Exploitation Tools

ThreadBoat – Uses Thread Execution Hijacking To Inject Shellcode

October 5, 2019

1 Min Read

ThreadBoat - Program Uses Thread Execution Hijacking To Inject Native Shellcode Into A Standard Win32 Application

Mazen Elzanaty MazenElzanaty MazenElzanaty MazenElzanaty

Add Comment

[sc name=”ad_1″]

Program uses Thread Hijacking to Inject Native Shellcode into a Standard Win32 Application.

With Thread Hijacking, it allows the hijacker.exe program to suspend a thread within the target.exe program allowing us to write shellcode to a thread.
Usage

int main()
{
 System sys;
 Interceptor incp;
 Exception exp;

 sys.returnVersionState();
 if (sys.returnPrivilegeEscalationState())
 {
  std::cout << "Token Privileges Adjusted\n";
 }
 
 if (DWORD m_procId = incp.FindWin32ProcessId((PCHAR)m_win32ProcessName))
 {
  incp.ExecuteWin32Shellcode(m_procId);
 }

 system("PAUSE");
 return 0;
}

Environment

Windows Vista+
Visual C++

Libs

Winapi
- user32.dll
- kernel32.dll
ntdll.dll

Download ThreadBoat

[sc name=”ad-in-article”]

TagsApplication execution hacking hijacking Inject Malware Native Program shellcode Standard Thread ThreadBoat THREADHIJACK THREADING WIN32 WIN32API

About the author

View All Posts

ThreadBoat – Uses Thread Execution Hijacking To Inject Shellcode

About the author

Mazen Elzanaty

Add Comment

Cancel reply

Topics

You may also like

About the author

Mazen Elzanaty

Add Comment

Topics