Skip to content
/ ShadowRust Public

A Rust Loader That Uses Indirect System Calls To Execute AES-Encrypted Payload From Given URL

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Cyb3rV1c/ShadowRust

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
AES-Encryption
AES-Encryption
 
 
ShadowRust
ShadowRust
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Screenshot 2025-03-10 at 2 13 09 PM

Description: This tool streamlines payload execution by leveraging indirect system calls while dynamically retrieving it from a specified URL.

Usage

  1. Clone Repo

  2. Encrypt First Your Payload Locally With AES-Encryption Tool. By Specifing in its code the path to your shellcode file & Specify AES Key.

  3. Build AES-Encryption Tool & Run It

  4. Upload the generated Data.Enc file to your chosen web domain. (Ex; you might start with a local server or use a web front, such as a Discord share link)

  5. Edit ShadowRust source file and specify your URL + AES Key used to encrypt your payload.

  6. Build & Run

Example Output

Execution

Screenshot 2025-03-10 at 2 30 35 PM

Disclaimer

This project is intended for educational and research purposes only.

The code provided in this repository is designed to help individuals understand and improve their knowledge of cybersecurity, ethical hacking, and malware analysis techniques. It must not be used for malicious purposes or in any environment where you do not have explicit permission from the owner.

About

A Rust Loader That Uses Indirect System Calls To Execute AES-Encrypted Payload From Given URL

Topics

loader assembly-language aes-encryption edr-evasion indirect-syscall

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages