AI prompts
base on RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀 # RustRedOps
</br>
<p align="center">
<img height="200" alt="RustRedOps" src="rust.png">
</p>
</br>
RustRedOps is a repository that houses various tools and projects related to Red Team operations, developed in Rust. This repository is dedicated to providing effective and efficient tools for security professionals and penetration testers who want to perform security assessments and intrusion tests.
## Table of Contents
* [Contents](#contents)
* [Other Rust projects](#other-rust-projects)
* [Resources](#resources)
* [Requirements](#requirements)
* [Compile](#compile)
* [Compiling the Project](#compiling-the-project)
* [Adding Destination Architectures](#adding-destination-architectures)
* [Compiling for a Specific Architecture](#compiling-for-a-specific-architecture)
* [How to get started](#how-to-get-started)
* [Contributing to RustRedOps](#contributing-to-rustRedOps)
* [References](#references)
* [Other Essential Resources](#other-essential-resources)
* [License](#license)
## Contents
The repository is organized into several projects, each with its own purpose and functionality. Here are some examples of the projects included:
1. [**APC Injection**](/APC_Injection)
- This project exploits the Asynchronous Code Injection (APC) technique to execute malicious code in target processes.
2. [**API Hooking**](/API_Hooking)
- Demonstration on API hooking which is a programming technique that allows you to intercept and manipulate calls to Windows API functions.
3. [**Anti-Debug**](/Anti_Debug)
- Techniques Anti-Debugging.
4. [**API Hammering**](/API_Hammering)
- API Hammering consists of carrying out various actions to delay the malware.
5. [**Anti-Analysis**](/Anti_Analysis)
- Techniques Anti-Analysis.
6. [**Binary Info**](/Binary_Info)
- This is just a simple demonstration in case you want to include metadata in your Rust binary or change the associated icon.
7. [**Block DLL Policy**](/Block_DLL_Policy)
- Avoiding the loading of DLLS not signed by Microsoft.
8. [**Create Driver**](/Create_Driver)
- It's a project to demonstrate how to create a simple driver using rust.
9. [**Create DLL**](/Create_DLL)
- It's a project to demonstrate how to create dll using rust.
10. [**Callback Code Execution**](/Callback_Code_Execution)
- Demonstration of shellcode execution via callback.
11. [**Create UEFI**](/Create_UEFI)
- It's a project to demonstrate how to create uefi using rust.
12. [**Compile Encrypt String**](/Compile_Encrypt_String)
- Encrypting strings at compile time and decrypting them at runtime.
13. [**Extract WIFI**](/Extract_Wifi)
- Extracting WIFI passwords using winapis is a customized form of the netsh command.
14. [**Encryption (Shellcode)**](/Encryption_Shellcode)
- Encrypting / Decrypting a shellcode using AES and RC4.
15. [**Enumeration Process**](/Enumeration_Processes)
- Enumerating processes with Rust.
16. [**Token**](/Token)
- Enabling all privilege tokens.
17. [**Execute Command**](/Execute_Command)
- Running commands with Rust.
18. [**Hells / Halos / Tartarus Gate**](/Hells_Halos_Tartarus_Gate)
- Recovering ssn through the Hells / Halos / Tartarus Gate techniques
19. [**IAT Obfuscation**](/IAT_Obfuscation)
- IAT obfuscation by replacing GetProcAddress and GetModuleHandle.
20. [**IAT Camouflage**](/IAT_Camouflage)
- Technique for exporting APIs (without executing them) in order to camouflage the IAT and avoid a malicious appearance.
21. [**Local Payload Execution**](/Local_Payload_Execution)
- This project addresses the direct execution of malicious payloads in a system's local environment.
22. [**Mapping Injection**](/Mapping_Injection)
- Code injection technique that leverages memory mapping, with the same underlying method applied to either local or remote processes
23. [**Function Stomping Injection**](/Function_Stomping_Injection)
- Involves replacing legitimate functions with malicious code.
24. [**Thread Hijacking**](/Thread_Hijacking)
- Focuses on hijacking existing threads to execute arbitrary code.
25. [**Local PE Injection**](/Local_PE_Injection)
- Running a PE file in memory.
26. [**Minidump**](/Minidump)
- Dumping the lsass.exe process.
27. [**Module Stomping**](/Module_Stomping)
- The Module Stomping technique focuses on injecting a shellcode into the entrypoint of the mapped or loaded DLL.
28. [**NTDLL Unhooking**](/NTDLL_Unhooking)
- Running NTDLL Unhooking through a suspended process.
29. [**Named Pipe Server / Client**](/Named_Pipe_Client_Server)
- A simple project showing how we can communicate between processes using named pipes.
30. [**Module Overloading**](/Module_Overloading)
- Module Overloading is a technique that maps a target DLL and replaces its contents with an EXE / DLL file and then executes it.
31. [**Obfuscation Shellcode**](/Obfuscation)
- Shellcode obfuscation using IPV4, IPV6, MAC and UUIDs.
32. [**PPID Spoofing**](/PPID_Spoofing)
- Demonstrating the PPID Spoofing technique.
33. [**Parsing PE Headers**](/Parsing_PE)
- The code is focused on parsing the PE header of any Windows executable file.
34. [**ETW**](/ETW)
- Patching ETW.
35. [**AMSI**](/AMSI)
- Patching AMSI.
36. [**Payload Execution Control**](/Payload_Execution_Control)
- Controlling payload execution through Mutex, Events and Semaphores.
37. [**Process Argument Spoofing**](/Process_Argument_Spoofing)
- Exploits the technique of masking or altering the arguments of a process to hide malicious activity.
38. [**Process Injection (DLL)**](/Process_Injection_DLL)
- It focuses on injecting dynamic link libraries (DLL) into running processes to execute malicious code.
39. [**Process Injection (Shellcode)**](/Process_Injection_Shellcode)
- It exploits shellcode injection directly into running processes to control or execute malicious tasks.
40. [**Payload Placement**](/Payload_Placement)
- Storing a shellcode in the .text section and then executing it.
41. [**Process Hypnosis**](/Process_Hypnosis)
- This technique focuses on controlling the execution flow of a program that is being debugged and obtaining relevant information from it, such as the creation of new threads, loaded modules, exceptions and much more. Or even execute a shellcode.
42. [**Payload Execution Fibers**](/Payload_Execution_Fibers)
- Running shellcode using Fibers.
43. [**Payload Staging**](/Payload_Staging)
- This project focuses on demonstrating how to perform shellcode retrieval using an HTTP request and a Registry key
44. [**Process Ghosting**](/Process_Ghosting)
- Loading a PE file using the Process Ghosting technique.
45. [**Process Herpaderping**](/Process_Herpaderping)
- Obscuring the intentions of a process by modifying the contents of the disk after the image has been mapped.
46. [**Remove CRT**](/Remove_CRT)
- It focuses on minimizing the use of the CRT (C Runtime Library) during runtime and applying additional flags to strip away unnecessary information from the binary.
47. [**Self Deletion**](/Self_Deletion)
- Technique for deleting the running binary.
48. [**String Hashing**](/String_Hashing)
- Creating string hashes to perform hiding.
49. [**Syscalls**](/Syscalls)
- Running direct and indirect syscall.
50. [**Threadless Injection**](/Threadless_Injection)
- Performing Threadless Injection using Rust.
51. [**WMI**](/WMI)
- Running WMI (Windows Management Instrumentation) queries.
52. [**WebAssembly Shellcode**](/WebAssembly_Shellcode)
- Running shellcode through WebAssembly.
## Other Rust projects
Here are some other examples of projects I've done with Rust:
- [**shadow-rs**](https://github.com/joaoviictorti/shadow-rs)
- Windows Kernel Rootkit.
- [**coffeeldr**](https://github.com/joaoviictorti/coffeeldr)
- COFF Loader.
- [**rustclr**](https://github.com/joaoviictorti/rustclr)
- Host CLR and run .NET binaries.
- [**userdmp**](https://github.com/joaoviictorti/userdmp)
- A Rust crate to parse user-mode minidump files generated on Windows.
- [**dinvk**](https://github.com/joaoviictorti/dinvk)
- Dynamically invoke arbitrary code with Rust tricks, #[no_std] support, and compatibility for `x64`, `x86`, `ARM64` and `WoW64` (DInvoke)
- [**runas-rs**](https://github.com/joaoviictorti/runas-rs)
- A runas implementation with extra features in Rust
- [**uwd**](https://github.com/joaoviictorti/uwd)
- Call Stack Spoofing for Rust with support #[no_std]
## Resources
- Each individual project can include a features section that details the project's main features and functionalities.
- You can view the installation instructions, usage and examples for each project in their respective directories.
## Requirements
- [Rust](https://www.rust-lang.org/): Rust is a modern and secure programming language used to develop the tools in this repository.
- [Cargo](https://doc.rust-lang.org/cargo/): Cargo is Rust's package manager and compiler, essential for compiling and running projects.
## Compile
### Compiling the Project
To start the compilation, use the following command:
```sh
cargo build --release
```
### Adding Destination Architectures
If you are using a different operating system or need to compile for a specific architecture, you can list all available target architectures with the following command:
```sh
rustup target list
```
Once you have identified the desired target architecture, add it using rustup:
```sh
rustup target add <arch>
```
Replace `<arch>` with the desired architecture, such as `x86_64-pc-windows-gnu`.
### Compiling for a Specific Architecture
Then compile the project for the specific architecture:
```sh
cargo build --release --target <arch>
```
## How to get started
Follow these steps to start using the projects in this repository:
1. Clone this repository on your local machine:
```sh
git clone https://github.com/joaoviictorti/RustRedOps.git
```
2. Navigate to the directory of the project you are interested in:
```sh
cd RustRedOps/<name-project>
```
3. Follow the project-specific installation and usage instructions as described in the README inside this directory.
## Contributing to RustRedOps
To contribute to **RustRedOps**, follow these steps:
1. Fork this repository.
2. Create a branch: `git checkout -b <branch_name>`.
3. Make your changes and commit them: `git commit -m '<commit_message>'`.
4. Push your changes to your branch: `git push origin <branch_name>`.
5. Create a pull request.
Alternatively, consult the [GitHub documentation](https://docs.github.com/en/pull-requests/collaborating-with-pull-requests) on how to create a pull request.
## References
I would like to express my sincere gratitude to the creators of remarkable projects and fascinating techniques, who provided me with the tools and inspiration needed to create this extraordinary repository.
* [MemN0ps](https://github.com/MemN0ps)
* [hasherezade](https://github.com/hasherezade)
* [vxunderground](https://github.com/vxunderground)
* [NUL0x4C](https://github.com/NUL0x4C)
* [mrd0x](https://github.com/mrd0x)
* [Cracked5pider](https://github.com/Cracked5pider)
* [trickster0](https://github.com/trickster0)
* [BlWasp](https://github.com/BlWasp)
* [CCob](https://github.com/CCob)
### Other Essential Resources:
* https://balwurk.com/shellcode-evasion-using-webassembly-and-rust
* https://github.com/janoglezcampos/rust_syscalls
* https://github.com/microsoft
* https://ired.team
* https://github.com/rust-osdev/uefi-rs
* https://discord.gg/rust-lang-community
* https://github.com/anvie/litcrypt.rs
## License
This project is licensed under the [**MIT License**](/LICENSE)
", Assign "at most 3 tags" to the expected json: {"id":"8719","tags":[]} "only from the tags list I provide: [{"id":77,"name":"3d"},{"id":89,"name":"agent"},{"id":17,"name":"ai"},{"id":54,"name":"algorithm"},{"id":24,"name":"api"},{"id":44,"name":"authentication"},{"id":3,"name":"aws"},{"id":27,"name":"backend"},{"id":60,"name":"benchmark"},{"id":72,"name":"best-practices"},{"id":39,"name":"bitcoin"},{"id":37,"name":"blockchain"},{"id":1,"name":"blog"},{"id":45,"name":"bundler"},{"id":58,"name":"cache"},{"id":21,"name":"chat"},{"id":49,"name":"cicd"},{"id":4,"name":"cli"},{"id":64,"name":"cloud-native"},{"id":48,"name":"cms"},{"id":61,"name":"compiler"},{"id":68,"name":"containerization"},{"id":92,"name":"crm"},{"id":34,"name":"data"},{"id":47,"name":"database"},{"id":8,"name":"declarative-gui "},{"id":9,"name":"deploy-tool"},{"id":53,"name":"desktop-app"},{"id":6,"name":"dev-exp-lib"},{"id":59,"name":"dev-tool"},{"id":13,"name":"ecommerce"},{"id":26,"name":"editor"},{"id":66,"name":"emulator"},{"id":62,"name":"filesystem"},{"id":80,"name":"finance"},{"id":15,"name":"firmware"},{"id":73,"name":"for-fun"},{"id":2,"name":"framework"},{"id":11,"name":"frontend"},{"id":22,"name":"game"},{"id":81,"name":"game-engine "},{"id":23,"name":"graphql"},{"id":84,"name":"gui"},{"id":91,"name":"http"},{"id":5,"name":"http-client"},{"id":51,"name":"iac"},{"id":30,"name":"ide"},{"id":78,"name":"iot"},{"id":40,"name":"json"},{"id":83,"name":"julian"},{"id":38,"name":"k8s"},{"id":31,"name":"language"},{"id":10,"name":"learning-resource"},{"id":33,"name":"lib"},{"id":41,"name":"linter"},{"id":28,"name":"lms"},{"id":16,"name":"logging"},{"id":76,"name":"low-code"},{"id":90,"name":"message-queue"},{"id":42,"name":"mobile-app"},{"id":18,"name":"monitoring"},{"id":36,"name":"networking"},{"id":7,"name":"node-version"},{"id":55,"name":"nosql"},{"id":57,"name":"observability"},{"id":46,"name":"orm"},{"id":52,"name":"os"},{"id":14,"name":"parser"},{"id":74,"name":"react"},{"id":82,"name":"real-time"},{"id":56,"name":"robot"},{"id":65,"name":"runtime"},{"id":32,"name":"sdk"},{"id":71,"name":"search"},{"id":63,"name":"secrets"},{"id":25,"name":"security"},{"id":85,"name":"server"},{"id":86,"name":"serverless"},{"id":70,"name":"storage"},{"id":75,"name":"system-design"},{"id":79,"name":"terminal"},{"id":29,"name":"testing"},{"id":12,"name":"ui"},{"id":50,"name":"ux"},{"id":88,"name":"video"},{"id":20,"name":"web-app"},{"id":35,"name":"web-server"},{"id":43,"name":"webassembly"},{"id":69,"name":"workflow"},{"id":87,"name":"yaml"}]" returns me the "expected json"