Alternatives and similar repositories for shadow-rs

Users that are interested in shadow-rs are comparing it to the libraries listed below

• 0xflux / Sanctum
  Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antiv…
  ☆426Updated 2 weeks ago
• itaymigdal / awesome-injection
  Centralized resource for listing and organizing known injection techniques and POCs
  ☆646Updated last month
• memN0ps / eagle-rs
  Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle)
  ☆566Updated 2 years ago
• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆551Updated 2 years ago
• gatariee / gocheck
  Because AV evasion should be easy.
  ☆823Updated 11 months ago
• EgeBalci / deoptimizer
  Evasion by machine code de-optimization.
  ☆408Updated last year
• DualHorizon / blackpill
  A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs
  ☆331Updated 4 months ago
• MzHmO / Exploit-Street
  Complete list of LPE exploits for Windows (starting from 2023)
  ☆835Updated 2 months ago
• eversinc33 / Banshee
  Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
  ☆567Updated 2 months ago
• Azr43lKn1ght / Rusty-PE-Packer
  ☆32Updated 9 months ago
• Nariod / RustPacker
  Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.
  ☆300Updated 4 months ago
• cpu0x00 / Ghost
  Evasive shellcode loader
  ☆390Updated last year
• Kudaes / Shelter
  ROP-based sleep obfuscation to evade memory scanners
  ☆365Updated 4 months ago
• BlackSnufkin / BYOVD
  BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).
  ☆402Updated last week
• Krypteria / AtlasLdr
  Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
  ☆380Updated last year
• nickvourd / Supernova
  Real fucking shellcode encryptor & obfuscator tool
  ☆947Updated last week
• joaoviictorti / RustRedOps
  RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀
  ☆1,759Updated 2 weeks ago
• Teach2Breach / Tempest
  A command and control framework written in rust.
  ☆374Updated last month
• memN0ps / venom-rs
  Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)
  ☆352Updated last year
• optiv / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆719Updated 2 years ago
• reveng007 / DarkWidow
  Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
  ☆721Updated 2 months ago
• Maldev-Academy / HellHall
  Performing Indirect Clean Syscalls
  ☆582Updated 2 years ago
• frkngksl / Shoggoth
  Shoggoth: Asmjit Based Polymorphic Encryptor
  ☆753Updated last year
• ZeroMemoryEx / Chaos-Rootkit
  Now You See Me, Now You Don't
  ☆986Updated last month
• CICADA8-Research / Spyndicapped
  COM ViewLogger — new malware keylogging technique
  ☆393Updated 9 months ago
• xaitax / Chrome-App-Bound-Encryption-Decryption
  Fully decrypt App-Bound Encrypted (ABE) cookies, passwords & payment methods from Chromium-based browsers (Chrome, Brave, Edge) - all in …
  ☆1,109Updated 2 weeks ago
• Kudaes / EPI
  Threadless Process Injection through entry point hijacking
  ☆348Updated last year
• vxCrypt0r / Voidgate
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆569Updated last year
• Tylous / FaceDancer
  FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loadi…
  ☆382Updated last year
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,184Updated last year