 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
|
|
|
|
||||||||||
|
||||||||||||||
|
||||||||||||||
|
#1
08-11-2008, 01:24 AM
|
|||
|
|||
Rerversing protected .net application
Hi,
Any good link / material which describes how to unpack the protected .net application. Also I was not able to take the memory dump using ollydump plug-in while running .net application from ollydbg, it would be nice if you can provide me the information about dumping the .net application. Thanks, Navin 
|
|
#2
08-11-2008, 02:32 AM
|
|||
|
|||
|
Look here
http://portal.b-at-s.info/tutorials.php you may be interested in CodeVeil Manual Unpacking tutor too.
__________________
Life can only be understood backwards but It must be read forwards.
|
|
#3
08-11-2008, 05:28 AM
|
|||
|
|||
|
Thanks for the link, actually in my case .net assembly is converted into unmanaged application after protection, so I can't disassemble it
 .Normally, what we do for native application, we run it under debugger , takes the dump , find the OEP and fixes the import table. What I need to do in case of .NET application, considering the fact that I can't dissamble it with ILDASM or any other tool. Another case in which we can't disassemble is, for mixed mode application. I hope you understand more now.
|
|
#4
08-11-2008, 08:52 AM
|
|||
|
|||
|
Check these two articles by Rendari
http://www.woodmann.com/forum/showthread.php?t=11474 http://www.woodmann.com/forum/showthread.php?t=11486 I hope it works.
__________________
Life can only be understood backwards but It must be read forwards.
|
|
#6
08-21-2008, 04:20 PM
|
|||
|
|||
|
__________________
Life can only be understood backwards but It must be read forwards.
|
Linear Mode
