Teach2Breach/noldr

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Teach2Breach/noldr)

Teach2Breach / noldr

Dynamically resolve API function addresses at runtime in a secure manner.

☆72

Alternatives and similar repositories for noldr

Users that are interested in noldr are comparing it to the libraries listed below

Sorting:

Teach2Breach / early_cascade_inj_rs
View on GitHub
early cascade injection PoC based on Outflanks blog post, in rust
☆62Nov 8, 2024Updated last year
nbaertsch / Shrike
View on GitHub
Hunting and injecting RWX 'mockingjay' DLLs in pure nim
☆60Dec 11, 2024Updated last year
safedv / RustVEHSyscalls
View on GitHub
A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
☆164Oct 31, 2024Updated last year
Teach2Breach / moonwalk
View on GitHub
find dll base addresses without PEB WALK
☆160Jul 13, 2025Updated 7 months ago
Teach2Breach / pool_party_rs
View on GitHub
remote process injections using pool party techniques
☆70Jun 29, 2025Updated 8 months ago
Teach2Breach / rpeloader
View on GitHub
use python on windows with full submodule support without installation
☆30Jan 23, 2025Updated last year
JanielDary / ImmoralFiber
View on GitHub
Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
☆283Sep 18, 2024Updated last year
grayhatkiller / SharpExShell
View on GitHub
SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
☆75May 1, 2024Updated last year
0xflux / ETW-Bypass-Rust
View on GitHub
Event Tracing for Windows EDR bypass in Rust (usermode)
☆39Jun 9, 2024Updated last year
Teach2Breach / NtCreateUserProcess_rs
View on GitHub
example using NtCreateUserProcess in rust
☆19Jan 20, 2025Updated last year
BlackSnufkin / NyxInvoke
View on GitHub
NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
☆232Feb 12, 2025Updated last year
EspressoCake / ADIDNS_Parser
View on GitHub
Parser and reconciliation tooling for large Active Directory environments.
☆33Feb 18, 2025Updated last year
REDMED-X / InjectKit
View on GitHub
Modified versions of the Cobalt Strike Process Injection Kit
☆106Jan 24, 2024Updated 2 years ago
pruno7 / nEkko
View on GitHub
A nim port of C5pider's Ekko project.
☆17Oct 1, 2022Updated 3 years ago
itaymigdal / PartyLoader
View on GitHub
Threadless shellcode injection tool
☆68Aug 5, 2024Updated last year
pygrum / gimmick
View on GitHub
Section-based payload obfuscation technique for x64
☆64Aug 8, 2024Updated last year
joaoviictorti / uwd
View on GitHub
Call Stack Spoofing for Rust
☆210Jan 28, 2026Updated last month
Kudaes / Eclipse
View on GitHub
Activation Context Hijack
☆170Aug 3, 2025Updated 7 months ago
Teach2Breach / snapinject_rs
View on GitHub
A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
☆50Jan 25, 2025Updated last year
Teach2Breach / dll2shell
View on GitHub
converts sRDI compatible dlls to shellcode
☆35Jan 20, 2025Updated last year
mr-r3bot / bof-modules
View on GitHub
BOF for C2 framework
☆44Nov 9, 2024Updated last year
iamagarre / BadExclusions
View on GitHub
BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR
☆21Feb 8, 2024Updated 2 years ago
passthehashbrowns / VectoredExceptionHandling
View on GitHub
☆108Aug 21, 2024Updated last year
safedv / Rustic64
View on GitHub
64-bit, position-independent implant template for Windows in Rust.
☆175Nov 28, 2025Updated 3 months ago
nbaertsch / nimvoke
View on GitHub
Indirect syscalls + DInvoke made simple.
☆96Dec 24, 2024Updated last year
joaoviictorti / rustclr
View on GitHub
Host CLR and run .NET binaries using Rust
☆151Dec 23, 2025Updated 2 months ago
iilegacyyii / DataInject-BOF
View on GitHub
Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
☆137Apr 18, 2025Updated 10 months ago
NoahKirchner / speedloader
View on GitHub
Rust template/library for implementing your own COFF loader
☆72Jan 27, 2025Updated last year
tijme / relocatable
View on GitHub
Boilerplate to develop raw and truly Position Independent Code (PIC).
☆117Jan 20, 2025Updated last year
m4ul3r / writing_nimless
View on GitHub
Writing Nimless Nim - Slides and source for BSIDESKC 2024 talk.
☆85Jul 11, 2025Updated 7 months ago
whokilleddb / funcshenanigans
View on GitHub
A bunch of shenanigans using functions, VEH and more
☆37Jun 8, 2025Updated 8 months ago
trickster0 / NamelessC2
View on GitHub
Nameless C2 - A C2 with all its components written in Rust
☆283Sep 26, 2024Updated last year
garrettfoster13 / ldap_bofs
View on GitHub
Random BOFs for LDAP tradecraft
☆74Sep 9, 2025Updated 5 months ago
S3cur3Th1sSh1t / NimShellcodeFluctuation
View on GitHub
ShellcodeFluctuation PoC ported to Nim
☆79Oct 14, 2022Updated 3 years ago
safedv / RustSoliloquy
View on GitHub
A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
☆191Apr 26, 2025Updated 10 months ago
VoldeSec / PatchlessCLRLoader
View on GitHub
.NET assembly loader with patchless AMSI and ETW bypass
☆370Apr 19, 2023Updated 2 years ago
BlackSnufkin / NovaLdr
View on GitHub
Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
☆261Jun 29, 2024Updated last year
EgeBalci / deoptimizer
View on GitHub
Evasion by machine code de-optimization.
☆418Jul 22, 2024Updated last year
klezVirus / RAIWhateverTrigger
View on GitHub
Local SYSTEM auth trigger for relaying - X
☆155Jul 23, 2025Updated 7 months ago