.NET Reversing and Exploitation for Cool Kids

Explore the world of .NET reverse engineering and exploitation in this 50-minute conference talk from OWASP AppSec California 2015. Delve into practical examples of both application-level and framework vulnerabilities in managed languages beyond Java. Examine the strengths and weaknesses of .NET security features, including techniques for bypassing strong-name signing and the Global Assembly Cache (GAC). Witness a demonstration on modifying .NET framework behavior through DLL byte patching. Gain insights from Kelly Lum, an experienced information security professional with a background in code auditing, penetration testing, and application security.