DarkSpaceSecurity / SSH-StealerLinks
Smart keylogging capability to steal SSH Credentials including password & Private Key
☆139Updated 4 months ago
Alternatives and similar repositories for SSH-Stealer
Users that are interested in SSH-Stealer are comparing it to the libraries listed below
Sorting:
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆105Updated last month
- TeamServer and Client of Exploration Command and Control Framework☆151Updated last week
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆158Updated 10 months ago
- Leverage WindowsApp createdump tool to obtain an lsass dump☆150Updated 10 months ago
- A user-mode code and its rootkit that will Kill EDR Processes permanently by leveraging the power of Process Creation Blocking Kernel Cal…☆203Updated last month
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆158Updated last year
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆140Updated 4 months ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆153Updated last year
- Linux post-exploitation agent that uses io_uring to stealthily bypass EDR detection by avoiding traditional syscalls.☆239Updated last week
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆224Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆122Updated 10 months ago
- ☆164Updated last year
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆54Updated last year
- Chrome browser extension-based Command & Control☆157Updated last month
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆195Updated 5 months ago
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆147Updated last year
- Active Directory Authentication Library☆78Updated 3 weeks ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆47Updated 6 months ago
- ☆220Updated last year
- A Mythic agent for Windows written in C☆131Updated 2 weeks ago
- Create Anti-Copy DRM Malware☆60Updated 11 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆186Updated 6 months ago
- ☆220Updated last month
- Convert your shellcode into an ASCII string☆103Updated last month
- Abusing SSRF to deliver an authenticated command injection payload