Kudaes / RustChainLinks
Hide memory artifacts using ROP and hardware breakpoints.
☆146Updated last year
Alternatives and similar repositories for RustChain
Users that are interested in RustChain are comparing it to the libraries listed below
Sorting:
- (First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls…☆133Updated 4 months ago
- Executables on Disk? Bleh 🤮☆100Updated 2 years ago
- A simple PoC to invoke an encrypted shellcode by using an hidden call☆116Updated 2 years ago
- Select any exported function in a dll as the new dll's entry point.☆81Updated 8 months ago
- It's pointy and it hurts!☆125Updated 2 years ago
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆123Updated 2 years ago
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆74Updated 2 months ago
- Inject a shellcode in a remote process using Process Hollowing.☆52Updated 3 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆145Updated 2 years ago
- XOR decrypting shellcode using the GPU with OpenCL.☆100Updated last month
- Rusty Impersonate☆97Updated 2 years ago
- Identify and exploit leaked handles for local privilege escalation.☆109Updated 2 years ago
- Command & Control server and agent written in Rust☆36Updated 2 years ago
- Template-based generation of shellcode loaders☆78Updated last year
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆86Updated 2 years ago
- ☆136Updated 2 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆83Updated 2 years ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Updated last year
- Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL☆65Updated 2 years ago
- I have documented all of the AMSI patches that I learned till now☆73Updated 3 months ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆146Updated 3 years ago
- Linker for Beacon Object Files☆121Updated this week
- ☆107Updated 2 years ago
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆130Updated 2 years ago
- ☆111Updated 2 years ago
- Your syscall factory☆123Updated last month
- ☆50Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆105Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- Splitting and executing shellcode across multiple pages☆102Updated 2 years ago