This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.
This project is comprised of the following elements:
- Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
- Functions.dll: The "real" library which exposes valid functionality to the harness
- Theif.dll: The "evil" library which is attempting to gain execution
- NetClone.exe: A C# application which will clone exports from one DLL to another
- PyClone.py: A python 3 script which mimics NetClone functionality
The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.
- Stc-Forward: Forwards export names during the build process using linker comments
- Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
- Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
- Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying
The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.
Prepare a hijack scenario with an obviously incorrect DLL
> copy C:\windows\system32\whoami.exe .\whoami.exe
1 file(s) copied.
> copy C:\windows\system32\kernel32.dll .\wkscli.dll
1 file(s) copied.
Executing in the current configuration should result in an error
> whoami.exe
"Entry Point Not Found"
Convert kernel32 to proxy functionality for wkscli
> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.
> whoami.exe
COMPUTER\User
- Free Pentest Tools For Windows
- Hacking Tools Online
- Hacking Tools For Windows Free Download
- Hacker Tools 2020
- Pentest Tools Github
- Hacking Tools Windows 10
- Pentest Tools Framework
- Pentest Tools List
- Hacking Tools Software
- Hacking Apps
- Hack Tool Apk
- Nsa Hack Tools Download
- Computer Hacker
- Free Pentest Tools For Windows
- Pentest Tools Review
- Hacker Hardware Tools
- Hacker Tools Software
- Hacking Tools Online
- Easy Hack Tools
- Blackhat Hacker Tools
- Pentest Tools Nmap
- Hack Tools
- Wifi Hacker Tools For Windows
- Pentest Tools Linux
- Hack Website Online Tool
- Hack Tools 2019
- Hackers Toolbox
- Pentest Tools For Ubuntu
- Pentest Tools Port Scanner
- Hack Tools For Windows
- Hacker Tools Github
- Hacks And Tools
- Top Pentest Tools
- New Hack Tools
- Usb Pentest Tools
- Hacking Tools Download
- Hacker Tools Windows
- Pentest Tools For Ubuntu
- Pentest Tools Url Fuzzer
- Hacker Tools Free Download
- Hacking Tools Windows 10
- Hacker Hardware Tools
- Usb Pentest Tools
- Android Hack Tools Github
- Pentest Tools Linux
- Hacks And Tools
- Hack Tool Apk
- Hacking App
- Hackrf Tools
- Hacker Tools Online
- Hack Tools 2019
- Hacking Tools For Games
- Hacking Tools For Beginners
- Hack App
- Hacking Tools For Windows 7
- Hacking Tools For Pc
- Hack Tools For Windows
- Pentest Tools Open Source
- Hacking App
- Pentest Reporting Tools
- Pentest Tools Framework
- Hacker
- Nsa Hack Tools Download
- Hack Tools Github
- How To Make Hacking Tools
- Hack Tools Github
- Best Hacking Tools 2019
- Hack Tools
- Hacking Tools Software
- Hacking Tools For Games
- How To Install Pentest Tools In Ubuntu
- Hack Website Online Tool
- Computer Hacker
- How To Make Hacking Tools
- Pentest Tools For Android
- Termux Hacking Tools 2019
- Hack Apps
- Hack Tools For Mac
- Pentest Tools Online
- Pentest Automation Tools
- New Hack Tools
- Beginner Hacker Tools
- Pentest Automation Tools
- Hacker Tools Linux
- Pentest Tools List
- Hacking Tools Pc
- Hacking Tools For Beginners
- Pentest Tools Download
- Hacking Tools For Mac
- How To Hack
- Nsa Hacker Tools
- Hacks And Tools
- Pentest Tools Framework
- Hacking Tools Windows
- Hack Tools For Ubuntu
- Hacking Apps
- Usb Pentest Tools
- Game Hacking
- Hacking Tools Name
- Pentest Tools Apk
- Hack Tool Apk No Root
- Hacker Tools
- Hacker Tools Online
- Hacker Tools For Pc
- Hacking Tools 2019
- Bluetooth Hacking Tools Kali
- Hack Tools For Games
- Pentest Tools Github
- Pentest Tools Url Fuzzer
- Hack Tools Mac
- Computer Hacker
- Pentest Box Tools Download
- Hacker Tools Apk
- Pentest Tools Linux
- Pentest Tools Find Subdomains
- Hackers Toolbox
- Hacker Security Tools
- Pentest Tools Windows
- Top Pentest Tools
- Hacking Tools
- Hacking Apps
- Hacking Tools For Windows 7
- Physical Pentest Tools
- Hacking Tools 2019
- Pentest Tools
- Hack Tools Download
- Github Hacking Tools
- Hacker Tools Hardware
- Pentest Tools For Android
- Hack Tools For Windows
- Hack Tools For Ubuntu
- Hacker Tools Github
- Termux Hacking Tools 2019
- Hacker Security Tools
- Pentest Automation Tools
- Hack Rom Tools
- Computer Hacker
- Hacker
- Easy Hack Tools
- Pentest Tools Url Fuzzer
- Pentest Tools Online
- Pentest Tools Download
- Hacker Tools For Ios
- Android Hack Tools Github
- Hack App
- Pentest Tools Nmap
- Hacking Tools Online
- Hacker Tools For Pc
- New Hack Tools
- Pentest Tools Review
No hay comentarios:
Publicar un comentario