Accéder au contenu principal

Koppeling - Adaptive DLL Hijacking / Dynamic Export Forwarding

Par


This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.

This project is comprised of the following elements:

  • Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
  • Functions.dll: The "real" library which exposes valid functionality to the harness
  • Theif.dll: The "evil" library which is attempting to gain execution
  • NetClone.exe: A C# application which will clone exports from one DLL to another
  • PyClone.py: A python 3 script which mimics NetClone functionality

The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.

  • Stc-Forward: Forwards export names during the build process using linker comments
  • Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
  • Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
  • Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying

The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.


Example

Prepare a hijack scenario with an obviously incorrect DLL

> copy C:\windows\system32\whoami.exe .\whoami.exe
        1 file(s) copied.

> copy C:\windows\system32\kernel32.dll .\wkscli.dll
        1 file(s) copied.

Executing in the current configuration should result in an error

> whoami.exe 

"Entry Point Not Found"

Convert kernel32 to proxy functionality for wkscli

> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.

> whoami.exe
COMPUTER\User

More articles


  1. Game Hacking
  2. Growth Hacker Tools
  3. Pentest Tools Tcp Port Scanner
  4. Hacker Tools 2020
  5. Hacker Tools Linux
  6. Hack Tools For Mac
  7. Pentest Tools Url Fuzzer
  8. Hacking Tools For Windows Free Download
  9. Pentest Box Tools Download
  10. Blackhat Hacker Tools
  11. Pentest Tools Website
  12. Hacker Tools 2019
  13. Hacking Tools Software
  14. Pentest Tools For Android
  15. Hacker Tools Hardware
  16. Hacker Tools Windows
  17. Pentest Tools Kali Linux
  18. Hacking Tools 2019
  19. Hacking Tools And Software
  20. Hack Tools Mac
  21. Hacking Tools Github
  22. Hacker Tools Hardware
  23. Hacker Security Tools
  24. Hacks And Tools
  25. How To Hack
  26. Hackrf Tools
  27. Hacker Tools For Pc
  28. Computer Hacker
  29. Hacker Tools Apk
  30. Pentest Tools Review
  31. Pentest Tools Online
  32. Hacking Tools Mac
  33. Hack Tools Online
  34. Pentest Tools Url Fuzzer
  35. Nsa Hack Tools Download
  36. Hacker Search Tools
  37. New Hacker Tools
  38. Top Pentest Tools
  39. Hack Tool Apk
  40. Hacking Tools Software
  41. Hack And Tools
  42. Hacking Tools Software
  43. Hacker Tools Github
  44. Hacking Tools For Mac
  45. Hacking Tools Software
  46. Hack And Tools
  47. Tools Used For Hacking
  48. Hacker Tools For Pc
  49. Hack Rom Tools
  50. Pentest Tools For Mac
  51. Hackers Toolbox
  52. Hack Tools For Windows
  53. Hacker Search Tools
  54. Top Pentest Tools
  55. Hacking App
  56. Hack And Tools
  57. Pentest Tools Bluekeep
  58. Hacking Tools For Windows Free Download
  59. Growth Hacker Tools
  60. Hacker Hardware Tools
  61. Hacker Tools For Mac
  62. New Hacker Tools
  63. Pentest Tools Find Subdomains
  64. Pentest Tools Windows
  65. Top Pentest Tools
  66. Hacker Tools Mac
  67. Hacker Tool Kit
  68. Hackers Toolbox
  69. New Hack Tools
  70. Pentest Tools Find Subdomains
  71. Hacking Tools Mac
  72. Hacking Tools
  73. Hack Tools Pc
  74. Hacking Tools For Windows Free Download
  75. Install Pentest Tools Ubuntu
  76. Hacker Hardware Tools
  77. Hacking Tools 2020
  78. Pentest Tools Alternative
  79. Hacking Tools Pc
  80. Install Pentest Tools Ubuntu
  81. Hacker Tools Free
  82. What Is Hacking Tools
  83. Hacking Tools Kit
  84. How To Install Pentest Tools In Ubuntu
  85. How To Hack
  86. Best Hacking Tools 2019
  87. Pentest Tools Apk
  88. Hacker Hardware Tools
  89. Hacking Tools Free Download
  90. Pentest Tools Url Fuzzer
  91. Pentest Tools Find Subdomains

Commentaires

Enregistrer un commentaire

Posts les plus consultés de ce blog

آفرینک | تماشای آنلاین انیمیشن و کارتون

Par
https://afarinak.com/tags/%D8%A7%D9%86%DB%8C%D9%85%DB%8C%D8%B4%D9%86-%D9%87%D8%A7%DB%8C-%D8%A8%D8%B1%D9%86%D8%AF%D9%87-%D8%A7%D8%B3%DA%A9%D8%A7%D8%B1/ https://afarinak.com/tags/%D9%BE%D8%B1%D9%81%D8%B1%D9%88%D8%B4%D8%AA%D8%B1%DB%8C%D9%86-%D8%A7%D9%86%DB%8C%D9%85%DB%8C%D8%B4%D9%86-%D9%87%D8%A7%DB%8C-2016/ https://afarinak.com/tags/best-animated-movies-2017/ https://tidano.com/ https://funibo.com/ http://www.aparat.com/afarinak https://t.me/joinchat/AAAAAD67ZyQn7_qBcGjPgw https://www.instagram.com/afarinak_com/ https://twitter.com/afarinak
Enregistrer un commentaire
Lire la suite

HTML5 Games On Android

Par
On my last hollidays, I made two HTML5 games, and published on android market. Nowadays javascript has powerful libraries for doing almost everything, and also there are several compilers from java or c code to javascript, converting opengl c code to html5 canvas, but definitely, javascript execution is slower than dalvik applications, and of course much slower than arm c libs. For improving the speed of sounds and images loader, I have used javascript asynchronous execution and scheduling priority has been controlled with setTimeout/setInterval which deprioritize or priorize a code block. This games are published on the android market here: Android Planets and here: Far Planet Related news Hacker Hardware Tools Pentest Tools Port Scanner Hacker Tools For Mac Tools Used For Hacking Hacker Techniques Tools And Incident Handling Easy Hack Tools Hacking Tools Kit Hacking Tools Usb Hacker Hardware Tools Hacker Tools Hardware Hack Tools For Windows Hacking Tools For G...
Enregistrer un commentaire
Lire la suite

BeEF: Browser Exploitation Framework

Par
"BeEF is the browser exploitation framework. A professional tool to demonstrate the real-time impact of XSS browser vulnerabilities. Development has focused on creating a modular structure making new module development a trivial process with the intelligence residing within BeEF. Current modules include the first public Inter-protocol Exploit, a traditional browser overflow exploit, port scanning, keylogging, clipboard theft and more." read more... Website: http://www.bindshell.net/tools/beef Related links Pentest Automation Tools Ethical Hacker Tools Hacking Tools For Windows Free Download Pentest Reporting Tools Hack Tool Apk No Root Nsa Hack Tools Download Beginner Hacker Tools Hacking Tools For Windows Free Download Hack Tools For Mac Hack Tool Apk No Root Kik Hack Tools Hacking App Pentest Tools List Nsa Hacker Tools Hack Tools Mac Hacking Tools Kit Pentest Tools For Android Hack Tools For Windows Hackrf Tools Tools 4 Hack Hacking Tools Mac Hacking ...
Enregistrer un commentaire
Lire la suite