaven
LibreOffice Online – Nextcloud, One Step Closer Towards Open Source HeaveniCRAFT Corp. (アイクラフト株式会社)
878 views23 slides
Getting started with .NET Core on LinuxGetting started with .NET Core on Linux
Getting started with .NET Core on LinuxJochen Kirstätter
128 views12 slides
02 intro to programming in .net (part 2)02 intro to programming in .net (part 2)
02 intro to programming in .net (part 2)Felisha Hosein
698 views19 slides
Net frameworkNet framework
Net frameworkjhsri
1.1K views35 slides

More Related Content

Similar to A Study on .NET Framework for Red Team - Part I

Similar to A Study on .NET Framework for Red Team - Part I(20)

Net frameworkNet framework
Net framework
Aravindharamanan S158 views
Introduction to .netIntroduction to .net
Introduction to .net
Karthika Parthasarathy1.1K views
Cloud development technology sharing (BlueMix premier)Cloud development technology sharing (BlueMix premier)
Cloud development technology sharing (BlueMix premier)
湯米吳 Tommy Wu716 views
.Net introduction by Quontra Solutions.Net introduction by Quontra Solutions
.Net introduction by Quontra Solutions
QUONTRASOLUTIONS598 views
Pengantar Pemrograman Visual IIPengantar Pemrograman Visual II
Pengantar Pemrograman Visual II
Wahyu Primadi589 views
Vb ch 2-introduction_to_.netVb ch 2-introduction_to_.net
Vb ch 2-introduction_to_.net
bantamlak dejene29 views
introduction to .netintroduction to .net
introduction to .net
bantamlak dejene38 views
KushalKushal
Kushal
bablu2010184 views
Introduction to .net frameworkIntroduction to .net framework
Introduction to .net framework
Arun Prasad88.2K views
Dotnet ch1Dotnet ch1
Dotnet ch1
007laksh1.8K views
Android InternalsAndroid Internals
Android Internals
Marko Gargenta1.8K views
Introduction of .net frameworkIntroduction of .net framework
Introduction of .net framework
Prognoz Technologies Pvt. Ltd.684 views
IBM Bluemix Introdution for HackathonsIBM Bluemix Introdution for Hackathons
IBM Bluemix Introdution for Hackathons
gjuljo1.6K views
Presentation1Presentation1
Presentation1
kpkcsc605 views
.Net framework.Net framework
.Net framework
Viv EK1.1K views
Net frameworkNet framework
Net framework
sumit1503128 views
01 intro to programming in .net01 intro to programming in .net
01 intro to programming in .net
Felisha Hosein3.4K views
1 get started with c#1 get started with c#
1 get started with c#
Tuan Ngo458 views
C#C#
C#
Sayed El-Abady137 views
Visual Studio 2012 introductionVisual Studio 2012 introduction
Visual Studio 2012 introduction
Nicko Satria Consulting5K views

More from Aj MaChInE

A study on NetSpectreA study on NetSpectre
A study on NetSpectreAj MaChInE
211 views27 slides

More from Aj MaChInE(19)

An Intro on Data-oriented AttacksAn Intro on Data-oriented Attacks
An Intro on Data-oriented Attacks
Aj MaChInE301 views
A study on NetSpectreA study on NetSpectre
A study on NetSpectre
Aj MaChInE211 views
Introduction to Adversary Evaluation ToolsIntroduction to Adversary Evaluation Tools
Introduction to Adversary Evaluation Tools
Aj MaChInE1.2K views
[若渴] A preliminary study on attacks against consensus in bitcoin[若渴] A preliminary study on attacks against consensus in bitcoin
[若渴] A preliminary study on attacks against consensus in bitcoin
Aj MaChInE345 views
[RAT資安小聚] Study on Automatically Evading Malware Detection[RAT資安小聚] Study on Automatically Evading Malware Detection
[RAT資安小聚] Study on Automatically Evading Malware Detection
Aj MaChInE795 views
[若渴] Preliminary Study on Design and Exploitation of Trustzone[若渴] Preliminary Study on Design and Exploitation of Trustzone
[若渴] Preliminary Study on Design and Exploitation of Trustzone
Aj MaChInE281 views
[若渴]Study on Side Channel Attacks and Countermeasures [若渴]Study on Side Channel Attacks and Countermeasures
[若渴]Study on Side Channel Attacks and Countermeasures
Aj MaChInE858 views
[若渴計畫] Challenges and Solutions of Window Remote Shellcode[若渴計畫] Challenges and Solutions of Window Remote Shellcode
[若渴計畫] Challenges and Solutions of Window Remote Shellcode
Aj MaChInE981 views
[若渴計畫] Introduction: Formal Verification for Code[若渴計畫] Introduction: Formal Verification for Code
[若渴計畫] Introduction: Formal Verification for Code
Aj MaChInE718 views
[若渴計畫] Studying ASLR^cache[若渴計畫] Studying ASLR^cache
[若渴計畫] Studying ASLR^cache
Aj MaChInE430 views
[若渴計畫] Black Hat 2017之過去閱讀相關整理[若渴計畫] Black Hat 2017之過去閱讀相關整理
[若渴計畫] Black Hat 2017之過去閱讀相關整理
Aj MaChInE434 views
[若渴計畫] Studying Concurrency[若渴計畫] Studying Concurrency
[若渴計畫] Studying Concurrency
Aj MaChInE4K views
閱讀文章分享@若渴 2016.1.24閱讀文章分享@若渴 2016.1.24
閱讀文章分享@若渴 2016.1.24
Aj MaChInE1.3K views
[若渴計畫2015.8.18] SMACK[若渴計畫2015.8.18] SMACK
[若渴計畫2015.8.18] SMACK
Aj MaChInE1.2K views
[SITCON2015] 自己的異質多核心平台自己幹[SITCON2015] 自己的異質多核心平台自己幹
[SITCON2015] 自己的異質多核心平台自己幹
Aj MaChInE2.6K views
[MOSUT20150131] Linux Runs on SoCKit Board with the GPGPU[MOSUT20150131] Linux Runs on SoCKit Board with the GPGPU
[MOSUT20150131] Linux Runs on SoCKit Board with the GPGPU
Aj MaChInE1.3K views
[若渴計畫]由GPU硬體概念到coding CUDA[若渴計畫]由GPU硬體概念到coding CUDA
[若渴計畫]由GPU硬體概念到coding CUDA
Aj MaChInE4.8K views
[若渴計畫]64-bit Linux Return-Oriented Programming[若渴計畫]64-bit Linux Return-Oriented Programming
[若渴計畫]64-bit Linux Return-Oriented Programming
Aj MaChInE2.2K views
[MOSUT] Format String Attacks[MOSUT] Format String Attacks
[MOSUT] Format String Attacks
Aj MaChInE2.6K views

Recently uploaded

Psychology KS4Psychology KS4
Psychology KS4WestHatch
52 views4 slides

Recently uploaded(20)

CWP_23995_2013_17_11_2023_FINAL_ORDER.pdfCWP_23995_2013_17_11_2023_FINAL_ORDER.pdf
CWP_23995_2013_17_11_2023_FINAL_ORDER.pdf
SukhwinderSingh895865467 views
Lecture: Open InnovationLecture: Open Innovation
Lecture: Open Innovation
Michal Hron82 views
Community-led Open Access Publishing webinar.pptxCommunity-led Open Access Publishing webinar.pptx
Community-led Open Access Publishing webinar.pptx
Jisc49 views
GSoC 2024GSoC 2024
GSoC 2024
DeveloperStudentClub1049 views
OEB 2023 Co-learning To Speed Up AI Implementation in Courses.pptxOEB 2023 Co-learning To Speed Up AI Implementation in Courses.pptx
OEB 2023 Co-learning To Speed Up AI Implementation in Courses.pptx
Inge de Waard148 views
Psychology KS4Psychology KS4
Psychology KS4
WestHatch52 views
Streaming Quiz 2023.pdfStreaming Quiz 2023.pdf
Streaming Quiz 2023.pdf
Quiz Club NITW87 views
The Open Access Community Framework (OACF) 2023 (1).pptxThe Open Access Community Framework (OACF) 2023 (1).pptx
The Open Access Community Framework (OACF) 2023 (1).pptx
Jisc51 views
Compare the flora and fauna of Kerala and Chhattisgarh ( Charttabulation) Compare the flora and fauna of Kerala and Chhattisgarh ( Charttabulation)
Compare the flora and fauna of Kerala and Chhattisgarh ( Charttabulation)
AnshulDewangan395 views
ICANNICANN
ICANN
RajaulKarim2057 views
Material del tarjetero LEES Travesías.docxMaterial del tarjetero LEES Travesías.docx
Material del tarjetero LEES Travesías.docx
Norberto Millán Muñoz57 views
Class 10 English notes 23-24.pptxClass 10 English notes 23-24.pptx
Class 10 English notes 23-24.pptx
Tariq KHAN63 views
Nico Baumbach IMR Media ComponentNico Baumbach IMR Media Component
Nico Baumbach IMR Media Component
InMediaRes1186 views
Structure and Functions of Cell.pdfStructure and Functions of Cell.pdf
Structure and Functions of Cell.pdf
Nithya Murugan142 views
ICS3211_lecture 08_2023.pdfICS3211_lecture 08_2023.pdf
ICS3211_lecture 08_2023.pdf
Vanessa Camilleri68 views
Scope of Biochemistry.pptxScope of Biochemistry.pptx
Scope of Biochemistry.pptx
shoba shoba110 views
BYSC infopack.pdfBYSC infopack.pdf
BYSC infopack.pdf
Fundacja Rozwoju Społeczeństwa Przedsiębiorczego144 views
Classification of crude drugs.pptxClassification of crude drugs.pptx
Classification of crude drugs.pptx
GayatriPatra1449 views
JiscOAWeek_LAIR_slides_October2023.pptxJiscOAWeek_LAIR_slides_October2023.pptx
JiscOAWeek_LAIR_slides_October2023.pptx
Jisc50 views
Use of Probiotics in Aquaculture.pptxUse of Probiotics in Aquaculture.pptx
Use of Probiotics in Aquaculture.pptx
AKSHAY MANDAL69 views

A Study on .NET Framework for Red Team - Part I