.Net-sploit hides rootkits in Microsoft .Net framework

A computer security researcher has released an upgraded tool called “.Net-Sploit 1.0”, allows for modification of .Net, a piece of software installed on most Windows machines that allows the computers to execute certain types of applications. .Net-Sploit allows a hacker to modify the .Net framework on targeted machines, inserting rootkit-style malicious software in a place […]

A computer security researcher has released an upgraded tool called “.Net-Sploit 1.0”, allows for modification of .Net, a piece of software installed on most Windows machines that allows the computers to execute certain types of applications. .Net-Sploit allows a hacker to modify the .Net framework on targeted machines, inserting rootkit-style malicious software in a place untouched by security software and where few security people would think to look, said Erez Metula, the software security engineer for 2BSecure who wrote the tool. Metula has published a white paper on the technique as well as the latest version of .Net-Sploit.

Full Article