Alternatives and similar repositories for impersonate-rs

Users that are interested in impersonate-rs are comparing it to the libraries listed below

• yamakadi / clroxide

  View on GitHub
  A rust library that allows you to host the CLR and execute dotnet binaries.
  ☆235Mar 12, 2025Updated 11 months ago
• BlackSnufkin / NovaLdr

  View on GitHub
  Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
  ☆258Jun 29, 2024Updated last year
• Signal-Labs / iat_unhook_sample

  View on GitHub
  (First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls…
  ☆136Mar 3, 2025Updated 11 months ago
• BlWasp / rs-shell

  View on GitHub
  A dirty PoC for a reverse shell with cool features in Rust
  ☆186Nov 25, 2025Updated 2 months ago
• yamakadi / ldr

  View on GitHub
  A work in progress BOF/COFF loader in Rust
  ☆50Mar 22, 2023Updated 2 years ago
• Kudaes / rust_tips_and_tricks

  View on GitHub
  Rust For Windows Cheatsheet
  ☆121Nov 26, 2025Updated 2 months ago
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• zblurx / dploot

  View on GitHub
  DPAPI looting remotely and locally in Python
  ☆540Oct 7, 2025Updated 4 months ago
• Teach2Breach / early_cascade_inj_rs

  View on GitHub
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆62Nov 8, 2024Updated last year
• hakaioffsec / coffee

  View on GitHub
  A COFF loader made in Rust
  ☆327Aug 20, 2025Updated 5 months ago
• safedv / RustiveDump

  View on GitHub
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆381Apr 26, 2025Updated 9 months ago
• janoglezcampos / rust_syscalls

  View on GitHub
  Single stub direct and indirect syscalling with runtime SSN resolving for windows.
  ☆230Mar 23, 2023Updated 2 years ago
• Kudaes / Split

  View on GitHub
  Apply a divide and conquer approach to bypass EDRs
  ☆287Oct 19, 2023Updated 2 years ago
• Kudaes / DInvoke_rs

  View on GitHub
  Dynamically invoke arbitrary unmanaged code
  ☆358Nov 20, 2024Updated last year
• Kudaes / Bin-Finder

  View on GitHub
  Detect EDR's exceptions by inspecting processes' loaded modules
  ☆130Mar 15, 2024Updated last year
• BlackSnufkin / Rusty-Playground

  View on GitHub
  Some Rust program I wrote while learning Malware Development
  ☆160Feb 4, 2025Updated last year
• 0xv1n / RemoteSessionEnum

  View on GitHub
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆118Aug 21, 2024Updated last year
• Nariod / RustPacker

  View on GitHub
  Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.
  ☆318Jun 24, 2025Updated 7 months ago
• zblurx / certsync

  View on GitHub
  Dump NTDS with golden certificates and UnPAC the hash
  ☆647Mar 20, 2024Updated last year
• nbaertsch / nimvoke

  View on GitHub
  Indirect syscalls + DInvoke made simple.
  ☆96Dec 24, 2024Updated last year
• itm4n / PPLmedic

  View on GitHub
  Dump the memory of any PPL with a Userland exploit chain
  ☆352Mar 17, 2023Updated 2 years ago
• djackreuter / rustlualoader

  View on GitHub
  Shellcode loader that executes embedded Lua from Rust.
  ☆127Dec 16, 2024Updated last year
• leftp / DPAPISnoop

  View on GitHub
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆140Sep 14, 2024Updated last year
• sensepost / impersonate

  View on GitHub
  A windows token impersonation tool
  ☆320Apr 19, 2023Updated 2 years ago
• BlackSnufkin / NyxInvoke

  View on GitHub
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆231Feb 12, 2025Updated last year
• safedv / Rustic64

  View on GitHub
  64-bit, position-independent implant template for Windows in Rust.
  ☆172Nov 28, 2025Updated 2 months ago
• lap1nou / CLR_Heap_encryption

  View on GitHub
  ☆100Oct 7, 2023Updated 2 years ago
• synacktiv / ntdissector

  View on GitHub
  ☆166Jun 20, 2025Updated 7 months ago
• Kudaes / ADPT

  View on GitHub
  DLL proxying for lazy people
  ☆198Dec 1, 2025Updated 2 months ago
• deepinstinct / Lsass-Shtinkering

  View on GitHub
  ☆385Jan 19, 2023Updated 3 years ago
• praetorian-inc / ADFSRelay

  View on GitHub
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆187Jun 22, 2022Updated 3 years ago
• Kudaes / Fiber

  View on GitHub
  Using fibers to run in-memory code.
  ☆240Oct 19, 2023Updated 2 years ago
• deepinstinct / NoFilter

  View on GitHub
  ☆301Oct 29, 2024Updated last year
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆358Dec 13, 2025Updated 2 months ago
• Kudaes / RustChain

  View on GitHub
  Hide memory artifacts using ROP and hardware breakpoints.
  ☆147Oct 20, 2023Updated 2 years ago
• fortalice / bofhound

  View on GitHub
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆387Feb 23, 2024Updated last year
• NH-RED-TEAM / RustHound

  View on GitHub
  Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀
  ☆1,123Oct 21, 2024Updated last year
• Kudaes / Unwinder

  View on GitHub
  Call stack spoofing for Rust
  ☆356Feb 7, 2025Updated last year
• Z4kSec / Masky

  View on GitHub
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆399Aug 15, 2025Updated 6 months ago