The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.

Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

An idiomatic Rust mutex type for Windows kernel driver development.

Hells Hollow Windows 11 Rootkit technique to Hook the SSDT via Alt Syscalls

Velox is a work in progress, experimental Rust based Operating System written for fun and learning

A markdown compatible Golang blogging platform I use for my own blog

A windows 11 rootkit in Rust

Str Crypter is a Rust macro to encrypt plaintext strings at compile time, and automatically decrypts them at runtime

Rust DLL Search Order Hijacking

Pipeline for creating shellcode from a nostd rust project.

APC Queue Injection EDR Evasion in Rust

Event Tracing for Windows EDR bypass in Rust (usermode)

Library to resolve function pointers to loaded modules in memory, such as functions provided by Windows DLL's

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

Clipboard HexDumper is a command-line tool that allows you to read binary data of a file on disk, convert it to a hex dump or a base64 encoded string, and copy it to the clipboard.

Remote process DLL Injection in Rust

Introduction to the Windows API for Rust, demonstrating a simple DLL injector

Re-engineering of a .net stealer using IMAP for c2

A C based reflective DLL injector which will inject a DLL packed into the very same executable.

A go based IMAP c2 server

DLL injector POC written currently in C++ to be wrapped with Go and CGO.

Meet Art, he is A (simple) Radio Telescope. Art will be able to look into the galaxy and observe large hydrogen clouds undergoing quantum effects emitting radiation at a wavelength of approximatley…

Graph shellcode from a pure data file blob which would get injected into memory