Kudaes / DInvoke_rs
Dynamically invoke arbitrary unmanaged code
☆316Updated this week
Related projects ⓘ
Alternatives and complementary repositories for DInvoke_rs
- Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)☆321Updated 8 months ago
- Call stack spoofing for Rust☆300Updated 2 months ago
- Threadless Process Injection through entry point hijacking☆334Updated 2 months ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆190Updated last year
- Rust For Windows Cheatsheet☆110Updated 3 weeks ago
- ROP-based sleep obfuscation to evade memory scanners☆321Updated 9 months ago
- Rusty Arsenal - A collection of experimental Process Injection and Post-Exploitation Techniques in Rust☆240Updated last year
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.☆253Updated 9 months ago
- A BOF that runs unmanaged PEs inline☆549Updated last month
- A COFF loader made in Rust☆245Updated last month
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆368Updated 10 months ago
- TartarusGate, Bypassing EDRs☆534Updated 2 years ago
- LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.☆260Updated 10 months ago
- Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.☆246Updated 3 months ago
- Reuse open handles to dynamically dump LSASS.☆234Updated 7 months ago
- miscellaneous scripts and programs☆215Updated last year
- Using fibers to run in-memory code.☆196Updated last year
- Dump the memory of any PPL with a Userland exploit chain☆331Updated last year
- DLL proxying for lazy people☆136Updated 3 weeks ago
- HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.☆629Updated last year
- Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscal…☆302Updated last year
- Apply a divide and conquer approach to bypass EDRs☆276Updated last year
- A variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC☆347Updated 2 years ago
- Encrypted shellcode Injection to avoid Kernel triggered memory scans☆346Updated last year
- Exploitation of process killer drivers☆188Updated last year
- Because AV evasion should be easy.☆314Updated 4 months ago
- windows-rs shellcode loaders☆285Updated 4 months ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆293Updated last year
- A Nim implementation of reflective PE-Loading from memory☆272Updated 2 months ago