There are 8 repositories under dll-hijacking topic.
A curated list of awesome privilege escalation
Robber is open source tool for finding executables prone to DLL hijacking
Project for tracking publicly disclosed DLL Hijacking opportunities.
C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.
Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".
Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
This is a PoC for bypassing UAC using DLL hijacking and abusing the "Trusted Directories" verification.
Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)
[LEGACY] CROSS † CHANNEL 中文化 (汉化) 项目,源代码以及网站。(全翻译文本、全平台移植源码已公开!欢迎修改&学习!)CROSS † CHANNEL Chinese Localization Project, source codes and websites. (All translations and scripts are open, welcome on any improvements!)
Perfect DLL Proxying using forwards with absolute paths.
Weaponizing for privileged file writes bugs with windows problem reporting
Windows 10 Privilege Escalation (magnifier.exe) via Dll Search Order Hijacking
Weaponizing for privileged file writes bugs with PrintNotify Service
Windows 10 CDPSvc DLL Hijacking - From LOCAL SERVICE to SYSTEM
Mumble VoIP Plugin and mod for the popular game "Among Us" to enable Proximity Voice Chat.
DLL Hijacking 批量挖掘工具,用于快速生成指定文件夹下所有 EXE 的 Unique DLL Hijacking Payload
frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can later be weaponized during Red Team Operations to evade AV/EDR's.
Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.
dll-hijack based qbittorrent portable plugin
A Dynamic-Link Library which exports the same methods as version.dll (winver.h) in addition to chainloading additional user defined libraries.
Undetected DLL Injection Method
Exploit of RealVNC VNC Server
UAC bypass abusing WinSxS in "wusa.exe". Referred from and similar to: https://github.com/L3cr0f/DccwBypassUAC , Kudos to L3cr0f and FuzzySecurity for their efforts
This is another tool helping to generate c file for dll hijack, besides AheadLib and AddExport. 这是 AheadLib 和 AddExport 之外的,另一种生成 DLL 劫持 C 源代码的辅助工具。
A header-only DLL proxy stub generation library built with C++20.
Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response) systems. 红队工具旨在快速识别可劫持程序、逃避防病毒软件和 EDR(端点检测和响应)系统。
Rust Implementation of SharpDllProxy for DLL Proxying Technique