Avoiding reflection in C# in way unsafer ways!

5/26/2025

2 minute read

For good reasons, many folks don't want to use reflection. Since .NET 8, we have a better way of dealing with this in most of the cases (when known in advance). But we can go the opposite: Make it even unsafer for a tiny bit performance!

Disclaimer: Needless to say this blog post is just for fun, and is just for educational and "entertaining" purposes.

Objects with private fields

Imagine we have the following object:

public class SecretContainer(int initialValue)
{
    private int _otherField = 2;
    private int _secret = initialValue;
}

And we want to get the value of _secret. With .NET 8, we can do things like:

[UnsafeAccessor(UnsafeAccessorKind.Field, Name = "_secret")]
static extern ref int GetCountField(SecretContainer secret);

And that gives us the correct answer. But let's make it unsecure as hack! Just because it is possible

Memory-Layout

We can use our knowledge about the object itself. We know that the second field is indeed the thing we are looking for. So we can get the "raw" (managed) memory of the object and get the slice we need.

static unsafe void DisplayPrivateField(SecretContainer secret)
{
    var handle = GCHandle.Alloc(secret, GCHandleType.Pinned);
    try
    {
        // Get pointer to the start of the object
        var ptr = handle.AddrOfPinnedObject();

        // Create Span<byte> over object's memory
        // As we have two int fields, we need to allocate 8 bytes at least
        // And hopefully there is no padding between the fields, ...
        var memory = new Span<byte>((void*)ptr, sizeof(int) * 2);

        // Skip 4 bytes because of the "_otherField"
        const int numberOffset = sizeof(int);
        var number = MemoryMarshal.Read<int>(memory[numberOffset..]);
        Console.WriteLine($"number = {number}");
    }
    finally
    {
        handle.Free();
    }
}

This "beauty" gives us the value of _secret without using reflection. Of course this has more problems than solutions:

The object must be pinned (otherwise the GC can move it)
We are relying on the memory layout of the object (which can change in future versions - imagine someone moving the field). But not only that, imagine things like the new field keyword in C# 14. We might be at the mercy of the compiler.

But interesting nevertheless.

A new way of doing reflection with .NET 8

.NET 8 introduced a new way of doing reflection. Why did they introduce this, and what are some benefits - this blog post will give you some insights.

9/19/2023

3 minute read

C#.NET 8 Reflection

A more flexible and enhanced way of logging in .NET 8

The latest version of the .NET (version 8) has introduced a "better" way of logging. This new way of logging is more flexible and enhanced than the previous versions. It is about the LoggerMessageAttribute.

11/15/2023

2 minute read

C#.NET Logging

Give your strings context with StringSyntaxAttribute

Strings are one of the most universal data types. We use them for URLs or regular expressions or even to define some date. With .NET 7 we have a new way of giving those strings a bit of meaning. Meet StringSyntaxAttribute. I also show you a way how to use them in .NET 6 and earlier.

1/1/2023

4 minute read

.NET C#

Table of Contents

Objects with private fields

Memory-Layout

Related articles you might enjoy

A new way of doing reflection with .NET 8

A more flexible and enhanced way of logging in .NET 8

Give your strings context with StringSyntaxAttribute