0xflux / Rust-Hells-Gate
Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust
☆19Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for Rust-Hells-Gate
- Rust Implementation of SharpDllProxy for DLL Proxying Technique☆28Updated 2 years ago
- Reflective DLL self-loading as a library☆19Updated last year
- A rust library that allows you to delete your executable while it's running.☆84Updated last year
- Template-based generation of shellcode loaders☆67Updated 7 months ago
- Host CLR and run .NET binaries using Rust☆60Updated 2 weeks ago
- A COFF Loader written in Rust☆26Updated 3 weeks ago
- Command & Control server and agent written in Rust☆34Updated 2 years ago
- Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored …☆101Updated 3 weeks ago
- ☆42Updated last year
- a stage1 DLL loader with sleep obfuscation☆32Updated last year
- A PoC packer written in Rust!☆64Updated 2 years ago
- Tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆33Updated last month
- Collect Windows telemetry for Maldev☆57Updated this week
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 2 years ago
- A collection of source code, binaries, and compilation scripts designed to bypass detection☆25Updated last year
- A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls☆104Updated 2 months ago
- Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution☆38Updated 4 months ago
- Rust procedural macro to insert a few asm! calls full of junk instructions in between every line of code.☆12Updated last year
- early cascade injection PoC based on Outflanks blog post, in rust☆49Updated 2 weeks ago
- Lurker is a cross-platform, companion implant to Cobalt Strike built with Go☆23Updated 2 months ago
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆70Updated 8 months ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆23Updated 3 months ago
- Research into WinSxS binaries and finding hijackable paths☆23Updated 6 months ago
- Rust implementation of lazy_importer☆45Updated last year
- Rust For Windows Cheatsheet☆110Updated 3 weeks ago
- Windows Thread Pool Injection Havoc Implementation☆28Updated 7 months ago
- Tool to find code cave in PE image (x86 / x64) - Find empty space to place code in PE files☆59Updated last year
- DLL proxying for lazy people☆136Updated 2 weeks ago