Reg:decompile dll's
-
my c#.net projects are in 2.0/3.5 framework. Now i need to convert it to 4.0 framework. also i need to remove vulnerabilities (sql injection,XSS etc). So my question is, do i need to remove vulnerabilities for my solution files (OR) need to decompile and remove vulnerabilities for each dll??
-
my c#.net projects are in 2.0/3.5 framework. Now i need to convert it to 4.0 framework. also i need to remove vulnerabilities (sql injection,XSS etc). So my question is, do i need to remove vulnerabilities for my solution files (OR) need to decompile and remove vulnerabilities for each dll??
-
Yes. I got that. but my question is about the existing DLL's. Two scenarios(questions): 1. If i have source code for dll, i can do it. but is that necessary? 2. If i dont have source code for dll, then do i need to decompile it (like using dotpeek software) and do modification and again compile it?
-
Yes. I got that. but my question is about the existing DLL's. Two scenarios(questions): 1. If i have source code for dll, i can do it. but is that necessary? 2. If i dont have source code for dll, then do i need to decompile it (like using dotpeek software) and do modification and again compile it?
1. Yes 2. Yes Why would you not have the source code to assemblies that you have written?
"These people looked deep within my soul and assigned me a number based on the order in which I joined." - Homer
-
Yes. I got that. but my question is about the existing DLL's. Two scenarios(questions): 1. If i have source code for dll, i can do it. but is that necessary? 2. If i dont have source code for dll, then do i need to decompile it (like using dotpeek software) and do modification and again compile it?
-
1. Yes 2. Yes Why would you not have the source code to assemblies that you have written?
"These people looked deep within my soul and assigned me a number based on the order in which I joined." - Homer
Its maintenance project developed few years back. Guys who developed this project are not here. so we dont have backup source code of each dll's :( Now our ultimate aim is to remove vulnerabilities from our application & pass through server security scan. We thought to do only for main project. But now from this conversation we came to know that we need to decompile all dll's and need to work.
-
1. Yes, of course it is necessary. The DLL should be in sync with the source code. 2. Why do you not have the source code? Do you use a proper source control system to protect your applications?
-
Currently we started to use. but these existing applications are developed 8 yrs back. Thanks for your answer(s)
Karan_TN wrote:
these existing applications are developed 8 yrs back.
Strange how careless some organisations are. I was used to (manually) storing source code securely, on systems I worked on even back in the 1960s. Long before source control systems had been invented.
