RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust
β1,841Dec 29, 2025Updated 2 months ago
Alternatives and similar repositories for RustRedOps
Users that are interested in RustRedOps are comparing it to the libraries listed below
Sorting:
- Rust Weaponization for Red Team Engagements.β2,991Apr 25, 2024Updated last year
- Rust for malware Development is a repository for advanced Red Team techniques and offensive malwares & Ransomwares, focused on Rust π¦β3,342Mar 4, 2026Updated 2 weeks ago
- windows-rs shellcode loadersβ393Jul 11, 2024Updated last year
- ROP-based sleep obfuscation to evade memory scannersβ379Jun 22, 2025Updated 9 months ago
- Windows Kernel Rootkit in Rustβ679Oct 10, 2025Updated 5 months ago
- A Rust port of LayeredSyscall β performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.β164Oct 31, 2024Updated last year
- A COFF loader made in Rustβ327Mar 14, 2026Updated last week
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and rβ¦β385Apr 26, 2025Updated 10 months ago
- Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.β321Mar 13, 2026Updated last week
- A BOF that runs unmanaged PEs inlineβ685Oct 23, 2024Updated last year
- Call Stack Spoofing for Rustβ212Jan 28, 2026Updated last month
- Real fucking shellcode encryptor & obfuscator toolβ1,013Jan 7, 2026Updated 2 months ago
- Nameless C2 - A C2 with all its components written in Rustβ284Sep 26, 2024Updated last year
- EDR Lab for Experimentation Purposesβ1,422Mar 1, 2026Updated 2 weeks ago
- A command and control framework written in rust.β386Sep 4, 2025Updated 6 months ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the β¦β1,828Nov 3, 2024Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memoryβ1,417Jan 19, 2026Updated 2 months ago
- Because AV evasion should be easy.β862Nov 28, 2024Updated last year
- Call stack spoofing for Rustβ361Feb 7, 2025Updated last year
- Collection of Beacon Object Files (BOF) for Cobalt Strikeβ681Aug 15, 2025Updated 7 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.β1,198Oct 16, 2023Updated 2 years ago
- Cobalt Strike UDRL for memory scanner evasion.β1,008Jun 4, 2024Updated last year
- A beacon object file implementation of PoolParty Process Injection Technique.β438Dec 21, 2023Updated 2 years ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph APIβ626Jun 25, 2024Updated last year
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β617Jan 2, 2025Updated last year
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUSTβ722Aug 18, 2023Updated 2 years ago
- Collection of UAC Bypass Techniques Weaponized as BOFsβ611Feb 21, 2024Updated 2 years ago
- This map lists the essential techniques to bypass anti-virus and EDRβ3,173Mar 28, 2025Updated 11 months ago
- A Rust implementation of GodPotato β abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAβ¦β358Updated this week
- Dynamically invoke arbitrary unmanaged codeβ360Feb 19, 2026Updated last month
- A modern 32/64-bit position independent implant templateβ1,307Mar 21, 2025Updated last year
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ542Feb 13, 2024Updated 2 years ago
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.β1,601Jul 31, 2024Updated last year
- .NET assembly loader with patchless AMSI and ETW bypassβ374Apr 19, 2023Updated 2 years ago
- HVNC for Cobalt Strikeβ1,304Dec 7, 2023Updated 2 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β787Jan 26, 2026Updated last month
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.β283Feb 8, 2024Updated 2 years ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetryβ460Aug 2, 2024Updated last year
- A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!β1,403Nov 22, 2023Updated 2 years ago