b1tg/rust-windows-shellcode

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/b1tg/rust-windows-shellcode)

b1tg / rust-windows-shellcode

Windows shellcode development in Rust

☆305

Alternatives and similar repositories for rust-windows-shellcode

Users that are interested in rust-windows-shellcode are comparing it to the libraries listed below

Sorting:

b1tg / rs-shellcode
View on GitHub
Another shellcode runner 🦀 🐚
☆149Oct 19, 2021Updated 4 years ago
wumb0 / rust_bof
View on GitHub
Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.
☆283Feb 8, 2024Updated 2 years ago
trickster0 / OffensiveRust
View on GitHub
Rust Weaponization for Red Team Engagements.
☆2,991Apr 25, 2024Updated last year
janoglezcampos / rust_syscalls
View on GitHub
Single stub direct and indirect syscalling with runtime SSN resolving for windows.
☆234Mar 23, 2023Updated 2 years ago
hakaioffsec / coffee
View on GitHub
A COFF loader made in Rust
☆327Updated this week
Kudaes / DInvoke_rs
View on GitHub
Dynamically invoke arbitrary unmanaged code
☆360Feb 19, 2026Updated last month
yamakadi / houdini
View on GitHub
A rust library that allows you to delete your executable while it's running.
☆91Mar 24, 2023Updated 2 years ago
memN0ps / venom-rs
View on GitHub
Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)
☆359Mar 2, 2024Updated 2 years ago
b1tg / cobaltstrike-beacon-rust
View on GitHub
CobaltStrike beacon in rust
☆208Aug 10, 2024Updated last year
b1nhack / rust-shellcode
View on GitHub
windows-rs shellcode loaders
☆393Jul 11, 2024Updated last year
safedv / RustVEHSyscalls
View on GitHub
A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
☆164Oct 31, 2024Updated last year
2vg / win-shellcode-rs
View on GitHub
improved shellcode template for b1tg/rust-windows-shellcode
☆29May 12, 2021Updated 4 years ago
Kudaes / Unwinder
View on GitHub
Call stack spoofing for Rust
☆361Feb 7, 2025Updated last year
trustedsec / COFFLoader
View on GitHub
☆620Jul 21, 2025Updated 7 months ago
Kudaes / Shelter
View on GitHub
ROP-based sleep obfuscation to evade memory scanners
☆379Jun 22, 2025Updated 8 months ago
postrequest / link
View on GitHub
link is a command and control framework written in rust
☆581Aug 18, 2021Updated 4 years ago
trickster0 / EDR_Detector
View on GitHub
EDR Detector that can find what kind of endpoint solution is being used according to drivers in the system.
☆94Nov 5, 2021Updated 4 years ago
cr7pt0pl4gu3 / Pestilence
View on GitHub
Shellcode loader designed for evasion. Coded in Rust.
☆134Mar 5, 2023Updated 3 years ago
FalconForceTeam / BOF2shellcode
View on GitHub
POC tool to convert CobaltStrike BOF files to raw shellcode
☆220Nov 5, 2021Updated 4 years ago
CCob / ThreadlessInject
View on GitHub
Threadless Process Injection using remote function hooking.
☆810Sep 4, 2024Updated last year
optiv / Freeze.rs
View on GitHub
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
☆722Aug 18, 2023Updated 2 years ago
frkngksl / NiCOFF
View on GitHub
COFF and BOF Loader written in Nim
☆174Aug 1, 2022Updated 3 years ago
trickster0 / NamelessC2
View on GitHub
Nameless C2 - A C2 with all its components written in Rust
☆284Sep 26, 2024Updated last year
Idov31 / FunctionStomping
View on GitHub
Shellcode injection technique. Given as C++ header, standalone Rust program or library.
☆708Sep 26, 2023Updated 2 years ago
memN0ps / eagle-rs
View on GitHub
Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle)
☆574Jun 5, 2023Updated 2 years ago
deepinstinct / Dirty-Vanity
View on GitHub
A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
☆675Dec 23, 2022Updated 3 years ago
Kudaes / ADPT
View on GitHub
DLL proxying for lazy people
☆203Dec 1, 2025Updated 3 months ago
codewhitesec / Lastenzug
View on GitHub
Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
☆234Oct 18, 2022Updated 3 years ago
boku7 / BokuLoader
View on GitHub
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
☆1,401Nov 22, 2023Updated 2 years ago
xuanxuan0 / DripLoader
View on GitHub
Evasive shellcode loader for bypassing event-based injection detection (PoC)
☆824Aug 23, 2021Updated 4 years ago
kyleavery / AceLdr
View on GitHub
Cobalt Strike UDRL for memory scanner evasion.
☆1,008Jun 4, 2024Updated last year
not-matthias / vmprotect-rs
View on GitHub
Rust bindings for VMProtect.
☆28Mar 8, 2024Updated 2 years ago
CooperShield / rustache_injector
View on GitHub
A rust based DLL injection project
☆31Sep 18, 2022Updated 3 years ago
BlackSnufkin / NyxInvoke
View on GitHub
NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
☆234Feb 12, 2025Updated last year
yamakadi / clroxide
View on GitHub
A rust library that allows you to host the CLR and execute dotnet binaries.
☆235Mar 12, 2025Updated last year
Yaxser / COFFLoader2
View on GitHub
Load and execute COFF files and Cobalt Strike BOFs in-memory
☆226Sep 13, 2022Updated 3 years ago
hasherezade / masm_shc
View on GitHub
A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.
☆187Apr 22, 2025Updated 10 months ago
Kudaes / rust_tips_and_tricks
View on GitHub
Rust For Windows Cheatsheet
☆121Nov 26, 2025Updated 3 months ago
SolomonSklash / SleepyCrypt
View on GitHub
A shellcode function to encrypt a running process image when sleeping.
☆339Sep 11, 2021Updated 4 years ago