Alternatives and similar repositories for backdoo-rs

Users that are interested in backdoo-rs are comparing it to the libraries listed below

• affix / rusty-hollow
  Unix Process hollowing in rust
  ☆22Updated 11 months ago
• KickedDroid / loadstar
  A different approach to writing BOFs in rust.
  ☆17Updated 3 months ago
• kozmer / silentpulse
  single-threaded event driven sleep obfuscation poc for linux
  ☆35Updated 5 months ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆63Updated last year
• iDigitalFlame / XrMT
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆27Updated last year
• KickedDroid / bof_oxide
  A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.
  ☆33Updated 3 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆54Updated 5 months ago
• Teach2Breach / rpeloader
  use python on windows with full submodule support without installation
  ☆30Updated 10 months ago
• BitsByWill / ksmbd-n-day
  Authenticated 0-click RCE against Linux 6.1.45 for CVE-2023-52440 and CVE-2023-4130
  ☆52Updated 2 months ago
• kyleavery / pendulum
  Linux Sleep Obfuscation
  ☆105Updated last year
• watchtowrlabs / CVE-2025-0282
  Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
  ☆30Updated 10 months ago
• JohnSwiftC / rustdllproxy
  Generate Proxy DLLs in Rust
  ☆46Updated 3 months ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Updated 10 months ago
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆64Updated 10 months ago
• 0xTriboulet / T-70
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆40Updated last year
• vysecurity / OffensiveLAM
  A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…
  ☆26Updated last year
• farfella / in-memory-cpython
  An In-memory Embedding of CPython
  ☆30Updated 4 years ago
• zer1t0 / keydump
  Dump Linux keyrings
  ☆22Updated last year
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆19Updated 10 months ago
• Teach2Breach / rust_api_demo
  various methods of making API calls
  ☆19Updated 10 months ago
• HulkOperator / AuthStager
  ☆59Updated last year
• Quack2332 / Simple-C-Implant
  ☆13Updated last year
• volticks / CVE-2025-21692-poc
  Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75
  ☆39Updated 2 months ago
• mbanyamer / CVE-2025-30397---Windows-Server-2025-JScript-RCE-Use-After-Free-
  Remote Code Execution via Use-After-Free in JScript.dll (CVE-2025-30397)
  ☆65Updated 6 months ago
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated 2 years ago
• SaadAhla / VSCode-Backdoor
  Backdooring VSCode Projects
  ☆81Updated 6 months ago
• winsecurity / AMSI-Bypass-HWBP
  ☆26Updated 3 months ago
• zimnyaa / remotechrome
  dump Chrome cookies remotely with atexec and CDP
  ☆67Updated last year
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆47Updated 10 months ago