Teach2Breach / pool_party_rsView external linksLinks
remote process injections using pool party techniques
☆70Jun 29, 2025Updated 7 months ago
Alternatives and similar repositories for pool_party_rs
Users that are interested in pool_party_rs are comparing it to the libraries listed below
Sorting:
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆30Feb 7, 2025Updated last year
- A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.☆161Oct 31, 2024Updated last year
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆75May 1, 2024Updated last year
- Dynamically resolve API function addresses at runtime in a secure manner.☆72Nov 11, 2025Updated 3 months ago
- Mythic C2 Agent written in x64 PIC C☆84Jan 29, 2025Updated last year
- Rust template/library for implementing your own COFF loader☆71Jan 27, 2025Updated last year
- converts sRDI compatible dlls to shellcode☆35Jan 20, 2025Updated last year
- find dll base addresses without PEB WALK☆157Jul 13, 2025Updated 7 months ago
- Shellcode loader that executes embedded Lua from Rust.☆127Dec 16, 2024Updated last year
- A PowerShell console in C/C++ with all the security features disabled☆341Oct 14, 2025Updated 4 months ago
- StoneKeeper C2, an experimental EDR evasion framework for research purposes☆208Dec 25, 2024Updated last year
- Shellcode Loader Utilizing ETW Events☆67Feb 26, 2025Updated 11 months ago
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆135Apr 18, 2025Updated 9 months ago
- Call Stack Spoofing for Rust☆209Jan 28, 2026Updated 2 weeks ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Jan 25, 2025Updated last year
- A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…☆354Apr 26, 2025Updated 9 months ago
- Proxy function calls through the thread pool with ease☆31Feb 27, 2025Updated 11 months ago
- A BOF to enumerate system process, their protection levels, and more.☆124Nov 27, 2024Updated last year
- A set of programs for analyzing common vulnerabilities in COM☆245Sep 8, 2024Updated last year
- A COFF Loader written in Rust☆135Dec 1, 2025Updated 2 months ago
- Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.☆282Apr 6, 2025Updated 10 months ago
- BOF with Synthetic Stackframe☆220Oct 30, 2025Updated 3 months ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆196Dec 30, 2025Updated last month
- Random BOFs for LDAP tradecraft☆72Sep 9, 2025Updated 5 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆191Apr 26, 2025Updated 9 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Jan 30, 2025Updated last year
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆307Dec 9, 2023Updated 2 years ago
- Adversary Emulation Framework☆129Jul 1, 2025Updated 7 months ago
- 64-bit, position-independent implant template for Windows in Rust.☆172Nov 28, 2025Updated 2 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆156Mar 26, 2025Updated 10 months ago
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆59Mar 17, 2025Updated 10 months ago
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- A COFF loader made in Rust☆327Aug 20, 2025Updated 5 months ago
- How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.☆25Apr 21, 2025Updated 9 months ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.☆265Feb 22, 2025Updated 11 months ago
- Indirect syscalls + DInvoke made simple.☆96Dec 24, 2024Updated last year
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆122Jan 17, 2026Updated 3 weeks ago
- A PoC for Early Cascade process injection technique.☆208Jan 30, 2025Updated last year
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆259Jun 29, 2024Updated last year