This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.
This project is comprised of the following elements:
- Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
- Functions.dll: The "real" library which exposes valid functionality to the harness
- Theif.dll: The "evil" library which is attempting to gain execution
- NetClone.exe: A C# application which will clone exports from one DLL to another
- PyClone.py: A python 3 script which mimics NetClone functionality
The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.
- Stc-Forward: Forwards export names during the build process using linker comments
- Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
- Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
- Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying
The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.
Prepare a hijack scenario with an obviously incorrect DLL
> copy C:\windows\system32\whoami.exe .\whoami.exe
1 file(s) copied.
> copy C:\windows\system32\kernel32.dll .\wkscli.dll
1 file(s) copied.
Executing in the current configuration should result in an error
> whoami.exe
"Entry Point Not Found"
Convert kernel32 to proxy functionality for wkscli
> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.
> whoami.exe
COMPUTER\User
- Hacker Tools For Pc
- Nsa Hack Tools
- Hacker Tools Software
- Install Pentest Tools Ubuntu
- Ethical Hacker Tools
- Pentest Tools List
- Hack App
- Hacker Tools Mac
- Hacking Tools Usb
- Game Hacking
- Hacker Tools For Pc
- Hacking Tools For Windows
- Pentest Tools Online
- Hacker Tools Online
- Hack Tools For Windows
- Blackhat Hacker Tools
- Hacking Tools Windows 10
- Hacker Tools
- Pentest Box Tools Download
- Nsa Hacker Tools
- Hacker Tools Apk Download
- Hack Tools For Ubuntu
- Hacking Tools Windows 10
- Pentest Tools For Windows
- Hacking Apps
- Beginner Hacker Tools
- Hacking Tools Hardware
- Best Hacking Tools 2019
- Hack Tools
- New Hacker Tools
- Hacker Tools Free Download
- Pentest Tools Online
- Hack Tools Download
- Hacking App
- Hacker Tools List
- Hacker Tools Apk
- Hacker Search Tools
- Pentest Tools Download
- Hacker Search Tools
- Hack App
- Github Hacking Tools
- Pentest Tools Linux
- Hacker Tools Linux
- World No 1 Hacker Software
- Hacker Tools For Pc
- Hacking Tools Online
- Hack Tools
- Hacking Tools For Pc
- Best Hacking Tools 2019
- Hack Website Online Tool
- Hackers Toolbox
- Bluetooth Hacking Tools Kali
- Pentest Tools For Android
- Hackrf Tools
- Hacking Tools Download
- Hacking Apps
- Underground Hacker Sites
- Hacker Tools Hardware
- Wifi Hacker Tools For Windows
- Pentest Tools Alternative
- Hack Tools Mac
- New Hacker Tools
- Pentest Tools
- Pentest Tools For Mac
- Hacker Tools Hardware
- Hack App
- Pentest Tools Apk
- Nsa Hacker Tools
- Pentest Automation Tools
- Hacker Tools For Ios
- Hack Tools Pc
- Hacking App
- Nsa Hack Tools Download
- Hacker Tools For Ios
- World No 1 Hacker Software
- Tools Used For Hacking
- Physical Pentest Tools
- Pentest Tools Nmap
- Usb Pentest Tools
- Hack Tools Online
- Hack Tools
- Pentest Tools Kali Linux
- World No 1 Hacker Software
- Hacking Tools Software
- Hackrf Tools
- Top Pentest Tools
- What Are Hacking Tools
- Hacking Tools For Kali Linux
- Android Hack Tools Github
- Hacking Tools 2019
- Hacker Tools Linux
- Hacking Tools Github
- Hacking Tools Windows
- Nsa Hacker Tools
- Pentest Tools Nmap
- Hack Website Online Tool
- Hacker
- Hackers Toolbox
- Hacking Tools For Pc
- Hacking Tools For Windows Free Download
- Hack Tools For Games
- Hacking Tools Usb
- Best Pentesting Tools 2018
- Bluetooth Hacking Tools Kali
- How To Make Hacking Tools
- Pentest Tools Website
- Hacking Tools Name
- Hacking Tools For Windows 7
- Physical Pentest Tools
- Pentest Tools Website Vulnerability
- Black Hat Hacker Tools
- Hacker Tools 2019
- Hacker Security Tools
- Hacking Tools Hardware
- Hack Tools
- Pentest Tools Review
- Best Hacking Tools 2020
- Hacking App
- Hack Tools
- New Hack Tools
- Pentest Tools Free
- Hacking Tools 2020
- Pentest Tools Port Scanner