DLL Sideloading

In this Video I'm explaining DLL Sideloading and show you how to find vulnerable applications + create your own custom DLLs to "exploit" it.

4:20 - Start, Introduction

8:22 - How to find vulnerable binaries with Siofra

13:15 - Building a DLL in Nim

18:14 - Checking Exposed functions with dllexp

22:11 - Checking Imports with DumpBin

23:39 - Checking Imports with PEStudio

26:10 - Using NetClone to Clone DLL Imports for Sideloading

31:11 - SideLoading version.dll into OneDrive.exe

35:30 - Checking Chrome for Sideloading

40:05 - Automatically generate Sideloading Payload with NimSyscallLoader

42:45 - Sideload chrome_elf.dll into Chrome.exe

44:00 - Adding custom export functions to our Nim DLL

48:55 - Sideload custom chrome_elf.dll into Chrome.exe

57:20 - Recommendations for building a Sideloading Payload DLL

1:05:00 - Building a Meterpreter Sideloading DLL with NimSyscallPacker

1:09:15 - Getting a Meterpreter Callback via Sideloading without detections

1:10:30 - Checking memory regions for MSF

Links:

Koppeling:
https://github.com/monoxgas/Koppeling

Scan dirs with Siofra:
  / 1  

Siofra:
https://github.com/Cybereason/siofra

NimSyscallPacker:
  / 1482428360500383755  

PeStudio:
https://www.winitor.com/download

DllExp:
https://www.nirsoft.net/utils/dll_exp...

Nim:
https://nim-lang.org/install.html

Nim DLL template:

https://github.com/S3cur3Th1sSh1t/Cre...