killvxk / Rust-for-Malware-Development-Whitecat18
This repository contains my complete resources and coding practices for malware development using Rust π¦.
β12Updated 3 months ago
Alternatives and similar repositories for Rust-for-Malware-Development-Whitecat18:
Users that are interested in Rust-for-Malware-Development-Whitecat18 are comparing it to the libraries listed below
- β47Updated last year
- Efficient RAT signature locator for bypassing AV/EDR, supporting static scanning and memory scanning.β38Updated 6 months ago
- Help red teams find opsec processes during engagementsβ38Updated 4 months ago
- A 64-bit, position-independent code reverse TCP shell for Windows β built in Rust.β63Updated 3 months ago
- A COFF Loader written in Rustβ97Updated 2 weeks ago
- Execute shellcode via Bluetooth device authenticationβ38Updated 2 months ago
- ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代η , ζζ―θ½―δ»Ά, η»θΏβ39Updated 8 months ago
- A simple Sleepmask BOF exampleβ98Updated 7 months ago
- Evasive loader to bypass static detectionβ58Updated last year
- Self Cleanup in post-ex jobβ55Updated 7 months ago
- A Simple PoCβ21Updated 11 months ago
- Remote Access Tool written in C#β26Updated last week
- UAC Bypass using UIAccess program QuickAssistβ81Updated 2 months ago
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.β47Updated last year
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Prβ¦β71Updated last year
- An implementation of an indirect system callβ126Updated last year
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.β62Updated last year
- β56Updated 5 months ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.β48Updated 2 months ago
- Implementation of Indirect Syscall technique to pop a calc.exeβ102Updated last year
- vehsyscall:a syscall project that may bypass EDRβ56Updated last year
- converts sRDI compatible dlls to shellcodeβ23Updated 3 months ago
- frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can β¦β51Updated 2 years ago
- Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread techniqueβ63Updated 2 years ago
- CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls executionβ42Updated last year
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dllβ105Updated last week
- Execute dotnet app from unmanaged processβ73Updated 3 months ago
- β36Updated 4 months ago
- shellcodeηζζ‘ζΆβ85Updated 9 months ago
- This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".β78Updated 2 years ago