This talk will demonstrate attacking .NET applications at runtime. I will show how to modify running applications with advanced .NET and assembly level attacks that alter the control flow of any .NET application. Two tools, Gray Frost and Gray Storm will be shown in real world attack scenarios. These tools allow penetration testers and attackers to carry out advanced post exploitation attacks against the .NET runtime. This presentation gives an overview of how to use these new open source tools.