Alternatives and similar repositories for rusty-hollow

Users that are interested in rusty-hollow are comparing it to the libraries listed below

• Teach2Breach / snapinject_rs

  View on GitHub
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Jan 25, 2025Updated last year
• redr0nin / Agentic-Flow-Corruption-Attacks

  View on GitHub
  A red teaming attack paradigm against AI Agents
  ☆32Mar 9, 2025Updated 11 months ago
• joaoviictorti / coffeeldr

  View on GitHub
  A COFF Loader written in Rust
  ☆135Dec 1, 2025Updated 2 months ago
• JayGLXR / RustyMirage

  View on GitHub
  A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆38Mar 6, 2025Updated 11 months ago
• voidvxvi / EnableAllTokenPrivs

  View on GitHub
  Enable or Disable TokenPrivilege(s)
  ☆15May 17, 2024Updated last year
• Teach2Breach / byont

  View on GitHub
  bring your own clean ntdll (or other MS dlls)
  ☆28Jul 14, 2025Updated 6 months ago
• safedv / RustVEHSyscalls

  View on GitHub
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆161Oct 31, 2024Updated last year
• tehstoni / RustyDumper

  View on GitHub
  Process dumper wrote in rust.
  ☆14Sep 16, 2024Updated last year
• joaoviictorti / userdmp

  View on GitHub
  A Rust crate to parse user-mode minidump files generated on Windows
  ☆18Nov 17, 2025Updated 2 months ago
• FaultyRAM / windres-rs

  View on GitHub
  Compiles Windows resource files (.rc) into a Rust program.
  ☆31Feb 26, 2021Updated 4 years ago
• Teach2Breach / hollow_rs

  View on GitHub
  A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.
  ☆30Feb 7, 2025Updated last year
• winsecurity / AMSI-Bypass-HWBP

  View on GitHub
  ☆26Aug 11, 2025Updated 6 months ago
• JayGLXR / Rusty-Stardust

  View on GitHub
  A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…
  ☆59Mar 17, 2025Updated 10 months ago
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• lukasrdarev / PySoSerial

  View on GitHub
  ☆12Jun 26, 2023Updated 2 years ago
• Teach2Breach / early_cascade_inj_rs

  View on GitHub
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆62Nov 8, 2024Updated last year
• Teach2Breach / pool_party_rs

  View on GitHub
  remote process injections using pool party techniques
  ☆70Jun 29, 2025Updated 7 months ago
• safedv / Rustic64

  View on GitHub
  64-bit, position-independent implant template for Windows in Rust.
  ☆172Nov 28, 2025Updated 2 months ago
• 0xflux / Rust-Hells-Gate

  View on GitHub
  Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust
  ☆82Jun 4, 2024Updated last year
• VirtualSamuraii / flyphish

  View on GitHub
  Deploy a phishing infrastructure on the fly.
  ☆78Dec 21, 2024Updated last year
• Teach2Breach / moonwalk

  View on GitHub
  find dll base addresses without PEB WALK
  ☆157Jul 13, 2025Updated 7 months ago
• 0xflux / ETW-Bypass-Rust

  View on GitHub
  Event Tracing for Windows EDR bypass in Rust (usermode)
  ☆38Jun 9, 2024Updated last year
• eversinc33 / drvtrace

  View on GitHub
  WinDbg plugin to trace module transitions from a debugged driver.
  ☆40Dec 22, 2025Updated last month
• joaoviictorti / uwd

  View on GitHub
  Call Stack Spoofing for Rust
  ☆209Jan 28, 2026Updated 2 weeks ago
• tijme / kong-loader

  View on GitHub
  Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…
  ☆63Apr 2, 2025Updated 10 months ago
• 0xTriboulet / rssh-rs

  View on GitHub
  ☆55May 31, 2025Updated 8 months ago
• captain-woof / Hydrangea-C2-Payloads

  View on GitHub
  A cross-platform, collaborative C2 for red-teaming. Agents are cross-compilable (e.g, you can generate Windows DLLs on Linux), cross-comp…
  ☆24Mar 7, 2025Updated 11 months ago
• epichoxha / CobaltParrot

  View on GitHub
  Aggressor Notification Scripts for cobaltstrike via slack & discord
  ☆14Nov 27, 2025Updated 2 months ago
• aniko33 / AlcatrazLdr

  View on GitHub
  Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection
  ☆10Feb 26, 2025Updated 11 months ago
• yogsec / DorkTerm

  View on GitHub
  DorkTerm is a terminal-themed web-based security tool designed to assist security researchers in performing Google Dork queries efficient…
  ☆14Jan 25, 2026Updated 2 weeks ago
• dmcxblue / PyObscura

  View on GitHub
  A python script that automates a C2 Profile build
  ☆48Dec 14, 2025Updated last month
• ANYLNK / NSecSoftBYOVD

  View on GitHub
  NSecSoftBYOVD POC
  ☆54Sep 14, 2025Updated 4 months ago
• safedv / RustPotato

  View on GitHub
  A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…
  ☆354Apr 26, 2025Updated 9 months ago
• blacklanternsecurity / bbot-server

  View on GitHub
  A persistent database + CLI for your BBOT scan data 🧡
  ☆40Feb 5, 2026Updated last week
• KickedDroid / loadstar

  View on GitHub
  A different approach to writing BOFs in rust.
  ☆18Aug 20, 2025Updated 5 months ago
• referefref / Rusty-Telephone

  View on GitHub
  Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC
  ☆64Dec 2, 2024Updated last year
• Whitecat18 / earlycascade-injection

  View on GitHub
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆67Dec 26, 2025Updated last month
• ghost-ng / slinger

  View on GitHub
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆57Jan 14, 2026Updated 3 weeks ago
• tehstoni / RustyKeys

  View on GitHub
  UAC Bypass using CMSTP in Rust
  ☆34Dec 6, 2024Updated last year