JayGLXR / RustySpyLinks
A powerful Windows UI monitoring and DNS exfiltration tool written in Rust, combining advanced UI event capture capabilities with secure data exfiltration and EDR suppression features.
☆19Updated 6 months ago
Alternatives and similar repositories for RustySpy
Users that are interested in RustySpy are comparing it to the libraries listed below
Sorting:
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated 8 months ago
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆58Updated 6 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆60Updated 10 months ago
- ☆100Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆36Updated 3 years ago
- ☆38Updated last month
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆64Updated 2 years ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆62Updated last year
- ☆29Updated 8 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆70Updated last month
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆59Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- ☆93Updated last year
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆38Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆42Updated last year
- A bunch of shenanigans using functions, VEH and more☆35Updated 3 months ago
- Shellcode Loader Utilizing ETW Events☆65Updated 7 months ago
- In-memory hiding technique☆57Updated 8 months ago
- converts sRDI compatible dlls to shellcode☆31Updated 8 months ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- Beacon Debugger☆55Updated 11 months ago
- Toolset to manipulate RPC clients by finding delayed services and masquerading as them☆94Updated last month
- Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence☆54Updated 3 months ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆30Updated last year
- Post-Ex BOF tooling for Hannibal☆24Updated 10 months ago
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆121Updated last month
- ☆37Updated 2 years ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆68Updated 5 months ago
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆41Updated last year