Alternatives and similar repositories for rs-shell

Users that are interested in rs-shell are comparing it to the libraries listed below

• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆184Updated 8 months ago
• g0h4n / REC2
  REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…
  ☆154Updated last year
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆212Updated 3 months ago
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆267Updated 8 months ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆228Updated 5 months ago
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆254Updated 9 months ago
• BlackSnufkin / NovaLdr
  Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
  ☆242Updated 11 months ago
• cr7pt0pl4gu3 / Pestilence
  Shellcode loader designed for evasion. Coded in Rust.
  ☆128Updated 2 years ago
• safedv / RustiveDump
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆345Updated last month
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆114Updated 2 years ago
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆270Updated last year
• mandiant / msi-search
  ☆277Updated last year
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆131Updated 10 months ago
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆165Updated 2 months ago
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆216Updated last week
• BlackSnufkin / Rusty-Playground
  Some Rust program I wrote while learning Malware Development
  ☆133Updated 4 months ago
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆222Updated last year
• maxDcb / C2TeamServer
  TeamServer and Client of Exploration Command and Control Framework
  ☆128Updated last week
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆187Updated 6 months ago
• cybersectroll / TrollAMSI
  ☆176Updated last week
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆162Updated last month
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆200Updated 11 months ago
• boku7 / patchwerk
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆183Updated 4 months ago
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆179Updated 6 months ago
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆302Updated 6 months ago
• WKL-Sec / dcomhijack
  Lateral Movement Using DCOM and DLL Hijacking
  ☆291Updated last year
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆306Updated 6 months ago
• ThePorgs / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆283Updated 4 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆180Updated last month
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆184Updated last year