Applied offensive security with Rust - https://kerkour.com/black-hat-rust

RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀

windows-rs shellcode loaders

LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.

🎃 PumpBin is an Implant Generation Platform.

A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAPI for various operations.

Windows shellcode development in Rust

Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)

Voyage is a stateful subdomain enumeration tool that combines passive and active techniques, user-specific databases, and fine-grained control built for efficient and reliable subdomain reconnaissance.

Memory Obfuscation in Rust

NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support

A dirty PoC for a reverse shell with cool features in Rust

A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and indirect NTAPIs for core operations.

Some Rust program I wrote while learning Malware Development

Dynamically invoke arbitrary code and use various tricks written idiomatically in Rust (Dinvoke)

Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

Rust template/library for implementing your own COFF loader

A runas implementation with extra features in Rust

rust远程shellcode加载， 过Microsoft Defender、360、火绒