Jon McCoy Hacks .NET
Episode #788
Thursday, July 26, 2012
Carl and Richard talk to Darth Vader, a.k.a. Jon McCoy who shows developers how to hack .NET apps in memory and on disk. This turns into a pretty dark discussion about how challenging it is to secure in depth - infiltration and exfiltration vectors, how protection tools (like anti-virus) are great mechanisms for spreading malware. And according to Jon, .NET is a great tool for hiding malicious code. He talks about how he can modify a .NET application while it is running and use it to manipulate and steal information. Not a happy show!
Guests:
Jon McCoy
Jon McCoy is a .NET Software Engineer that focuses on security and forensics. He has worked on a number of Open Source projects ranging from hacking tools to software for paralyzed people.
Links:
- Open Web Application Security Project https://www.owasp.org/index.php/Category:OWASP_Project
- Jon McCoy's Site http://digitalbodyguard.com/