REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs written in Rust. π¦
β163Feb 22, 2024Updated 2 years ago
Alternatives and similar repositories for REC2
Users that are interested in REC2 are comparing it to the libraries listed below
Sorting:
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)β261Jun 29, 2024Updated last year
- β70Oct 30, 2023Updated 2 years ago
- RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. οΏ½β¦β42Apr 4, 2025Updated 11 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.β434Dec 21, 2023Updated 2 years ago
- EternalHush - java-based open-source c2 framework that targets Microsoft Windows�β21Feb 10, 2026Updated 3 weeks ago
- β223Mar 10, 2024Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL packageβ35Mar 28, 2023Updated 2 years ago
- A dirty PoC for a reverse shell with cool features in Rustβ186Nov 25, 2025Updated 3 months ago
- A COFF loader made in Rustβ328Aug 20, 2025Updated 6 months ago
- A variation of ProcessOverwriting to execute shellcode on an executable's sectionβ148Dec 16, 2023Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β779Jan 26, 2026Updated last month
- Go shellcode loader that combines multiple evasion techniquesβ389Jun 21, 2023Updated 2 years ago
- β163Sep 26, 2023Updated 2 years ago
- Using fibers to run in-memory code.β242Oct 19, 2023Updated 2 years ago
- Nameless C2 - A C2 with all its components written in Rustβ283Sep 26, 2024Updated last year
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β283Sep 18, 2024Updated last year
- ROP-based sleep obfuscation to evade memory scannersβ376Jun 22, 2025Updated 8 months ago
- β101Oct 7, 2023Updated 2 years ago
- Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.β598Updated this week
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.β307Dec 9, 2023Updated 2 years ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph APIβ622Jun 25, 2024Updated last year
- Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.β277Apr 17, 2023Updated 2 years ago
- Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8β351Aug 29, 2024Updated last year
- .net config loaderβ348Nov 9, 2023Updated 2 years ago
- WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.β281Feb 24, 2025Updated last year
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.β411Jan 11, 2026Updated last month
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-buiβ¦β232Feb 12, 2025Updated last year
- βοΈπ€« Stealth redirector for your red team operation securityβ1,067Updated this week
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.β569Jan 20, 2026Updated last month
- EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offerβ¦β374Apr 6, 2024Updated last year
- Protected Process Dumper Toolβ579Aug 30, 2023Updated 2 years ago
- Exploitation of echo_driver.sysβ170Sep 16, 2023Updated 2 years ago
- β163Oct 25, 2023Updated 2 years ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.β88Mar 2, 2025Updated last year
- Azure DevOps Services Attack Toolkitβ150Mar 15, 2025Updated 11 months ago
- Work, timer, and wait callback example using solely Native Windows APIs.β88Feb 11, 2024Updated 2 years ago
- Documents Exfiltration project for fun and educational purposesβ144Oct 10, 2023Updated 2 years ago
- β123Oct 9, 2023Updated 2 years ago
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUSTβ721Aug 18, 2023Updated 2 years ago