Alternatives and similar repositories for Ox-C2:

Users that are interested in Ox-C2 are comparing it to the libraries listed below

• yamakadi / ldr
  A work in progress BOF/COFF loader in Rust
  ☆47Updated last year
• Kudaes / RustHollow
  Inject a shellcode in a remote process using Process Hollowing.
  ☆44Updated 3 years ago
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆54Updated last month
• ZeroMemoryEx / Overlord
  abusing Process Hacker driver to terminate other processes (BYOVD)
  ☆81Updated last year
• postrequest / donut-rs
  Donut generator in rust.
  ☆26Updated 3 years ago
• joaoviictorti / rustclr
  Host CLR and run .NET binaries using Rust
  ☆82Updated 3 weeks ago
• gmh5225 / rust-mordor-rs
  Rusty Hell's Gate / Halo's Gate / Tartarus' Gate / FreshyCalls / Syswhispers2 Library
  ☆26Updated 2 years ago
• lap1nou / CLR_Heap_encryption
  ☆97Updated last year
• whokilleddb / exe_who
  Executables on Disk? Bleh 🤮
  ☆98Updated last year
• joaoviictorti / coffeeldr
  A COFF Loader written in Rust
  ☆60Updated 3 weeks ago
• gatariee / ldrgen
  Template-based generation of shellcode loaders
  ☆73Updated 10 months ago
• jsecurity101 / RandomPOCs
  Repo that holds random POCs
  ☆48Updated last year
• tijme / amd-ryzen-master-driver-v17-exploit
  Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
  ☆135Updated 2 years ago
• aancw / DllProxy-rs
  Rust Implementation of SharpDllProxy for DLL Proxying Technique
  ☆29Updated 2 years ago
• Mav3rick33 / ZenLdr
  Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
  ☆100Updated last year
• ScriptIdiot / sleepmask_PatchlessHook
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆82Updated last year
• securifybv / BOFRyptor
  ☆120Updated last year
• susMdT / effective-waffle
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆70Updated last year
• Kudaes / CustomEntryPoint
  Select any exported function in a dll as the new dll's entry point.
  ☆74Updated 3 months ago
• safedv / RustVEHSyscalls
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆133Updated 3 months ago
• xalicex / LOLDrivers_finder
  ☆75Updated last year
• Octoberfest7 / JumpSession_BOF
  Beacon Object File allowing creation of Beacons in different sessions.
  ☆78Updated 2 years ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆43Updated 3 weeks ago
• S4ntiagoP / freeBokuLoader
  A simple BOF that frees UDRLs
  ☆115Updated 2 years ago
• Kudaes / RustChain
  Hide memory artifacts using ROP and hardware breakpoints.
  ☆136Updated last year
• Teach2Breach / early_cascade_inj_rs
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆53Updated 3 months ago
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆50Updated 3 months ago
• reveng007 / AMSI-patches-learned-till-now
  I have documented all of the AMSI patches that I learned till now
  ☆74Updated last year
• Shrfnt77 / DynamicSyscalls
  DynamicSyscalls is a library written in .net resolves the syscalls dynamically (Has nothing to do with hooking/unhooking)
  ☆64Updated 2 years ago