From 94eccbba7c7afc62eb3bdba100eb1f5d0830b696 Mon Sep 17 00:00:00 2001 From: kmanc Date: Thu, 15 Jan 2026 09:58:18 -0500 Subject: [PATCH 1/5] Update index.md --- docs/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/index.md b/docs/index.md index 33451d4..484f7d4 100644 --- a/docs/index.md +++ b/docs/index.md @@ -7,7 +7,7 @@ title: "Remote Code Oxidation" [![RCO for Linux targets](https://github.com/kmanc/remote_code_oxidation/actions/workflows/linux.yml/badge.svg?style=flat)](https://github.com/kmanc/remote_code_oxidation/actions/workflows/linux.yml) [![RCO for Windows targets](https://github.com/kmanc/remote_code_oxidation/actions/workflows/windows.yml/badge.svg?style=flat)](https://github.com/kmanc/remote_code_oxidation/actions/workflows/windows.yml) ![language](https://img.shields.io/github/languages/top/kmanc/remote_code_oxidation?style=flat&color=orange) -[![license](https://img.shields.io/github/license/kmanc/remote_code_oxidation?style=flat&color=blueviolet)](https://raw.githubusercontent.com/kmanc/remote_code_oxidation/master/LICENSE) +[![license](https://img.shields.io/github/license/kmanc/remote_code_oxidation?style=flat&color=blueviolet)](https://raw.githubusercontent.com/kmanc/remote_code_oxidation/main/LICENSE) Remote Code Oxidation is a collection of offensive security tools written in Rust. My main goal for the project is to enable offensive security professionals and practitioners to prepare the tools needed for an engagement with as little overhead as possible. From b7eef78a93908f53e8e041b9c6cbee2ac172d37a Mon Sep 17 00:00:00 2001 From: kmanc Date: Thu, 15 Jan 2026 09:59:10 -0500 Subject: [PATCH 2/5] Update process_hollowing.md --- docs/process_hollowing.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/process_hollowing.md b/docs/process_hollowing.md index 95ecee9..0a86432 100644 --- a/docs/process_hollowing.md +++ b/docs/process_hollowing.md @@ -5,7 +5,7 @@ datatable: true # RCO: Process Hollowing -[![Process hollowing version unavailable](https://img.shields.io/crates/v/process_hollowing?label=process_hollowing)](https://github.com/kmanc/remote_code_oxidation/tree/master/process_hollowing) +[![Process hollowing version unavailable](https://img.shields.io/crates/v/process_hollowing?label=process_hollowing)](https://github.com/kmanc/remote_code_oxidation/tree/main/process_hollowing)
@@ -26,9 +26,9 @@ Linux process hollowing functions a little differently. First, the executable cr ## Using it 1. *[Not shown in demo]* Generate shellcode for the desired end result (for example, use [msfvenom](https://book.hacktricks.xyz/shells/shells/msfvenom) to generate a reverse TCP shell shellcode for the target operating system) -2. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) +2. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) and change the shellcode to the shellcode generated in step 1 -3. *[Optional - shown in [xor_params demo](https://kmanc.github.io/remote_code_oxidation/xor_params.html)]* Encrypt the shellcode and target process using [xor_params](https://github.com/kmanc/remote_code_oxidation/blob/master/xor_shellcode) and update the encrypted shellcode value in [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) +3. *[Optional - shown in [xor_params demo](https://kmanc.github.io/remote_code_oxidation/xor_params.html)]* Encrypt the shellcode and target process using [xor_params](https://github.com/kmanc/remote_code_oxidation/blob/main/xor_shellcode) and update the encrypted shellcode value in [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) 4. *[Not shown in demo]* Compile the executable, only including `--features xor` if you did step 3 1. Build for Linux target ```commandline From 2dff9c12fcb817596880a23012150b94194912e9 Mon Sep 17 00:00:00 2001 From: kmanc Date: Thu, 15 Jan 2026 09:59:36 -0500 Subject: [PATCH 3/5] Update process_migration.md --- docs/process_migration.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/process_migration.md b/docs/process_migration.md index f0f004a..19a4f5c 100644 --- a/docs/process_migration.md +++ b/docs/process_migration.md @@ -5,7 +5,7 @@ datatable: true # RCO: Process Migration -[![Process migration version unavailable](https://img.shields.io/crates/v/process_migration?label=process_migration)](https://github.com/kmanc/remote_code_oxidation/tree/master/process_migration) +[![Process migration version unavailable](https://img.shields.io/crates/v/process_migration?label=process_migration)](https://github.com/kmanc/remote_code_oxidation/tree/main/process_migration)
@@ -28,9 +28,9 @@ Linux process migration works slightly differently. After temporarily pausing th 1. *[Not shown in demo]* Generate shellcode for the desired end result (for example, use [msfvenom](https://book.hacktricks.xyz/shells/shells/msfvenom) to generate a reverse TCP shell shellcode for the target operating system) -2. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) +2. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) and change the shellcode to the shellcode generated in step 1 -3. *[Optional - shown in the [xor_params demo](https://kmanc.github.io/remote_code_oxidation/xor_params.html)]* Encrypt the shellcode and target process using [xor_params](https://github.com/kmanc/remote_code_oxidation/blob/master/xor_shellcode) and update the encrypted shellcode value in [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) +3. *[Optional - shown in the [xor_params demo](https://kmanc.github.io/remote_code_oxidation/xor_params.html)]* Encrypt the shellcode and target process using [xor_params](https://github.com/kmanc/remote_code_oxidation/blob/main/xor_shellcode) and update the encrypted shellcode value in [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) 4. *[Not shown in demo]* Compile the executable, only including `--features xor` if you did step 3 1. Build for Linux target ```commandline From 4e442eb0d7b5c7dbd12f967d6bf1686ad39e8d3b Mon Sep 17 00:00:00 2001 From: kmanc Date: Thu, 15 Jan 2026 09:59:52 -0500 Subject: [PATCH 4/5] Update tcp_reverse_shell.md --- docs/tcp_reverse_shell.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/tcp_reverse_shell.md b/docs/tcp_reverse_shell.md index 6549782..f804b50 100644 --- a/docs/tcp_reverse_shell.md +++ b/docs/tcp_reverse_shell.md @@ -5,7 +5,7 @@ datatable: true # RCO: TCP Reverse Shell -[![TCP reverse shell version unavailable](https://img.shields.io/crates/v/tcp_reverse_shell?label=tcp_reverse_shell)](https://github.com/kmanc/remote_code_oxidation/tree/master/tcp_reverse_shell) +[![TCP reverse shell version unavailable](https://img.shields.io/crates/v/tcp_reverse_shell?label=tcp_reverse_shell)](https://github.com/kmanc/remote_code_oxidation/tree/main/tcp_reverse_shell)
@@ -23,7 +23,7 @@ The reverse shells for both Linux and Windows work by establishing a [Transmissi ## Using it -1. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) +1. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) and change the IP address and port to match the IP address of your attacking machine and the port you will use for a listener respectively 2. *[Not shown in demo]* Compile the executable 1. For Linux targets From 85f40e068d42a4f10bc4ad366be7b80e05558f97 Mon Sep 17 00:00:00 2001 From: kmanc Date: Thu, 15 Jan 2026 10:00:10 -0500 Subject: [PATCH 5/5] Update xor_params.md --- docs/xor_params.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/xor_params.md b/docs/xor_params.md index e62069e..3013716 100644 --- a/docs/xor_params.md +++ b/docs/xor_params.md @@ -15,8 +15,8 @@ XOR params performs an [exclusive OR (XOR)](https://en.wikipedia.org/wiki/Exclus ## Using it 1. *[Not shown in demo]* Generate shellcode for the desired end result (for example, use [msfvenom](https://book.hacktricks.xyz/shells/shells/msfvenom) to generate a reverse TCP shell shellcode for the target operating system) -2. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) and change the shellcode to the shellcode generated in step 1 -3. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) and change the key to a desired key +2. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) and change the shellcode to the shellcode generated in step 1 +3. *[Not shown in demo]* Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) and change the key to a desired key 4. *[Not shown in demo]* Compile the executable 1. For Linux ```commandline @@ -27,4 +27,4 @@ XOR params performs an [exclusive OR (XOR)](https://en.wikipedia.org/wiki/Exclus cargo build --target x86_64-pc-windows-gnu -p xor_params --release ``` 5. Run the executable -6. Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/master/rco_config/src/lib.rs) and change encrypted payload to the output of step 5 +6. Open [the config file](https://github.com/kmanc/remote_code_oxidation/blob/main/rco_config/src/lib.rs) and change encrypted payload to the output of step 5