• 2020-01-18
  • 8 minutes

Breaking C# SecureString

As discussed previously in Heap Inspection post keeping passwords and other sensitive data in memory may be insecure as they can be inspected or dumped. Although it is almost impossible to completely mitigate Heap Inspection there are several techniques to reduce the time frame sensitive data keeps in memory, lowering the risk of exposure. Lets […]
Continue Reading
  • 2019-06-16
  • 10 minutes

Heap Inspection

Heap Inspection is a vulnerability that most of the times developers don’t care about, since it is not easy to mitigate, and most of libraries/frameworks are not prepared to handle it. So what is Heap Inspection? Basically it’s just when you get access to a machine and get access to process memory data. Then you […]
Continue Reading