Kudaes / RustChain

Related projects ⓘ

Alternatives and complementary repositories for RustChain

• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆75Updated last year
• safedv / RustVEHSyscalls
  Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored …
  ☆101Updated 3 weeks ago
• tijme / amd-ryzen-master-driver-v17-exploit
  Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
  ☆132Updated last year
• Kudaes / Dumpy
  Reuse open handles to dynamically dump LSASS.
  ☆234Updated 7 months ago
• Signal-Labs / iat_unhook_sample
  (First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls…
  ☆128Updated last year
• mansk1es / GhostFart
  ☆133Updated last year
• klezVirus / NimlineWhispers3
  A tool for converting SysWhispers3 syscalls for use with Nim projects
  ☆138Updated 2 years ago
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆50Updated last month
• realoriginal / grimreaper
  A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
  ☆104Updated 2 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆145Updated 11 months ago
• gmh5225 / rust-mordor-rs
  Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library
  ☆24Updated 2 years ago
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆209Updated 2 months ago
• LloydLabs / shellcode-plain-sight
  Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak
  ☆174Updated last year
• lap1nou / CLR_Heap_encryption
  ☆96Updated last year
• eversinc33 / GpuDecryptShellcode
  XOR decrypting shellcode using the GPU with OpenCL.
  ☆91Updated last year
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆68Updated last year
• Kudaes / rust_tips_and_tricks
  Rust For Windows Cheatsheet
  ☆110Updated 3 weeks ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆75Updated last year
• thefLink / Hunt-Weird-Syscalls
  ETW based POC to identify direct and indirect syscalls
  ☆173Updated last year
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆94Updated last year
• realoriginal / titanldr-ng
  A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …
  ☆164Updated last year
• Kudaes / CustomEntryPoint
  Select any exported function in a dll as the new dll's entry point.
  ☆75Updated 3 weeks ago
• xalicex / Killers
  Exploitation of process killer drivers
  ☆188Updated last year
• decoder-it / RelabelAbuse
  ☆59Updated 5 months ago