Teach2Breach / pool_party_rsLinks
remote process injections using pool party techniques
☆60Updated 3 months ago
Alternatives and similar repositories for pool_party_rs
Users that are interested in pool_party_rs are comparing it to the libraries listed below
Sorting:
- Rust template/library for implementing your own COFF loader☆50Updated 4 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆49Updated 4 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆77Updated 3 months ago
- Execute dotnet app from unmanaged process☆75Updated 5 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆64Updated 3 weeks ago
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆55Updated 2 months ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆53Updated 5 months ago
- ☆99Updated last year
- BOF to decrypt Signal Desktop chat logs☆65Updated 3 months ago
- Linker for Beacon Object Files☆70Updated this week
- A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆35Updated 2 months ago
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆27Updated 11 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆58Updated 6 months ago
- converts sRDI compatible dlls to shellcode☆29Updated 4 months ago
- ☆40Updated this week
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆87Updated 4 months ago
- Threadless shellcode injection tool☆64Updated 9 months ago
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- A process injection technique using only thread context manipulation☆38Updated last year
- A simple C++ Windows tool to get information about processes exposing named pipes.☆37Updated 2 months ago
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆70Updated last year
- Shellcode Loader Utilizing ETW Events☆63Updated 3 months ago
- DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly☆60Updated last year
- Section-based payload obfuscation technique for x64☆59Updated 9 months ago
- Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion☆82Updated last month
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆47Updated 3 weeks ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆91Updated 3 weeks ago
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆46Updated 3 weeks ago
- lsassdump via RtlCreateProcessReflection and NanoDump☆82Updated 7 months ago
- ☆61Updated 4 months ago