viernes, 26 de enero de 2024

Koppeling - Adaptive DLL Hijacking / Dynamic Export Forwarding


This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.

This project is comprised of the following elements:

  • Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
  • Functions.dll: The "real" library which exposes valid functionality to the harness
  • Theif.dll: The "evil" library which is attempting to gain execution
  • NetClone.exe: A C# application which will clone exports from one DLL to another
  • PyClone.py: A python 3 script which mimics NetClone functionality

The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.

  • Stc-Forward: Forwards export names during the build process using linker comments
  • Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
  • Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
  • Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying

The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.


Example

Prepare a hijack scenario with an obviously incorrect DLL

> copy C:\windows\system32\whoami.exe .\whoami.exe
        1 file(s) copied.

> copy C:\windows\system32\kernel32.dll .\wkscli.dll
        1 file(s) copied.

Executing in the current configuration should result in an error

> whoami.exe 

"Entry Point Not Found"

Convert kernel32 to proxy functionality for wkscli

> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.

> whoami.exe
COMPUTER\User

Read more
  1. Hacking Tools Kit
  2. How To Make Hacking Tools
  3. Hacker Tools 2019
  4. Kik Hack Tools
  5. Termux Hacking Tools 2019
  6. Hacker Tools Free Download
  7. Hacker Search Tools
  8. Hacking Tools For Windows 7
  9. Hacking Tools Software
  10. Hacker Tools Online
  11. Hacker Tools 2019
  12. Hack Tools Online
  13. Best Hacking Tools 2020
  14. New Hack Tools
  15. Tools 4 Hack
  16. Easy Hack Tools
  17. Hacking Tools 2020
  18. Pentest Tools Alternative
  19. Pentest Tools Github
  20. Hack Tools For Games
  21. Tools Used For Hacking
  22. Physical Pentest Tools
  23. Nsa Hack Tools
  24. Pentest Tools Apk
  25. Hacking Tools For Windows 7
  26. Pentest Tools Bluekeep
  27. Hacker Hardware Tools
  28. Hacks And Tools
  29. Hacking Tools Kit
  30. Pentest Tools Online
  31. Hacking Tools For Kali Linux
  32. Hacking Tools For Windows
  33. Nsa Hack Tools
  34. Pentest Tools For Windows
  35. Best Hacking Tools 2020
  36. Hacker Tools Online
  37. Pentest Tools For Mac
  38. Pentest Tools Website Vulnerability
  39. Hack Tools
  40. Pentest Tools Download
  41. Hacking App
  42. Hacking Tools Online
  43. Hacker Tools For Pc
  44. World No 1 Hacker Software
  45. Game Hacking
  46. Hacking Tools For Windows Free Download
  47. Android Hack Tools Github
  48. Hacking Tools Software
  49. Hacking Tools Download
  50. Hacking Tools Free Download
  51. Pentest Tools
  52. Pentest Tools Free
  53. Pentest Tools Windows
  54. Install Pentest Tools Ubuntu
  55. Tools Used For Hacking
  56. Hack Tools For Pc
  57. Hacking Tools For Windows 7
  58. How To Make Hacking Tools
  59. Pentest Tools Url Fuzzer
  60. Pentest Tools Free
  61. Hack Apps
  62. Pentest Tools Github
  63. Hacking Tools Hardware
  64. Top Pentest Tools
  65. Hacking App
  66. Hacker Search Tools
  67. Hacker Tools For Ios
  68. Hack Tools For Games
  69. Pentest Box Tools Download
  70. Hacker Tools Github
  71. Hacking Tools Hardware
  72. Hack Rom Tools
  73. Hacking Tools For Windows
  74. Hacks And Tools
  75. New Hacker Tools
  76. Hacking Tools For Kali Linux
  77. Hack Tools For Games
  78. Pentest Tools Subdomain
  79. Hacking Tools Name
  80. Pentest Tools For Windows
  81. Hacking App
  82. Hacker Security Tools
  83. Nsa Hack Tools
  84. Pentest Tools Free
  85. Hack Website Online Tool
  86. Hacker Search Tools
  87. Pentest Tools Framework
  88. Hack And Tools
  89. Tools Used For Hacking
  90. Pentest Tools Bluekeep
  91. Install Pentest Tools Ubuntu
  92. Hack Tools For Games
  93. How To Hack
  94. Hacker Tools 2020
  95. Hacking Tools And Software
  96. Hacking App
  97. Hacker Tools 2019
  98. Hacker Tools 2020
  99. Hacking Tools
  100. Hacker Techniques Tools And Incident Handling
  101. Hacker Tools Github
  102. Pentest Tools Bluekeep
  103. Hack Tools Online
  104. Hacking Tools Download
  105. Pentest Tools For Ubuntu
  106. Hack Rom Tools
  107. Black Hat Hacker Tools
  108. Hacking Apps
  109. Bluetooth Hacking Tools Kali
  110. Hacker Tools Free
  111. Kik Hack Tools
  112. Hack Tools
  113. Growth Hacker Tools
  114. Install Pentest Tools Ubuntu
  115. Pentest Tools For Ubuntu
  116. How To Make Hacking Tools
  117. Hacking Tools Windows
  118. Pentest Box Tools Download
  119. Hacking Tools For Windows
  120. Hack Apps
  121. Game Hacking
  122. Hack Tools For Ubuntu
  123. Nsa Hacker Tools
  124. Hacker Security Tools
  125. Hackrf Tools
  126. Hacking Tools For Games
  127. Hack Tool Apk
  128. Hacks And Tools
  129. Hacker Tools 2020
  130. Hacking Tools Windows 10
  131. Pentest Tools For Android
  132. How To Make Hacking Tools
  133. Hack Tool Apk No Root
  134. Hacking Tools Kit
  135. Hacking Tools Free Download
  136. Tools 4 Hack
  137. Hack Rom Tools
  138. Pentest Tools For Windows
  139. Hacking Tools For Kali Linux
  140. Hacker Techniques Tools And Incident Handling
  141. Hacking Tools Software
  142. Hacking Tools 2019
  143. Hacker Tools Free
  144. Hack Tools
  145. Hacking Tools Usb
  146. Hacking Tools Download
  147. Hacker Hardware Tools
  148. Hacking Apps
  149. Hacking Tools For Beginners
  150. Hacking Tools Name
  151. Hacking Tools For Pc
  152. Hacking Tools Kit
  153. Android Hack Tools Github
  154. Hack Tools Pc
  155. Hacking Tools For Windows 7
  156. Blackhat Hacker Tools
  157. Hacker Tools For Windows
  158. Pentest Tools Bluekeep
  159. Hack Tools
  160. Blackhat Hacker Tools
  161. Bluetooth Hacking Tools Kali
Publicado por en