Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)
☆367Mar 2, 2024Updated 2 years ago
Alternatives and similar repositories for venom-rs
Users that are interested in venom-rs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆236Mar 23, 2023Updated 3 years ago
- Dynamically invoke arbitrary unmanaged code☆364Feb 19, 2026Updated 3 months ago
- Call stack spoofing for Rust☆379Feb 7, 2025Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Feb 28, 2023Updated 3 years ago
- Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle)☆582Jun 5, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Hide memory artifacts using ROP and hardware breakpoints.☆150Oct 20, 2023Updated 2 years ago
- Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.☆283Feb 8, 2024Updated 2 years ago
- Threadless Process Injection through entry point hijacking☆353Sep 10, 2024Updated last year
- CobaltStrike beacon in rust☆207Aug 10, 2024Updated last year
- COFF and BOF Loader written in Nim☆176Apr 4, 2026Updated 2 months ago
- Execute unmanaged Windows executables in CobaltStrike Beacons☆723Mar 4, 2023Updated 3 years ago
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆400Jan 9, 2024Updated 2 years ago
- A COFF loader made in Rust☆336Mar 14, 2026Updated 3 months ago
- Implant drop-in for EDR testing☆147Nov 15, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆234Oct 18, 2022Updated 3 years ago
- Beacon Object File Loader☆296Dec 3, 2023Updated 2 years ago
- ☆640Jul 21, 2025Updated 10 months ago
- A rust library that allows you to host the CLR and execute dotnet binaries.☆237Mar 12, 2025Updated last year
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆302Oct 26, 2022Updated 3 years ago
- .NET assembly loader with patchless AMSI and ETW bypass☆382Apr 19, 2023Updated 3 years ago
- Reuse open handles to dynamically dump LSASS.☆247Apr 4, 2024Updated 2 years ago
- Cobalt Strike UDRL for memory scanner evasion.☆1,019Jun 4, 2024Updated 2 years ago
- A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.☆165Oct 31, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆513Aug 14, 2022Updated 3 years ago
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆295Jul 15, 2023Updated 2 years ago
- Replace the .txt section of the current loaded modules from \KnownDlls\☆306Sep 28, 2022Updated 3 years ago
- KaynLdr is a Reflective Loader written in C/ASM☆554Dec 3, 2023Updated 2 years ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆265Jun 29, 2024Updated last year
- A shellcode function to encrypt a running process image when sleeping.☆340Sep 11, 2021Updated 4 years ago
- A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementin…☆537Aug 1, 2022Updated 3 years ago
- Remote operations commands implemented using Beacon Object Files☆1,165Mar 5, 2026Updated 3 months ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆141Sep 12, 2022Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).☆186Feb 12, 2023Updated 3 years ago
- (First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls…☆138Mar 3, 2025Updated last year
- Apply a divide and conquer approach to bypass EDRs☆285Oct 19, 2023Updated 2 years ago
- An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…☆499Dec 7, 2025Updated 6 months ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆167Mar 1, 2024Updated 2 years ago
- Load and execute COFF files and Cobalt Strike BOFs in-memory☆226Sep 13, 2022Updated 3 years ago
- A BOF to determine Windows Defender exclusions.☆256Jun 25, 2023Updated 2 years ago