windows-rs shellcode loaders
☆393Jul 11, 2024Updated last year
Alternatives and similar repositories for rust-shellcode
Users that are interested in rust-shellcode are comparing it to the libraries listed below
Sorting:
- Shellcode loader designed for evasion. Coded in Rust.☆134Mar 5, 2023Updated 3 years ago
- RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust☆1,841Dec 29, 2025Updated 2 months ago
- Some Rust program I wrote while learning Malware Development☆159Feb 4, 2025Updated last year
- A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.☆164Oct 31, 2024Updated last year
- Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.☆320Mar 13, 2026Updated last week
- Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)☆359Mar 2, 2024Updated 2 years ago
- CobaltStrike beacon in rust☆208Aug 10, 2024Updated last year
- Dynamically invoke arbitrary unmanaged code☆360Feb 19, 2026Updated last month
- ROP-based sleep obfuscation to evade memory scanners☆379Jun 22, 2025Updated 8 months ago
- A COFF loader made in Rust☆327Updated this week
- Call stack spoofing for Rust☆361Feb 7, 2025Updated last year
- Host CLR and run .NET binaries using Rust☆153Dec 23, 2025Updated 2 months ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆234Mar 23, 2023Updated 2 years ago
- Nameless C2 - A C2 with all its components written in Rust☆284Sep 26, 2024Updated last year
- Call Stack Spoofing for Rust☆212Jan 28, 2026Updated last month
- Windows shellcode development in Rust☆305Feb 6, 2021Updated 5 years ago
- Sleep Obfuscation in Rust☆280Dec 1, 2025Updated 3 months ago
- A COFF Loader written in Rust☆140Dec 1, 2025Updated 3 months ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆234Feb 12, 2025Updated last year
- 64-bit, position-independent implant template for Windows in Rust.☆174Nov 28, 2025Updated 3 months ago
- A command and control framework written in rust.☆386Sep 4, 2025Updated 6 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆436Dec 21, 2023Updated 2 years ago
- CobaltStrike beacon written in golang☆459Oct 13, 2023Updated 2 years ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆385Apr 26, 2025Updated 10 months ago
- A BOF that runs unmanaged PEs inline☆683Oct 23, 2024Updated last year
- A rust library that allows you to host the CLR and execute dotnet binaries.☆235Mar 12, 2025Updated last year
- Rust template/library for implementing your own COFF loader☆72Jan 27, 2025Updated last year
- Shellcode loader generator with multiples features☆508Dec 31, 2024Updated last year
- Cobalt Strike UDRL for memory scanner evasion.☆1,008Jun 4, 2024Updated last year
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.☆283Feb 8, 2024Updated 2 years ago
- 🎃 PumpBin is an Implant Generation Platform.☆361Jul 16, 2024Updated last year
- 寻找可利用的白文件☆558Aug 18, 2025Updated 7 months ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆618Jan 2, 2025Updated last year
- Reuse open handles to dynamically dump LSASS.☆247Apr 4, 2024Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆465Sep 24, 2023Updated 2 years ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆262Jun 29, 2024Updated last year
- Take a screenshot without injection for Cobalt Strike☆203Jun 7, 2023Updated 2 years ago
- bof-launcher - a library for loading, executing and in-memory masking BOFs on Windows (x64, x86) and Linux (x64, x86, aarch64, arm). Read…☆302Mar 10, 2026Updated last week
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer☆542Feb 13, 2024Updated 2 years ago