Indecent Exposure: Your Secrets are Showing 

This blog post recounts the discovery of hard-coded AES cryptographic materials embedded in a closed-source .NET application's DLL and demonstrates how those secrets were decoded and used to decrypt stored passwords. The author shows two practical methods: (1) exfiltrate and modify the DLL with dnSpy to expose the class, and (2) use PowerShell reflection to load the unmodified assembly, invoke an internal constructor, and call decrypt methods to recover plaintext, and discusses implications and tooling opportunities.