Koppeling - Adaptive DLL Hijacking / Dynamic Export Forwarding

This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.

This project is comprised of the following elements:

• Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
• Functions.dll: The "real" library which exposes valid functionality to the harness
• Theif.dll: The "evil" library which is attempting to gain execution
• NetClone.exe: A C# application which will clone exports from one DLL to another
• PyClone.py: A python 3 script which mimics NetClone functionality

The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.

• Stc-Forward: Forwards export names during the build process using linker comments
• Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
• Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
• Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying

The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.

Example

Prepare a hijack scenario with an obviously incorrect DLL

> copy C:\windows\system32\whoami.exe .\whoami.exe
        1 file(s) copied.

> copy C:\windows\system32\kernel32.dll .\wkscli.dll
        1 file(s) copied.

Executing in the current configuration should result in an error

> whoami.exe 

"Entry Point Not Found"

Convert kernel32 to proxy functionality for wkscli

> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.

> whoami.exe
COMPUTER\User

Download Koppeling

More info

1. Hacking Tools For Windows 7
2. Pentest Tools Windows
3. Hack Tools 2019
4. Hacker Tools For Ios
5. Hacking Tools Windows
6. Hacking Tools Download
7. Best Pentesting Tools 2018
8. Hackrf Tools
9. Hacking Tools Windows 10
10. Nsa Hack Tools
11. Hacking Tools For Windows 7
12. What Are Hacking Tools
13. Computer Hacker
14. Hacker Tools
15. Hack Tool Apk
16. Wifi Hacker Tools For Windows
17. Hacking Tools Software
18. Hacker Tools Mac
19. Pentest Tools Linux
20. How To Make Hacking Tools
21. Hacking Tools For Windows 7
22. Hacking Tools Free Download
23. New Hack Tools
24. Hack Tools Mac
25. Best Pentesting Tools 2018
26. Hack Tools
27. Usb Pentest Tools
28. Hack And Tools
29. Hacker Tools Apk Download
30. Physical Pentest Tools
31. Pentest Tools
32. Hak5 Tools
33. Pentest Box Tools Download
34. Hacking Tools Windows
35. Pentest Recon Tools
36. Pentest Tools Bluekeep
37. Pentest Tools Find Subdomains
38. Hacker Tools Free Download
39. Hacker Tools Mac
40. Pentest Tools List
41. Hacking Apps
42. Pentest Tools For Ubuntu
43. Hackrf Tools
44. Pentest Tools For Ubuntu
45. Pentest Tools Apk
46. Hacking Tools
47. Pentest Tools For Windows
48. Hacking Tools For Windows
49. Hacker Tools For Mac
50. Github Hacking Tools
51. Nsa Hack Tools
52. How To Hack
53. Hack Tool Apk No Root
54. Hacker Hardware Tools
55. Pentest Tools Nmap
56. Beginner Hacker Tools
57. Hacker
58. Free Pentest Tools For Windows
59. Hacking Tools 2020
60. Hacker Tools Free Download
61. Hack App
62. Pentest Tools Alternative
63. Hack Tools
64. Hack Tools Online
65. Growth Hacker Tools
66. Tools 4 Hack
67. Hack Tools For Mac
68. Tools Used For Hacking
69. Nsa Hack Tools Download
70. Tools 4 Hack
71. Hacks And Tools
72. Hacking App
73. Black Hat Hacker Tools
74. Black Hat Hacker Tools
75. Blackhat Hacker Tools
76. Nsa Hack Tools Download
77. Pentest Tools Online
78. What Are Hacking Tools
79. Hacking Tools For Beginners
80. Hacks And Tools
81. Hacking Tools For Games
82. Hacker Tools Apk Download
83. Hack Rom Tools
84. New Hack Tools
85. Hack Tools Github
86. Pentest Tools Android
87. Hacking Tools And Software
88. Install Pentest Tools Ubuntu
89. Pentest Tools Website
90. Hacker Tools Hardware
91. Usb Pentest Tools
92. Hacker Tools 2020
93. Pentest Tools Website Vulnerability
94. Hacking Tools For Mac
95. Hacker Search Tools
96. Hacker Tools Apk Download
97. Hack Tools 2019