Alternatives and similar repositories for Rusty-Playground:

Users that are interested in Rusty-Playground are comparing it to the libraries listed below

• safedv / RustVEHSyscalls
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆132Updated 2 months ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆121Updated 2 weeks ago
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆179Updated last week
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆160Updated last month
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆103Updated 3 months ago
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆157Updated last month
• Kudaes / ADPT
  DLL proxying for lazy people
  ☆148Updated last month
• BlackSnufkin / NovaLdr
  Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
  ☆233Updated 6 months ago
• securifybv / BOFRyptor
  ☆120Updated last year
• NtDallas / Svartalfheim
  Stage 0
  ☆140Updated last month
• safedv / RustPotato
  A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…
  ☆189Updated last week
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆199Updated last month
• Octoberfest7 / enumhandles_BOF
  ☆121Updated 4 months ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆172Updated 4 months ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆179Updated last year
• cr7pt0pl4gu3 / Pestilence
  Shellcode loader designed for evasion. Coded in Rust.
  ☆121Updated last year
• Cracked5pider / earlycascade-injection
  early cascade injection PoC based on Outflanks blog post
  ☆194Updated 2 months ago
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆215Updated 4 months ago
• VoldeSec / PatchlessCLRLoader
  .NET assembly loader with patchless AMSI and ETW bypass
  ☆308Updated last year
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆197Updated last year
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆101Updated 3 weeks ago
• ZERODETECTION / MSC_Dropper
  ☆136Updated 5 months ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆111Updated last month
• rad9800 / FileRenameJunctionsEDRDisable
  ☆136Updated last month
• deepinstinct / DCOMUploadExec
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆320Updated last month
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆55Updated 3 months ago
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆153Updated 3 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆160Updated 7 months ago
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆151Updated 3 weeks ago