Alternatives and similar repositories for ADPT:

Users that are interested in ADPT are comparing it to the libraries listed below

• Kudaes / rust_tips_and_tricks
  Rust For Windows Cheatsheet
  ☆114Updated 3 months ago
• safedv / RustVEHSyscalls
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆133Updated 3 months ago
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆110Updated 4 months ago
• xforcered / Being-A-Good-CLR-Host
  ☆92Updated 3 weeks ago
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆106Updated 3 weeks ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆140Updated 2 months ago
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆183Updated this week
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆246Updated 4 months ago
• securifybv / BOFRyptor
  ☆120Updated last year
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆189Updated 5 months ago
• xrombar / flower
  a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor
  ☆93Updated 10 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆99Updated 5 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆76Updated last year
• vxCrypt0r / AMSI_VEH
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆155Updated 8 months ago
• nettitude / Tartarus-TpAllocInject
  ☆180Updated last year
• OtterHacker / SetProcessInjection
  ☆147Updated last year
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆150Updated 2 months ago
• xalicex / Killers
  Exploitation of process killer drivers
  ☆196Updated last year
• Octoberfest7 / enumhandles_BOF
  ☆122Updated 5 months ago
• mansk1es / GhostFart
  ☆134Updated last year
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆55Updated 4 months ago
• cpu0x00 / SharpReflectivePEInjection
  reflectively load and execute PEs locally and remotely bypassing EDR hooks
  ☆147Updated last year
• decoder-it / RelabelAbuse
  ☆60Updated 8 months ago
• MzHmO / SymProcAddress
  Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
  ☆141Updated 10 months ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆149Updated last month
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆95Updated last year
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆165Updated 2 months ago
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆108Updated last month