Teach2Breach / NtCreateUserProcess_rs

Related projects ⓘ

Alternatives and complementary repositories for NtCreateUserProcess_rs

• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆24Updated last week
• joaoviictorti / coffeeldr
  A COFF Loader written in Rust
  ☆26Updated 3 weeks ago
• s4dbrd / ETWReader
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆14Updated 4 months ago
• vysecurity / Nemesis-Download-Watcher
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆14Updated 8 months ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆38Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆17Updated 3 months ago
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆28Updated 2 months ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆20Updated last week
• EvanMcBroom / sleepy
  A lexer and parser for Sleep
  ☆11Updated this week
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆35Updated 5 months ago
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆15Updated 5 months ago
• sudonoodle / Aggressor-NTFY
  Cobalt Strike notifications via NTFY.
  ☆13Updated 2 months ago
• D4rthMaulCop / DarthNetLoader
  ☆14Updated last year
• secur30nly / rust-herpaderping
  Rust implementation of the Process Herpaderping
  ☆23Updated last year
• akamai / Linux-Process-Injection
  ☆19Updated last week
• 0xTriboulet / T-70
  A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system
  ☆31Updated 3 weeks ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆16Updated last year
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆28Updated 2 years ago
• rbmm / Services
  ☆18Updated last year
• KingOfTheNOPs / EnableWebDAVClient-BOF
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆17Updated last year
• FuzzySecurity / SAFACon-Vienna
  ☆22Updated 6 months ago
• Allevon412 / BenignHunter
  ☆15Updated 4 months ago
• rbmm / Noname
  really ?
  ☆12Updated 8 months ago
• monoxgas / minibus
  Remote code execution in Power Platform connectors via JSON deserialization
  ☆19Updated last year
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆27Updated last year
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated last year