Koppeling - Adaptive DLL Hijacking / Dynamic Export Forwarding

This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.

This project is comprised of the following elements:

• Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
• Functions.dll: The "real" library which exposes valid functionality to the harness
• Theif.dll: The "evil" library which is attempting to gain execution
• NetClone.exe: A C# application which will clone exports from one DLL to another
• PyClone.py: A python 3 script which mimics NetClone functionality

The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.

• Stc-Forward: Forwards export names during the build process using linker comments
• Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
• Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
• Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying

The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.

Example

Prepare a hijack scenario with an obviously incorrect DLL

> copy C:\windows\system32\whoami.exe .\whoami.exe
        1 file(s) copied.

> copy C:\windows\system32\kernel32.dll .\wkscli.dll
        1 file(s) copied.

Executing in the current configuration should result in an error

> whoami.exe 

"Entry Point Not Found"

Convert kernel32 to proxy functionality for wkscli

> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.

> whoami.exe
COMPUTER\User

Download Koppeling

Related news

1. Computer Hacker
2. Hacking Tools For Kali Linux
3. Pentest Tools Open Source
4. Hack Tools For Windows
5. Nsa Hacker Tools
6. Hacker Tools List
7. New Hacker Tools
8. Hack Tools Github
9. Best Hacking Tools 2020
10. Pentest Tools Port Scanner
11. Tools For Hacker
12. Hacker Tools Mac
13. Hacking Tools Name
14. Hacking Tools For Mac
15. Hacker Tools Apk Download
16. Hack Tools For Ubuntu
17. Nsa Hack Tools
18. Hacker Tools For Windows
19. New Hacker Tools
20. Hacker Tools List
21. Hacking Tools Online
22. Hacking Tools Kit
23. Hack Tools For Mac
24. Hacker
25. Hack Tools Pc
26. Hack Tool Apk No Root
27. Hacker Tools Free
28. Hacking Tools For Games
29. Beginner Hacker Tools
30. Best Hacking Tools 2020
31. Hacking Tools For Games
32. Game Hacking
33. Hacker Tools 2019
34. Hack Apps
35. Hacker Tools Apk Download
36. Hacking App
37. Hacker Techniques Tools And Incident Handling
38. Hack Tools For Games
39. Pentest Tools Download
40. Hacking Tools For Windows
41. Hacking Tools
42. Beginner Hacker Tools
43. Android Hack Tools Github
44. Blackhat Hacker Tools
45. Hacker Tools Free
46. Easy Hack Tools
47. Hacking Tools Mac
48. Pentest Tools Port Scanner
49. Hack Apps
50. Pentest Tools Free
51. Termux Hacking Tools 2019
52. New Hacker Tools
53. Install Pentest Tools Ubuntu
54. Pentest Automation Tools
55. Hacker Techniques Tools And Incident Handling
56. Termux Hacking Tools 2019
57. Hack Tools For Ubuntu
58. Hacker Tools Github
59. Hack App
60. Hacking Tools Usb
61. Install Pentest Tools Ubuntu
62. Bluetooth Hacking Tools Kali
63. Easy Hack Tools
64. Pentest Recon Tools
65. Easy Hack Tools
66. World No 1 Hacker Software
67. Hacker Hardware Tools
68. Hacking Tools For Mac
69. Hacking Tools Kit
70. Hacking Tools For Windows 7
71. Hacker
72. Hacker Tools Linux
73. Hacking Tools And Software
74. Pentest Reporting Tools
75. Hacking Tools
76. Hack Tools 2019
77. Hacker Tools List
78. Pentest Reporting Tools
79. Hacker Tools Free
80. Pentest Tools For Ubuntu
81. Pentest Tools For Windows
82. Hack Tools Pc
83. Hackers Toolbox
84. Hacker Techniques Tools And Incident Handling
85. Best Hacking Tools 2019
86. Pentest Tools Free
87. Hacker Tools For Ios
88. Hacker Security Tools
89. Pentest Reporting Tools
90. Hacking Tools For Kali Linux
91. Hacker Tools Free Download
92. Hacking Tools 2019
93. Wifi Hacker Tools For Windows
94. Hacking Tools For Windows 7
95. Hacker Tool Kit
96. Pentest Tools Online
97. Pentest Tools Url Fuzzer
98. How To Hack
99. Best Hacking Tools 2020
100. Hacker Techniques Tools And Incident Handling
101. Hacking Tools
102. Hacking Tools For Pc
103. Pentest Recon Tools
104. Pentest Tools List
105. Hack Tools For Mac
106. Hack Tools Pc
107. Nsa Hack Tools
108. Hacker Tools 2020
109. Hacker Tools
110. Pentest Tools Online
111. Blackhat Hacker Tools
112. Easy Hack Tools
113. Pentest Reporting Tools
114. Black Hat Hacker Tools
115. Hacking Tools For Windows
116. Pentest Recon Tools
117. What Are Hacking Tools
118. Hack Tools Github
119. Hacking Tools Github
120. Pentest Tools For Ubuntu
121. Hack Tools For Pc
122. Hacking Tools For Beginners
123. Termux Hacking Tools 2019
124. Tools 4 Hack
125. How To Install Pentest Tools In Ubuntu
126. Hack And Tools
127. Hacker Tools Apk Download
128. Hacker Techniques Tools And Incident Handling
129. Ethical Hacker Tools
130. Pentest Tools For Ubuntu
131. Hacking Apps
132. World No 1 Hacker Software
133. Hack Tools Pc
134. Pentest Tools Find Subdomains
135. Pentest Tools Open Source
136. Beginner Hacker Tools
137. Hacker Tools 2020
138. Hacker Hardware Tools
139. Game Hacking
140. Pentest Tools Download
141. Hacker Tools Apk
142. World No 1 Hacker Software
143. How To Make Hacking Tools
144. Hacking Tools Hardware
145. Hacking App
146. Hack Tools Pc
147. Best Pentesting Tools 2018
148. Hacker Tools Online
149. Hacking Tools Download
150. Hack Apps
151. Hacker Tools For Windows
152. Hack Tool Apk
153. Hacking Tools And Software
154. Hacker Tools Mac
155. Hacker Security Tools
156. Hacking Tools Kit