3: The Tools of the Trade
74
DLHell
DLHell is used where the applications are based on
Dynamic Linked Libraries (DLLs). Enter the path of a DLL
in this tool, it shows the list of the DLLs called by this
DLL. This tool helps us to create a logical mapping of the
DLLs and the order in which they are called. For example,
you might try to figure out the DLL is used for
encryption/authentication. If you then succeed to drop that
DLL or replace it with some other DLL, you might be able
to break the authentication used in the application.
Figure 34: DLHell

Get Security Testing Handbook for Banking Applications now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.