NET Manifesto - Win Friends and Influence the Loader - Casey Smith

Explore the intricacies of .NET manifests and their impact on loader behavior in this 25-minute conference talk from Derbycon 2019. Delve into CLR binding, probing mechanisms, and side-by-side loading while gaining insights into fusion logging and its output. Discover the role of profilers, App Domain Managers, and environment variables in .NET applications. Examine dynamic wrappers, COADACT, and MP Load Library techniques. Investigate Dotnet 2J, Dynamic Ripper, and Activation Context concepts. Learn about JScript implementation, single file bias, and System32 .NET binaries. Conclude with an overview of PowerShell Arsenal and a live code demonstration, equipping you with valuable knowledge for manipulating .NET manifests and influencing loader behavior.

Intro
Welcome
Introduction
Outline
References
Hacking
Learning Objectives
CLR
Binding and probing
What does a manifest do
Side by side load
Fusion logging
Fusion log output
Profilers
App Domain Manager
JasProfiler
Environment Variables
Dynamic Wrapper
CoADAC
TMP
Load Library
Dotnet 2J
Dynamic Ripper X
Reference
Activation Context
Reference Code
JScript
Single File Bias
Summary
System32 NET binaries
PowerShell Arsenal
Code
Demo File