3: The Tools of the Trade
DLHell is used where the applications are based on
Dynamic Linked Libraries (DLLs). Enter the path of a DLL
in this tool, it shows the list of the DLLs called by this
DLL. This tool helps us to create a logical mapping of the
DLLs and the order in which they are called. For example,
you might try to figure out the DLL is used for
encryption/authentication. If you then succeed to drop that
DLL or replace it with some other DLL, you might be able
to break the authentication used in the application.
Figure 34: DLHell

Get Security Testing Handbook for Banking Applications now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.