memN0ps / venom-rs
Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)
☆333Updated last year
Alternatives and similar repositories for venom-rs:
Users that are interested in venom-rs are comparing it to the libraries listed below
- Dynamically invoke arbitrary unmanaged code☆334Updated 3 months ago
- Call stack spoofing for Rust☆324Updated last month
- Rusty Arsenal - A collection of experimental Process Injection and Post-Exploitation Techniques in Rust☆246Updated last year
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆207Updated last year
- Threadless Process Injection through entry point hijacking☆342Updated 6 months ago
- ROP-based sleep obfuscation to evade memory scanners☆332Updated last month
- Using fibers to run in-memory code.☆203Updated last year
- Rust For Windows Cheatsheet☆115Updated 4 months ago
- Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)☆239Updated 8 months ago
- Shellcode loader designed for evasion. Coded in Rust.☆125Updated 2 years ago
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆322Updated 7 months ago
- DLL proxying for lazy people☆151Updated 3 months ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆335Updated last month
- A COFF loader made in Rust☆282Updated 5 months ago
- Process Injection using Thread Name☆248Updated 6 months ago
- miscellaneous scripts and programs☆235Updated last month
- TartarusGate, Bypassing EDRs☆567Updated 3 years ago
- Replace the .txt section of the current loaded modules from \KnownDlls\ to bypass edrs☆293Updated 2 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆229Updated last year
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆291Updated last year
- ☆183Updated 9 months ago
- Some Rust program I wrote while learning Malware Development☆127Updated last month
- Exploitation of process killer drivers☆197Updated last year
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆239Updated 7 months ago
- Reuse open handles to dynamically dump LSASS.☆236Updated 11 months ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆291Updated last year
- A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)☆472Updated 2 years ago
- BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…☆371Updated last year
- LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.☆272Updated last year
- WTSRM☆209Updated 2 years ago