This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.
This project is comprised of the following elements:
- Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
- Functions.dll: The "real" library which exposes valid functionality to the harness
- Theif.dll: The "evil" library which is attempting to gain execution
- NetClone.exe: A C# application which will clone exports from one DLL to another
- PyClone.py: A python 3 script which mimics NetClone functionality
The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.
- Stc-Forward: Forwards export names during the build process using linker comments
- Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
- Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
- Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying
The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.
Prepare a hijack scenario with an obviously incorrect DLL
> copy C:\windows\system32\whoami.exe .\whoami.exe
1 file(s) copied.
> copy C:\windows\system32\kernel32.dll .\wkscli.dll
1 file(s) copied.
Executing in the current configuration should result in an error
> whoami.exe
"Entry Point Not Found"
Convert kernel32 to proxy functionality for wkscli
> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.
> whoami.exe
COMPUTER\User
- Hack Tools
- Hacking Tools For Mac
- Hack Tool Apk
- Nsa Hack Tools
- Hacking Tools For Windows 7
- Best Hacking Tools 2020
- Pentest Automation Tools
- Best Hacking Tools 2020
- Hacking Tools Free Download
- How To Install Pentest Tools In Ubuntu
- Hacking Tools And Software
- Pentest Tools Online
- Best Hacking Tools 2019
- Hacking Tools Kit
- Hacking Tools Windows
- Hack Rom Tools
- Pentest Tools Website
- Hack Tools
- Hacker Tools Windows
- Hacker Tools Linux
- Hack Tools
- How To Install Pentest Tools In Ubuntu
- Hack Website Online Tool
- Nsa Hacker Tools
- Hack Tools For Pc
- Computer Hacker
- Hacking Tools And Software
- Pentest Tools For Windows
- Pentest Tools Find Subdomains
- Hacker Tools Free
- Hack Tools Online
- World No 1 Hacker Software
- Pentest Tools Alternative
- Hacker Tools Software
- Hacker Tools 2020
- Hacker Tools 2020
- Hacker Tools Free
- Pentest Tools Website Vulnerability
- Hack Tools Pc
- Nsa Hack Tools
- Pentest Tools For Mac
- Pentest Tools Apk
- Pentest Tools Find Subdomains
- Hacker Tools 2019
- Hacking Tools For Pc
- Hacker Tools
- Pentest Tools Kali Linux
- Hacker
- Install Pentest Tools Ubuntu
- Nsa Hack Tools Download
- Free Pentest Tools For Windows
- Hacker Security Tools
- Hack Tools Mac
- Hackrf Tools
- Hacking Tools
- Pentest Tools Open Source
- Hacker Tools Apk
- Hacking Tools Hardware
- Hacker Tools 2019
- Hacking Tools Windows
- Hack Tools For Ubuntu
- Hack Website Online Tool
- Hacker Tools Online
- Hacking Tools For Games
- Pentest Tools For Mac
- Pentest Tools Github
- Hacking Tools Name
- Hacking Tools Windows 10
- Hacking Tools Mac
- Pentest Tools Kali Linux
- Hackers Toolbox
- How To Make Hacking Tools
- Physical Pentest Tools
- Pentest Tools For Windows
- Hacking Tools Hardware
- Hacker Tools Apk Download
- Tools 4 Hack
- Hacking App
- Hacker Tools Free
- Wifi Hacker Tools For Windows
- Hacker
- Hacking Tools Windows 10
- Growth Hacker Tools
- Termux Hacking Tools 2019
- Black Hat Hacker Tools
- Hacking Tools Online
- Tools 4 Hack
- Hacking Tools Download
- Hack Tools For Games
- Hacking Apps
- Computer Hacker
- How To Hack
- Pentest Tools Alternative
- Pentest Tools Free
- Pentest Tools Port Scanner
- Hack Tool Apk No Root
- Hacking Tools Software
- Hacks And Tools
- Kik Hack Tools
- Hack Tools For Ubuntu
- Hacking Tools Windows 10
- Hack Tools Github
- Hacker Tools Hardware
- Hak5 Tools
- Top Pentest Tools
- Hacking Tools Software
- Pentest Box Tools Download
- Hacker Tools
- Pentest Tools Github
- Hack Tools Github
- Hacking Tools For Windows Free Download
- Pentest Tools For Android
- Nsa Hacker Tools
- Hackers Toolbox
- Hack Tool Apk
- Hack Apps
- Hacker Tools
- Hak5 Tools
- Hacking Tools Free Download
- Hacker Tools Windows
- Hacker Tools 2019
- Hack Website Online Tool
- Hak5 Tools
- Hack Tools For Games
- Tools For Hacker
- Hacker Tools
- What Is Hacking Tools
- Hacker
- Hacking Tools Software
- Hacking Tools 2020