Kudaes / RustHollowLinks
Inject a shellcode in a remote process using Process Hollowing.
☆54Updated 4 years ago
Alternatives and similar repositories for RustHollow
Users that are interested in RustHollow are comparing it to the libraries listed below
Sorting:
- abusing Process Hacker driver to terminate other processes (BYOVD)☆83Updated 2 years ago
- (First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls…☆134Updated 10 months ago
- ☆50Updated 3 years ago
- DLL Hollowing PoC - Remote and Self shellcode injection☆85Updated 4 years ago
- Command & Control server and agent written in Rust☆35Updated 3 years ago
- ☆39Updated 2 years ago
- Select any exported function in a dll as the new dll's entry point.☆81Updated last year
- Template-based generation of shellcode loaders☆79Updated last year
- Repo that holds random POCs☆52Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆66Updated 2 years ago
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆70Updated last year
- Identify and exploit leaked handles for local privilege escalation.☆111Updated 2 years ago
- A work in progress BOF/COFF loader in Rust☆51Updated 2 years ago
- Enabled / Disable LSA Protection via BYOVD☆80Updated 4 years ago
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆135Updated 3 years ago
- ☆100Updated 2 years ago
- Hide memory artifacts using ROP and hardware breakpoints.☆147Updated 2 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆67Updated 3 years ago
- LdrLoadDll Unhooking☆135Updated 3 years ago
- Donut generator in rust.☆27Updated 3 years ago
- Various methods of executing shellcode☆73Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated 2 years ago
- This program is used to perform reflective DLL Injection to a remote process specified by the user.☆65Updated 2 years ago
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publishe…☆60Updated 3 years ago
- A PoC packer written in Rust!☆74Updated 3 years ago
- 64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free☆65Updated 2 years ago
- Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms☆133Updated 3 years ago
- CreateRemoteThreadPlus: how to pass multiple parameters to the remote thread function without shellcode.☆137Updated 5 months ago
- A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.☆84Updated 8 months ago
- A PoC for adding NtContinue to CFG allowed list in order to make Ekko work in a CFG protected process☆113Updated 3 years ago