Kudaes / rust_tips_and_tricks

Related projects ⓘ

Alternatives and complementary repositories for rust_tips_and_tricks

• Kudaes / ADPT
  DLL proxying for lazy people
  ☆135Updated last week
• safedv / RustVEHSyscalls
  Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored …
  ☆89Updated last week
• BlackSnufkin / Rusty-Playground
  Some Rust program I wrote while learning Malware Development
  ☆110Updated 3 months ago
• janoglezcampos / rust_syscalls
  Single stub direct and indirect syscalling with runtime SSN resolving for windows.
  ☆187Updated last year
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆94Updated last year
• BlackSnufkin / NyxInvoke
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆153Updated 2 weeks ago
• xalicex / Killers
  Exploitation of process killer drivers
  ☆186Updated last year
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆205Updated last month
• realoriginal / titanldr-ng
  A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …
  ☆159Updated last year
• nettitude / Tartarus-TpAllocInject
  ☆173Updated 11 months ago
• joaoviictorti / rustclr
  Host CLR and run .NET binaries using Rust
  ☆56Updated last week
• CICADA8-Research / COMThanasia
  A set of programs for analyzing common vulnerabilities in COM
  ☆152Updated 2 months ago
• 0prrr / Malwear-Sweet
  Malware?
  ☆69Updated last month
• mansk1es / GhostFart
  ☆133Updated last year
• Kudaes / Bin-Finder
  Detect EDR's exceptions by inspecting processes' loaded modules
  ☆121Updated 7 months ago
• Kudaes / Fiber
  Using fibers to run in-memory code.
  ☆193Updated last year
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆65Updated 6 months ago
• realoriginal / grimreaper
  A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
  ☆102Updated last month
• safedv / Rustic64
  64-bit, position-independent implant template for Windows in Rust.
  ☆75Updated last month
• y11en / FOLIAGE
  Experiment on reproducing Obfuscate & Sleep
  ☆138Updated 3 years ago
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆50Updated last month
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆142Updated last month
• Cracked5pider / earlycascade-injection
  early cascade injection PoC based on Outflanks blog post
  ☆91Updated this week
• thiagopeixoto / massayo
  Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL
  ☆64Updated 2 years ago
• SaadAhla / ntdlll-unhooking-collection
  different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)
  ☆175Updated last year
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆75Updated last year
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆114Updated 5 months ago
• WKL-Sec / dcomhijack
  Lateral Movement Using DCOM and DLL Hijacking
  ☆279Updated last year