azathoth-core

Crates.ioazathoth-core
lib.rsazathoth-core
version0.1.4
created_at2025-08-10 12:28:31.015085+00
updated_at2025-09-03 07:49:10.547765+00
descriptionCore OS types for the AzathothC2 project
homepage
repositoryhttps://github.com/AzathothC2/azathoth-core
max_upload_size
id1788869
size80,980
(mrLochness350)

documentation

README

Azathoth_core

Crates.io Version README.md azathoth_core provides low-level, platform-specific definitions and utilities used across the Azathoth c2 framework

It serves a no_std-compatible layer, containing:

  • Platform-specific structs, constants and type definitions for Windows and Linux
  • A crc32 lookup table for fast hashing
  • The AzError trait error interface shared across the rest of the Azathoth Crates

[!WARNING] This project is still in active development and may change at any time!

Installation

  • Manually, via Cargo.toml: azathoth_core = "0.1.4"

  • Using the cargo cli: cargo add azathoth_core

Supported Platform Definitions

The following structs (and related types) are included:

  • Windows:
    • Guid
    • Windows Internals:
      • TEB (Thread Environment Block)
      • PEB (Process Environment Block)
      • RTL_USER_PROCESS_PARAMETERS
      • UNICODE_STRING
      • LIST_ENTRY
      • LDR_DATA_TABLE_ENTRY
      • PEB_LDR_DATA
    • PE/COFF structures:
      • IMAGE_DOS_HEADER
      • IMAGE_NT_HEADERS64
      • IMAGE_FILE_HEADER
      • IMAGE_OPTIONAL_HEADER64
      • IMAGE_DATA_DIRECTORY
      • IMAGE_EXPORT_DIRECTORY
      • IMAGE_SECTION_HEADER
      • IMAGE_BASE_RELOCATION
      • IMAGE_IMPORT_DESCRIPTOR
      • IMAGE_IMPORT_DESCRIPTOR_0 (union)
      • IMAGE_THUNK_DATA64
      • IMAGE_THUNK_DATA64_0 (union)
      • IMAGE_IMPORT_BY_NAME
      • IMAGE_TLS_DIRECTORY64
    • URL_COMPONENTSA
    • RUNTIME_FUNCTION
    • WLDP_HOST_INFORMATION
    • EVENT_DESCRIPTOR
    • EVENT_DATA_DESCRIPTOR
  • Linux:

    • Elf64Ehdr (ELF64 File header)

    • Elf64Dyn (ELF64 dynamic table entry)

    • Elf64Rela (ELF64 Relocation entries)

    • Elf64Sym (Symbol table entry)

    • Elf64Phdr (ELF64 Program header)

    • Elf64Shdr (ELF64 section header)

Changelog

  • 0.1.0: Initial release
  • 0.1.1: Re-exported CRC32 hashing table
  • 0.1.2: Added Dotnet definitions (locked behind dotnet-defs feature. Windows only)
  • 0.1.3: Made os modules feature-dependent. You can now use the windows structs on linux and vice versa
  • 0.1.4: Added AV structs and function signatures (locked behind av-defs feature. Windows only), plus a few extra typedefs for basic Windows types
Commit count: 12

cargo fmt