RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀

A PDF interpreter and renderer in pure Rust.

Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussions/15

Library of missed NTOSKRNL import functions

a highly versatile, award-winning image to IRC/ANSI art tool

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers

Single header version of System Informer's phnt library.

Undocumented MSVC

darkPulse是一个用go编写的shellcode Packer，用于生成各种各样的shellcode loader，免杀火绒，360核晶等国内常见杀软。

Close-Circuit Telegram Vision revolutionizes location tracking with its open-source design and Telegram API integration. Offering precise tracking within 50-100 meters, users can monitor others in …

hyperv-driver-thread-detection-poc

A patch to hide PVE itself

A patch to hide qemu itself, bypass mhyprot,EAC,nProtect / VMProtect,VProtect, Themida, Enigma Protector,Safegine Shielden

Minimalist ML framework for Rust

The single instruction C compiler

Wordlist, rules and masks from Kaonashi project (RootedCON 2019)

A way to delete a locked file, or current running executable, on disk.

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

An Archive of Ransomware Notes Past and Present Collected by Zscaler ThreatLabz

Code for the cross platform, single source, OpenDTrace implementation

Elastic Security detection content for Endpoint

An advanced tool for working with access tokens and Windows security policy.

Windows x64 handcrafted token stealing kernel-mode shellcode

Collection of various malicious functionality to aid in malware development

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

Cross-platform tool that allows browsing and extracting C and C++ type declarations from PDB files.

Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.

A very small, very simple, yet very secure encryption tool.