An eBPFπ Keylogger with C2-based RCE payload delivery
β309May 12, 2025Updated 10 months ago
Alternatives and similar repositories for tamanoir
Users that are interested in tamanoir are comparing it to the libraries listed below
Sorting:
- Make your programs stealthierπβ203Jun 12, 2025Updated 9 months ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programsβ338Feb 27, 2026Updated 3 weeks ago
- π΅οΈββοΈ TUI for sniffing network traffic using eBPF on Linuxβ2,410Feb 4, 2026Updated last month
- Unix Process hollowing in rustβ22Dec 16, 2024Updated last year
- Rust template/library for implementing your own COFF loaderβ72Jan 27, 2025Updated last year
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.β31Feb 7, 2025Updated last year
- Generate Proxy DLLs in Rustβ48Mar 2, 2026Updated 2 weeks ago
- A Rust port of LayeredSyscall β performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.β164Oct 31, 2024Updated last year
- Call Stack Spoofing for Rustβ212Jan 28, 2026Updated last month
- A COFF Loader written in Rustβ140Dec 1, 2025Updated 3 months ago
- A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.β38Mar 6, 2025Updated last year
- This tool have the power to hide any PID/directory in the Linux kernelβ30Sep 13, 2024Updated last year
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThreadβ31Jan 9, 2022Updated 4 years ago
- Simple root privilege escalation detection using eBPF πβ35Feb 10, 2026Updated last month
- Windows rootkit designed to work with BYOVD exploitsβ217Jan 18, 2025Updated last year
- A hacky way of getting cross-arch/platform support in Cobalt Strikeβ37Aug 31, 2025Updated 6 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial β¦β50Jan 25, 2025Updated last year
- Install a hardware breakpoint in Linux kernel for tracing/debuggingβ26Apr 20, 2025Updated 11 months ago
- UAC Bypass using CMSTP in Rustβ36Dec 6, 2024Updated last year
- A Rust implementation of GodPotato β abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAβ¦β358Updated this week
- remote process injections using pool party techniquesβ70Jun 29, 2025Updated 8 months ago
- create sandbox to run untrusted codeβ14Feb 5, 2026Updated last month
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)β195Feb 6, 2025Updated last year
- π x86_64 OS (kernel) made from scratch in Rust & Assemblyβ75Nov 5, 2025Updated 4 months ago
- Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.β105Feb 25, 2025Updated last year
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features positβ¦β59Mar 17, 2025Updated last year
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.β62Feb 25, 2025Updated last year
- A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.β67Feb 11, 2025Updated last year
- This is the latest version of XenoRAT, updated with configurations and capable of bypassing all system securities. It will be maintained β¦β23Apr 16, 2025Updated 11 months ago
- Linker for Beacon Object Filesβ160Feb 22, 2026Updated 3 weeks ago
- A reflective DLL development template for the Rust programming languageβ116Nov 4, 2025Updated 4 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.β79Aug 25, 2025Updated 6 months ago
- Windows User-Mode Shellcode Development Framework (WUMSDF)β129Nov 17, 2025Updated 4 months ago
- Cargo subcommand to build a crate into shellcodeβ27Aug 15, 2024Updated last year
- POC of GITHUB simple C2 in rustβ52Jul 27, 2025Updated 7 months ago
- Rust crate to parse user-mode minidump files generated on Windowsβ18Nov 17, 2025Updated 4 months ago
- Nameless C2 - A C2 with all its components written in Rustβ284Sep 26, 2024Updated last year
- A Mythic Agent written in PIC C.β206Feb 4, 2025Updated last year
- Using Chromium-based browsers as a proxy for C2 traffic.β147Dec 6, 2025Updated 3 months ago