Azr43lKn1ght / Rust-ProcHollowLinks
Process Hollowing in Rust with Process Executable Relocation Support for both 32 and 64 bit architecture environments.
☆18Updated 5 months ago
Alternatives and similar repositories for Rust-ProcHollow
Users that are interested in Rust-ProcHollow are comparing it to the libraries listed below
Sorting:
- C code to enable ETW tracing for Dotnet Assemblies☆31Updated 2 years ago
- various methods of making API calls☆17Updated 4 months ago
- Remap ntdll.dll using only NTAPI functions with a suspended process☆21Updated last month
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Updated 3 years ago
- havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…☆12Updated 2 years ago
- ☆31Updated last month
- NailaoLoader: Hiding Execution Flow via Patching☆21Updated 3 months ago
- Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine☆22Updated 2 weeks ago
- ☆54Updated 2 years ago
- ☆15Updated last year
- ☆24Updated 4 months ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆22Updated last year
- Repository for dirty scripts and PoCs☆17Updated 3 months ago
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆27Updated 5 years ago
- Some stuff for PHD2021☆14Updated 2 weeks ago
- ☆48Updated 4 years ago
- Beacon Object Files used for Cobalt Strike☆19Updated last year
- rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.☆16Updated last year
- Cobalt Strike Get clipboard plugin☆14Updated last year
- RunPE adapted for x64 and written in C, does not use RWX☆25Updated last year
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆31Updated 2 years ago
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- ☆18Updated 7 months ago
- BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.☆24Updated last year
- ☆27Updated 4 months ago
- A simple Linux in-memory .so loader☆30Updated 2 years ago
- Unix Process hollowing in rust☆22Updated 5 months ago
- Cobalt Strike notifications via NTFY.☆13Updated 8 months ago
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆12Updated 2 years ago
- Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …☆10Updated last month