Hey mates,
in the last part I used MSIL to add a File.WriteAllBytes() call, for dumping the packed executable. This time I show you a much easier way for dumping .NET-applications called MegaDumper.
MegaDumper
MegaDumper is a tool which can easily dump .NET-executables directly from memory without the need of a skilled reverser 
. When the application is better protected than our example last time, it could be useful to have a one-click dumper. If youâre interested in how MegaDumper does the job, just decompile the application and have a look at it. Youâre a reverser 
!
Usage
Download the tool here; it doesnât have to get installed. Now just run the loader from last time and open MegaDumper:
Just select the application you want to dump, open the context menu and click on .Net dump. Yes, itâs that low⌠Finally open the newly created folder âDumpsâ and search for the dumped executable. Youâll find more than one but Iâm sure youâre clever enough to figure out which oneâs the right .
Conclusion
This time a very small introduction about .Net dumping for losers. But anybody appreciates some help when heâs working on a heavy case, so I think this tool perfectly suits into our arsenal 
. Again I recommend you to try breaking the remaining defenses of the CrackMe on your own for learning by doing. Nothing helps better with understanding something 
.
|-TheDoctor-|