All Services
Contact Us
- Contact Us
- Email Sign-Up
About Us
Free Resources
Training
- BHIS & Antisyphon Training
- WWHF Conference
Online Community
- Discord
- LinkedIn
- YouTube
- Bluesky
- Twitter/X
- Upcoming Events
Fun Stuff

Dynamic Link Library (DLL) Hijacking

Attack Tool(s): DLLHijackTest, PowerSploit, FaceDancer, PersistBOF

DLLHijackTest: https://github.com/slyd0g/DLLHijackTest
PowerSploit: https://github.com/PowerShellMafia/PowerSploit
FaceDancer: https://github.com/usb-tools/FaceDancer
PersistBOF: https://github.com/N4kedTurtle/PersistBOF

Detection Link(s):

Endpoint Security Protection Analysis
Memory Analysis
Endpoint Security

Helpful Blogs (BHIS):

“PowerShell Without PowerShell” – https://www.blackhillsinfosec.com/powershell-without-powershell-how-to-bypass-application-whitelisting-environment-restrictions-av – DLL hijacking context.

BNB_CARDS_v3_19

Back to top

Black Hills Information Security, Inc.

890 Lazelle Street, Sturgis, SD 57785-1611 | 701-484-BHIS (2447)
© 2008

About Us | BHIS Tribe of Companies | Privacy Policy | Contact

Links

Search the site