Kudaes / rust_tips_and_tricks
Rust For Windows Cheatsheet
☆110Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for rust_tips_and_tricks
- DLL proxying for lazy people☆136Updated 2 weeks ago
- Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored …☆101Updated 3 weeks ago
- Some Rust program I wrote while learning Malware Development☆113Updated 4 months ago
- A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls☆104Updated 2 months ago
- a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor☆95Updated 7 months ago
- Host CLR and run .NET binaries using Rust☆60Updated 2 weeks ago
- Rusty Impersonate☆94Updated last year
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆189Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…☆209Updated 2 months ago
- Detect EDR's exceptions by inspecting processes' loaded modules☆121Updated 8 months ago
- Exploitation of process killer drivers☆188Updated last year
- A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …☆164Updated last year
- Find DLLs with RWX section☆75Updated last year
- Template-based generation of shellcode loaders☆67Updated 7 months ago
- A set of programs for analyzing common vulnerabilities in COM☆154Updated 2 months ago
- 64-bit, position-independent implant template for Windows in Rust.☆77Updated last month
- ☆174Updated 5 months ago
- Local & remote Windows DLL Proxying☆161Updated 5 months ago
- ☆175Updated 11 months ago
- Shellcode loader designed for evasion. Coded in Rust.☆107Updated last year
- ☆118Updated last year
- Early Bird APC Injection in Rust☆50Updated last month
- Payload encoding utility to effectively lower payload entropy.☆99Updated this week
- ☆133Updated last year
- Your syscall factory☆121Updated 2 months ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆174Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆158Updated 3 weeks ago
- IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.☆90Updated 10 months ago