Alternatives and similar repositories for shadow-rs

Users that are interested in shadow-rs are comparing it to the libraries listed below

• gatariee / gocheck
  Because AV evasion should be easy.
  ☆749Updated 6 months ago
• itaymigdal / awesome-injection
  Centralized resource for listing and organizing known injection techniques and POCs
  ☆583Updated last month
• eversinc33 / Banshee
  Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
  ☆541Updated last month
• MzHmO / Exploit-Street
  Complete list of LPE exploits for Windows (starting from 2023)
  ☆798Updated last week
• memN0ps / arsenal-rs
  Rusty Arsenal - A collection of experimental Process Injection and Post-Exploitation Techniques in Rust
  ☆270Updated last year
• DualHorizon / blackpill
  A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs
  ☆335Updated this week
• cpu0x00 / Ghost
  Evasive shellcode loader
  ☆368Updated 8 months ago
• Kudaes / DInvoke_rs
  Dynamically invoke arbitrary unmanaged code
  ☆348Updated 7 months ago
• Kudaes / Shelter
  ROP-based sleep obfuscation to evade memory scanners
  ☆357Updated this week
• memN0ps / eagle-rs
  Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle)
  ☆559Updated 2 years ago
• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆538Updated last year
• memN0ps / venom-rs
  Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)
  ☆340Updated last year
• Krypteria / AtlasLdr
  Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
  ☆370Updated 8 months ago
• D3Ext / Hooka
  Shellcode loader generator with multiples features
  ☆485Updated 5 months ago
• Azr43lKn1ght / Rusty-PE-Packer
  ☆7Updated 5 months ago
• nickvourd / Supernova
  Real fucking shellcode encryptor & obfuscator tool
  ☆913Updated last month
• SafeBreach-Labs / PoolParty
  A set of fully-undetectable process injection techniques abusing Windows Thread Pools
  ☆1,127Updated last year
• safedv / RustPotato
  A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…
  ☆296Updated last month
• vxCrypt0r / Voidgate
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆523Updated last year
• Kudaes / EPI
  Threadless Process Injection through entry point hijacking
  ☆345Updated 9 months ago
• vxCrypt0r / Voidmaw
  A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…
  ☆314Updated 8 months ago
• reveng007 / DarkWidow
  Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
  ☆688Updated 3 months ago
• Maldev-Academy / HellHall
  Performing Indirect Clean Syscalls
  ☆558Updated 2 years ago
• d456h / IconJector
  Unorthodox and stealthy way to inject a DLL into the explorer using icons
  ☆320Updated last month
• dobin / avred
  Analyse your malware to surgically obfuscate it
  ☆474Updated 3 weeks ago
• safedv / RustiveDump
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆351Updated last month
• S3N4T0R-0X0 / BEAR
  Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of…
  ☆397Updated last week
• rad9800 / BootExecuteEDR
  ☆397Updated 6 months ago
• Teach2Breach / Tempest
  A command and control framework written in rust.
  ☆348Updated 4 months ago
• chompie1337 / Windows_LPE_AFD_CVE-2023-21768
  LPE exploit for CVE-2023-21768
  ☆490Updated last year