.NET Framework Rootkits: Backdoors inside your Framework

This paper introduces a new method that enables an attacker to change the .NET language. The paper covers various ways to develop rootkits for the .NET framework, so that every EXE/DLL that runs on a modified Framework will behave differently than what it's supposed to do. Code reviews will not...
Erez Metula
November 13, 2008

All papers are copyrighted. No re-posting of papers is permitted