pe-sign

A cross-platform tool developed in Rust, designed for parsing and verifying digital signatures in PE files. It can be used as a standalone command-line tool or integrated as a library into any Rust project. Supports certificate extraction, signature verification, Authenticode digest calculation, and printing certificate details.

BypassUAC

Example code for bypassing UAC using the ICMLuaUtil COM interface

wechat-dump-rs

A tool for exporting keys from running WeChat processes and automatically decrypting all WeChat database files, as well as offline database decryption after key export. (The first tool supporting WeChat 4.0 decryption)

com-process-inject

An alternative approach to process injection, using the undocumented COM interface IRundown::DoCallback() for shellcode/DLL injection

process_ghosting

Rust implementation of the ProcessGhosting technique

cmd-spoofing

Windows process command-line spoofing test cases

ppspoofing

Windows parent PID spoofing test cases

ollvm-rust

An out-of-tree LLVM obfuscation plugin for Rust, dynamically loadable without recompiling LLVM. (Work in progress, currently unmaintained)