Pressurecore is a position-independent code (PIC) framework for Rust shellcoding, inspired by Rustic64 and the original C++ implementation Stardust. This project is designed for advanced shellcode development on Windows x64, focusing on stealth and reliability.
- no_std: Minimal runtime, suitable for shellcode and payloads.
- x64 Only: Supports only 64-bit Windows targets.
- SSN Syscalls: Uses direct syscall numbers for Windows API calls.
- Vectored Exception Handling (VEH): Implements VEH for stealthy syscall invocation.
- Custom Build Pipeline: See
Makefile.tomlfor the full procedure to compile, strip, and extract raw shellcode binaries.
The build process is managed via cargo-make. The provided Makefile.toml automates:
- Cleaning previous builds.
- Compiling with custom Rust flags for PIC and stealth.
- Stripping unnecessary sections.
- Extracting raw shellcode using
objcopy.
Example:
cargo makeThe final shellcode will be output as pressurecore.bin.
The output shellcode (pressurecore.bin) can be injected into remote processes using various injection techniques.
Known Issue: The shellcode may terminate before the payload executes when injected. Investigation is ongoing — pull requests and suggestions are welcome!
Feel free to open issues or submit pull requests, especially regarding shellcode reliability and injection methods.