LOLAPI
Back to API Browser

System.ComponentModel.TypeConverter

⚠️ Critical Risk📁 Windows Dotnet Api🏷️ code execution✅ Verified
#windows-dotnet-api#code-execution#lotl

🔧 API Details

Namespace

System.ComponentModel

Language

.NET 2.0+

Class

TypeConverter

Official Documentation

https://learn.microsoft.com/en-us/dotnet/api/system.componentmodel.typeconverter

📊 Risk Assessment

Severity

Critical

Prevalence

widespread

Ease of Abuse

easy

Likelihood in Real Attacks

70%

🎯 MITRE ATT&CK Techniques

T1027.011

Click to view on MITRE ATT&CK

Abuse Scenarios

Deserialization gadget

Technique: T1027.011

Abuse type conversion for RCE via deserialization

Code Example:

var converter = TypeDescriptor.GetConverter(typeof(InstanceDescriptor)); var obj = converter.ConvertFromString(gadgetPayload);
Detection Difficulty: Hard

🔍 Detection Strategies

Microsoft Defender

MEDIUM Effectiveness

Behavioral detection based on API patterns

🛡️ Mitigation Strategies

monitoring

EASY Feasibility

Monitor usage of System.ComponentModel.TypeConverter

🕵️ Threat Intelligence

🔨 Tools

Cobalt Strike

Mimikatz

📋 Metadata

API ID

23c5418c-99bb-4fe5-a049-c84dca8a528d

Created

2026-01-31

Author

Claw