ThreadBoat: Inject Native Shell-code Into a Standard Win32 Application

ThreadBoat

The program uses Thread Hijacking to Inject Native Shellcode into a Standard Win32 Application

About

I developed this small project to continue my experiences with different code injection methods. With Thread hijacking, it allows the hijacker.exe program to suspend a thread within the target.exe program allowing us to write shellcode to that target thread, and later be executed (via; WriteProcessMemory(), SetThreadContext(), ResumeThread(), CreateThread()).

Example GIF (Credits To Endgame)

Environment

• Windows Vista+
• Visual C++

Libs

• Winapi
  • user32.dll
  • kernel32.dll
• ntdll.dll

Ethical Notice

This code was simply written to demonstrate an overlooked method to inject shellcode or a DLL into a Win32 program. This code is not to be used for malicious purposes. The author, Josh Schiavone, is not liable for the misuse of this software. May God bless you all.

Download && Use

Copyright (c) 2020 josh0xA