nilripper / ptrguardLinks
A pointer encryption library intended for Red Team implant design in Rust.
☆31Updated this week
Alternatives and similar repositories for ptrguard
Users that are interested in ptrguard are comparing it to the libraries listed below
Sorting:
- Rust template/library for implementing your own COFF loader☆72Updated 8 months ago
- A POC for developing BOFs for Sliver, Havoc, Cobalt Strike or most COFFLoaders in Rust.☆34Updated last month
- A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…☆58Updated 6 months ago
- A process injection technique using only thread context manipulation☆38Updated last year
- Find jmp gadgets for call stack spoofing.☆41Updated this week
- One-header configurable C++20 COFF loader☆22Updated 2 months ago
- bring your own clean ntdll (or other MS dlls)☆27Updated 2 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆68Updated 5 months ago
- Post-Ex BOF tooling for Hannibal☆24Updated 10 months ago
- remote process injections using pool party techniques☆66Updated 3 months ago
- A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.☆56Updated 5 months ago
- BOF for C2 framework☆43Updated 10 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆70Updated last month
- A work in progress BOF/COFF loader in Rust☆50Updated 2 years ago
- ☆100Updated last year
- use python on windows with full submodule support without installation☆31Updated 8 months ago
- A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.☆30Updated 7 months ago
- early cascade injection PoC based on Outflanks blog post, in rust☆60Updated 10 months ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆50Updated 8 months ago
- ☆53Updated 4 months ago
- Section-based payload obfuscation technique for x64☆64Updated last year
- various methods of making API calls☆19Updated 8 months ago
- A Rust version of Mirage, a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.☆39Updated 6 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆30Updated 8 months ago
- converts sRDI compatible dlls to shellcode☆31Updated 8 months ago
- Mythic C2 Agent written in x64 PIC C☆83Updated 8 months ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆68Updated last year
- Linker for Beacon Object Files☆127Updated this week
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆36Updated 2 months ago
- ☆78Updated 8 months ago