cr7pt0pl4gu3 / Pestilence
Shellcode loader designed for evasion. Coded in Rust.
☆125Updated 2 years ago
Alternatives and similar repositories for Pestilence:
Users that are interested in Pestilence are comparing it to the libraries listed below
- Some Rust program I wrote while learning Malware Development☆127Updated last month
- Port of Cobalt Strike's Process Inject Kit☆171Updated 3 months ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆239Updated 8 months ago
- CobaltStrike beacon in rust☆185Updated 7 months ago
- Reuse open handles to dynamically dump LSASS.☆236Updated 11 months ago
- Execute shellcode from a remote-hosted bin file using Winhttp.☆231Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆197Updated last month
- A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.☆181Updated last year
- Lateral Movement Using DCOM and DLL Hijacking☆287Updated last year
- Rust For Windows Cheatsheet☆116Updated 4 months ago
- Weaponized HellsGate/SigFlip☆198Updated last year
- ROP-based sleep obfuscation to evade memory scanners☆334Updated last month
- A COFF loader made in Rust☆287Updated 5 months ago
- ☆243Updated 2 years ago
- Red teaming tool to dump LSASS memory, bypassing basic countermeasures.☆206Updated 2 months ago
- Shaco is a linux agent for havoc☆156Updated last year
- REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…☆149Updated last year
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆205Updated last year
- ApexLdr is a DLL Payload Loader written in C☆109Updated 8 months ago
- .NET assembly loader with patchless AMSI and ETW bypass☆319Updated last year
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST☆180Updated 6 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆183Updated 3 months ago
- Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.☆214Updated last year
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆324Updated 2 weeks ago
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.☆260Updated last year
- Execute shellcode files with rundll32☆193Updated last year
- A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.☆136Updated 4 months ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆144Updated 2 years ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆304Updated 11 months ago
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆169Updated last year