Kudaes / RustHollow
Inject a shellcode in a remote process using Process Hollowing.
☆42Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for RustHollow
- abusing Process Hacker driver to terminate other processes (BYOVD)☆79Updated last year
- Command & Control server and agent written in Rust☆34Updated 2 years ago
- ☆44Updated 2 years ago
- ☆35Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆67Updated 9 months ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆95Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆55Updated last year
- I have documented all of the AMSI patches that I learned till now☆68Updated last year
- Donut generator in rust.☆23Updated 2 years ago
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publishe…☆49Updated 2 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆37Updated 2 months ago
- Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)☆53Updated 6 months ago
- 64-bit, position-independent reverse tcp shell, built in Rust for Windows.☆44Updated last month
- ☆96Updated last year
- NativePayload_PE1/PE2 , Injecting Meterpreter Payload bytes into local Process via Delegation Technique + in-memory with delay Changing R…☆57Updated last year
- Improved version of EKKO by @5pider that Encrypts only Image Sections☆113Updated last year
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆78Updated last year
- yet another sleep encryption thing. also used the default github repo name for this one.☆69Updated last year
- A nice process dumping tool☆72Updated 2 years ago
- Repo that holds random POCs☆45Updated 10 months ago
- DynamicSyscalls is a library written in .net resolves the syscalls dynamically (Has nothing to do with hooking/unhooking)☆63Updated 2 years ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".☆75Updated last year
- Host CLR and run .NET binaries using Rust☆60Updated 3 weeks ago
- A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …☆164Updated last year
- Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library☆24Updated 2 years ago
- DLL Exports Extraction BOF with optional NTFS transactions.☆78Updated 3 years ago