Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀

Dangerously fast DNS/network/port scanner

该工具用于导出正在运行中的微信进程的 key 并自动解密所有微信数据库文件以及导出 key 后数据库文件离线解密。

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

🤖 Kill The Protected Process 🤖

Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.

Threadless Process Injection through entry point hijacking

🎃 PumpBin is an Implant Generation Platform.

LSASS memory dumper using only NTAPIs, creating a minimal minidump, built in Rust with no_std and independent of the C runtime (CRT). It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.

yet another AV killer tool using BYOVD

Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)

Using fibers to run in-memory code.

CobaltStrike beacon in rust

Hide memory artifacts using ROP and hardware breakpoints.

A library for loading and executing PE (Portable Executable) from memory without ever touching the disk

REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs written in Rust. 🦀

Some POCs for my BYOVD research and find some vulnerable drivers

Detect EDR's exceptions by inspecting processes' loaded modules