Alternatives and similar repositories for Rustic64:

Users that are interested in Rustic64 are comparing it to the libraries listed below

• safedv / RustVEHSyscalls
  A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.
  ☆132Updated 2 months ago
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆64Updated last week
• Octoberfest7 / enumhandles_BOF
  ☆121Updated 4 months ago
• Octoberfest7 / Secure_Stager
  An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution
  ☆157Updated last month
• rad9800 / FileRenameJunctionsEDRDisable
  ☆136Updated last month
• decoder-it / RelabelAbuse
  ☆60Updated 7 months ago
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆55Updated 3 months ago
• realoriginal / grimreaper
  A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
  ☆105Updated 4 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆167Updated last week
• realoriginal / shellcode-template
  A cmkr based win32 shellcode template for a unified build platform and more production friendly structure/testing.
  ☆65Updated last month
• eversinc33 / PSXecute
  32bit MIPS I VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.
  ☆103Updated last month
• securifybv / BOFRyptor
  ☆120Updated last year
• realoriginal / titanldr-ng
  A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge …
  ☆172Updated last year
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆61Updated 7 months ago
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆101Updated 3 weeks ago
• Octoberfest7 / Enumprotections_BOF
  A BOF to enumerate system process, their protection levels, and more.
  ☆111Updated last month
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆160Updated last month
• JanielDary / ImmoralFiber
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆215Updated 4 months ago
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆105Updated last month
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆121Updated 2 weeks ago
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆114Updated last year
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆112Updated 3 months ago
• ColeHouston / Sunder
  Windows rootkit designed to work with BYOVD exploits
  ☆110Updated this week
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆147Updated last month
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆58Updated this week
• deh00ni / NtDumpBOF
  ☆92Updated 4 months ago
• Kudaes / ADPT
  DLL proxying for lazy people
  ☆148Updated last month
• som3canadian / Cloudflare-Redirector
  Just another C2 Redirector using CloudFlare.
  ☆82Updated 8 months ago
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆62Updated 5 months ago