all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

.NET Hooking – Harmonizing Managed Territory

Add to bookmarks
Jan. 8, 2024, 1:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Research by: Jiri Vinopal


Key Points



  • Check Point Research (CPR) provides an introduction to .NET managed hooking using the Harmony library.

  • We cover the most common examples of implementation using different types of Harmony patches.

  • The practical example using Harmony hooking to defeat the notorious “ConfuserEx2” obfuscator results in the “ConfuserEx2_String_Decryptor” tool.

  • CPR reveals a neat trick how to combine both debugging and hooking using the Harmony library (Harmony hooking from the dnSpyEx debugging context).


Introduction


For a malware researcher, …

check check point examples harmony hooking implementation introduction key key points library managed obfuscator patches point points research results tool types

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

How to Use Threat Intelligence Feeds 27 minutes ago | malware.news
attack can cybersecurity effectively +10
APT28 campaign directed against Polish government institutions 42 minutes ago | malware.news
apt28 article campaign cert +9
Is fear slowing down the adoption of self-driving cars? 57 minutes ago | malware.news
adoption autonomous autonomous vehicle cars +19
Protecting against cross-platform account takeover an hour ago | malware.news
account account takeover article link +10
CI/CD pipelines and the cloud: Are your development secrets at risk? an hour ago | malware.news
aws azure can cd pipelines +19
Veeam Service Provider Console Affected by Severe RCE Vulnerability: CVE-2024-29212 2 hours ago | malware.news
attackers backup code console +14
State of ransomware in 2024 3 hours ago | malware.news
attacks breaches businesses continue +20
LABScon23 Replay | macOS Components Used in North Korean Crypto-Heists 3 hours ago | malware.news
analysis apts cluster components +19
Monthly Threat Report May 2024: Satya Nadella’s Statement on Security, and a New UK Law … 5 hours ago | malware.news
commentary current cybersecurity data +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

XDR Detection Engineer

@ SentinelOne | Italy
View on infosec-jobs.com

Security Engineer L2

@ NTT DATA | A Coruña, Spain
View on infosec-jobs.com

Cyber Security Assurance Manager

@ Babcock | Portsmouth, GB, PO6 3EN
View on infosec-jobs.com

Senior Threat Intelligence Researcher

@ CloudSEK | Bengaluru, Karnataka, India
View on infosec-jobs.com

Cybersecurity Analyst 1

@ Spry Methods | Washington, DC (Hybrid)
View on infosec-jobs.com

Security Infrastructure DevOps Engineering Manager

@ Apple | Austin, Texas, United States
View on infosec-jobs.com
View more jobs