Koppeling - Adaptive DLL Hijacking / Dynamic Export Forwarding

This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.

This project is comprised of the following elements:

• Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
• Functions.dll: The "real" library which exposes valid functionality to the harness
• Theif.dll: The "evil" library which is attempting to gain execution
• NetClone.exe: A C# application which will clone exports from one DLL to another
• PyClone.py: A python 3 script which mimics NetClone functionality

The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.

• Stc-Forward: Forwards export names during the build process using linker comments
• Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
• Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
• Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying

The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.

Example

Prepare a hijack scenario with an obviously incorrect DLL

> copy C:\windows\system32\whoami.exe .\whoami.exe
        1 file(s) copied.

> copy C:\windows\system32\kernel32.dll .\wkscli.dll
        1 file(s) copied.

Executing in the current configuration should result in an error

> whoami.exe 

"Entry Point Not Found"

Convert kernel32 to proxy functionality for wkscli

> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.

> whoami.exe
COMPUTER\User

Download Koppeling

More info

1. Hacker Tools For Mac
2. Pentest Tools Website
3. Hacking Tools Download
4. Hacker Tools Free
5. Github Hacking Tools
6. Hacking Tools For Windows 7
7. Hacker Tools Hardware
8. Best Hacking Tools 2019
9. Hack App
10. Hacking Tools And Software
11. Hacker Tools Apk
12. Hack Website Online Tool
13. Termux Hacking Tools 2019
14. Hacks And Tools
15. Hack Tools Mac
16. Pentest Tools For Mac
17. Pentest Tools Open Source
18. Usb Pentest Tools
19. Hacker Tool Kit
20. Hackers Toolbox
21. Hackers Toolbox
22. Hacks And Tools
23. Pentest Tools Subdomain
24. Pentest Tools Free
25. Hacking Tools Kit
26. Pentest Tools Nmap
27. Hacker Search Tools
28. Best Hacking Tools 2020
29. Hacker Tool Kit
30. Hacker Tools 2020
31. Best Hacking Tools 2020
32. Hack Tool Apk
33. Hack Rom Tools
34. Hacker Tools Free
35. Pentest Reporting Tools
36. Hacker Tools Software
37. Hacking Tools For Beginners
38. Hacking Tools Hardware
39. Hacking Tools And Software
40. Hack Tools
41. Hack Rom Tools
42. Pentest Tools Url Fuzzer
43. Hack Tools Pc
44. Ethical Hacker Tools
45. Hacker Tools Apk Download
46. Pentest Tools For Windows
47. Hacking Tools For Mac
48. Bluetooth Hacking Tools Kali
49. Hacking Tools Windows 10
50. Pentest Tools Url Fuzzer
51. Pentest Tools For Android
52. How To Install Pentest Tools In Ubuntu
53. Pentest Tools Subdomain
54. Nsa Hacker Tools
55. Hacking Tools For Kali Linux
56. Hak5 Tools
57. Nsa Hack Tools
58. Pentest Tools Subdomain
59. Hack App
60. Pentest Tools Find Subdomains
61. How To Install Pentest Tools In Ubuntu
62. Hacker Techniques Tools And Incident Handling
63. Hack Tools
64. Hacking Tools For Mac
65. Pentest Tools Apk
66. Hacking Tools Mac
67. Hacking Tools Kit
68. Growth Hacker Tools
69. Hacker Tools Software
70. Hacking Tools For Windows
71. How To Make Hacking Tools
72. Hacker Tool Kit
73. Github Hacking Tools
74. Pentest Tools For Ubuntu
75. Tools For Hacker
76. Pentest Tools For Android
77. Hack Rom Tools
78. Hacking Tools Kit
79. Hacking Tools For Windows Free Download
80. Hacking Tools And Software
81. Nsa Hack Tools Download
82. Hacking Tools For Windows Free Download
83. Pentest Tools Download
84. Hack Tools Pc
85. Best Hacking Tools 2020
86. What Is Hacking Tools
87. Hacking Tools For Kali Linux
88. Bluetooth Hacking Tools Kali
89. Hacking Tools Windows
90. Hack Apps
91. Pentest Tools Framework
92. Github Hacking Tools
93. Hacker
94. Hacking Tools For Beginners
95. Termux Hacking Tools 2019
96. Hack Apps
97. Hacker Tools For Mac
98. Hacking App
99. Hack App
100. Hacking Tools Mac
101. Hacking Tools Online
102. Pentest Tools
103. Hacker Tools Hardware
104. World No 1 Hacker Software
105. Pentest Tools Url Fuzzer
106. Hacking Tools For Windows 7
107. Pentest Reporting Tools
108. Hack Tools Download
109. Hacker Tools Software
110. Pentest Tools Port Scanner
111. Hack Tools Mac
112. Hacking Tools Mac
113. Github Hacking Tools
114. Pentest Tools Website Vulnerability
115. Pentest Tools Subdomain
116. Pentest Tools Kali Linux
117. Growth Hacker Tools
118. Kik Hack Tools
119. Growth Hacker Tools
120. Hacker Tools For Pc
121. Tools 4 Hack
122. Hacking Tools Name
123. Hacking Tools For Windows
124. Hacking Apps
125. Pentest Tools Android
126. Hacker Tools For Pc
127. Easy Hack Tools
128. Hack Website Online Tool
129. Hack Tools
130. Tools 4 Hack
131. Hacking Tools For Kali Linux
132. Hacking Tools Windows
133. Hack Tools
134. Hacking Tools 2019
135. Hacking Tools For Mac
136. Hacker Security Tools
137. Pentest Tools Alternative
138. Hacking Tools Pc
139. Pentest Tools Url Fuzzer
140. Hacker Tools Apk Download
141. Pentest Tools Nmap
142. Hack App