Rust-for-Malware-Development

Waiting Thread Hijacking

Waiting Thread Hijacking technique, a stealthy process injection method that hijacks a waiting thread in a target process to execute shellcode. It avoids common detection triggers like SuspendThread or SetThreadContext by manipulating a thread’s return address. Read the article for more information.

alt text

Download PoC: Download

Compile/Run

cargo build --release

./target/release/WaitingThreadHijacking.exe <PID>

Credits / References

Blog - https://research.checkpoint.com/2025/waiting-thread-hijacking/
By Hasherezade -https://github.com/hasherezade/waiting_thread_hijacking

For More PoC: Main Menu

This site is open source. Improve this page.