Koppeling - Adaptive DLL Hijacking / Dynamic Export Forwarding

This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking" blog post. I recommend you start there to contextualize this code.

This project is comprised of the following elements:

• Harness.exe: The "victim" application which is vulnerable to hijacking (static/dynamic)
• Functions.dll: The "real" library which exposes valid functionality to the harness
• Theif.dll: The "evil" library which is attempting to gain execution
• NetClone.exe: A C# application which will clone exports from one DLL to another
• PyClone.py: A python 3 script which mimics NetClone functionality

The VS solution itself supports 4 build configurations which map to 4 different methods of proxying functionality. This should provide a nice scalable way of demonstrating more techniques in the future.

• Stc-Forward: Forwards export names during the build process using linker comments
• Dyn-NetClone: Clones the export table from functions.dll onto theif.dll post-build using NetClone
• Dyn-PyClone: Clones the export table from functions.dll onto theif.dll post-build using PyClone
• Dyn-Rebuild: Rebuilds the export table and patches linked import tables post-load to dynamically prepare for function proxying

The goal of each technique is to successfully capture code execution while proxying functionality to the legitimate DLL. Each technique is tested to ensure static and dynamic sink situations are handled. This is by far not every primitive or technique variation. The post above goes into more detail.

Example

Prepare a hijack scenario with an obviously incorrect DLL

> copy C:\windows\system32\whoami.exe .\whoami.exe
        1 file(s) copied.

> copy C:\windows\system32\kernel32.dll .\wkscli.dll
        1 file(s) copied.

Executing in the current configuration should result in an error

> whoami.exe 

"Entry Point Not Found"

Convert kernel32 to proxy functionality for wkscli

> NetClone.exe --target C:\windows\system32\kernel32.dll --reference C:\windows\system32\wkscli.dll --output wkscli.dll
[+] Done.

> whoami.exe
COMPUTER\User

Download Koppeling

More info

1. Hacker Hardware Tools
2. Hack Tools 2019
3. Hacker Tools Linux
4. Nsa Hack Tools
5. Pentest Tools List
6. Hacking Tools Online
7. Pentest Tools Alternative
8. Hacking Tools Software
9. Physical Pentest Tools
10. Hacking Apps
11. Hacker Tools Hardware
12. Hacker Tools Linux
13. Usb Pentest Tools
14. Top Pentest Tools
15. Hacker Tools
16. Pentest Box Tools Download
17. Pentest Tools Subdomain
18. Pentest Tools Nmap
19. Hacker
20. Hack Tools For Pc
21. Black Hat Hacker Tools
22. Pentest Tools Url Fuzzer
23. Hacking Tools And Software
24. Hack Tools Online
25. Hacking Tools For Windows
26. Pentest Tools Github
27. Hacker Tools Software
28. What Are Hacking Tools
29. Pentest Tools For Ubuntu
30. How To Make Hacking Tools
31. Hacking Tools 2020
32. Hacking Tools Software
33. Hacker Tools For Windows
34. Hacker Tools Github
35. Hacking Tools 2020
36. Pentest Tools Download
37. Pentest Tools Url Fuzzer
38. World No 1 Hacker Software
39. Pentest Tools Apk
40. Computer Hacker
41. Hacker Tool Kit
42. Pentest Tools Open Source
43. Hacking Tools Software
44. Hacking Tools For Windows 7
45. Hacking Tools Download
46. How To Install Pentest Tools In Ubuntu
47. Nsa Hack Tools
48. Hacking Tools For Pc
49. Free Pentest Tools For Windows
50. Hacker Tools For Ios
51. Hackrf Tools
52. Pentest Tools Kali Linux
53. Hacker Tools Linux
54. Hacking Tools Free Download
55. Computer Hacker
56. Pentest Tools Subdomain
57. Pentest Tools Android
58. Underground Hacker Sites
59. Hack Tools For Games
60. World No 1 Hacker Software
61. Hack Tools Mac
62. Nsa Hacker Tools
63. Best Pentesting Tools 2018
64. Hacking Tools For Pc
65. Tools 4 Hack
66. Hacking Tools For Kali Linux
67. Pentest Tools Open Source
68. Hacking App
69. Pentest Tools For Windows
70. Hack Tools Online
71. Hack Tools
72. Hacking Tools 2019
73. Pentest Tools Website Vulnerability
74. Hacking Tools For Games
75. Pentest Tools Github
76. Hacker Tools Apk Download
77. Computer Hacker
78. Hacking Tools For Windows Free Download
79. Hack Tool Apk
80. Hackrf Tools
81. Pentest Tools Subdomain
82. Tools For Hacker
83. Hacking Tools Online
84. Nsa Hack Tools Download
85. Hacking Tools 2019
86. Hack Tools Mac
87. Hacker Tools Hardware
88. Hacker Tools For Pc
89. Hacks And Tools
90. Hacking Tools
91. Hacking Tools Download
92. Hacker Tools Free Download
93. Hacks And Tools
94. Hacking Tools Mac
95. Hacking Apps
96. Hacker Search Tools
97. Hack Tools For Windows
98. Pentest Tools List
99. Hack Tools
100. Hacking Tools Mac
101. Pentest Tools Kali Linux
102. Hacking Tools Free Download
103. Hacking Tools Windows
104. Hacker
105. Hacking Tools Online
106. Pentest Tools Subdomain
107. Pentest Tools Bluekeep
108. Hack Tools Online
109. Ethical Hacker Tools
110. Hacker Tools Apk
111. Hack Website Online Tool
112. Pentest Tools
113. Pentest Tools Free
114. Pentest Tools Website
115. Tools For Hacker
116. Pentest Tools Framework
117. Hacker Tools
118. Pentest Tools Github
119. Pentest Automation Tools
120. Pentest Tools Download
121. Hacking Tools For Windows Free Download
122. Pentest Tools
123. Pentest Tools Kali Linux
124. Hack Apps
125. Hacker Tools 2019
126. Hack App
127. New Hacker Tools
128. Nsa Hack Tools Download
129. Hacking Tools For Windows
130. Pentest Tools Port Scanner
131. Pentest Recon Tools
132. Hacking Tools Software
133. Hack Tools Download
134. Pentest Tools Android
135. Pentest Tools Nmap