DarkSpaceSecurity / SSH-StealerLinks
Smart keylogging capability to steal SSH Credentials including password & Private Key
☆147Updated 8 months ago
Alternatives and similar repositories for SSH-Stealer
Users that are interested in SSH-Stealer are comparing it to the libraries listed below
Sorting:
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆120Updated 6 months ago
- Cobalt Strike module x loader x profile x wike / A public collection of open resources for Cobalt Strike (only legal use in Red Team and …☆94Updated 2 weeks ago
- A lightweight Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).☆66Updated this week
- Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation☆215Updated last month
- Enumerate active EDR's on the system☆146Updated 2 months ago
- PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.☆178Updated 3 months ago
- Chrome browser extension-based Command & Control☆222Updated 5 months ago
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆224Updated 2 years ago
- CVE-2025-33053 Proof Of Concept (PoC)☆62Updated 6 months ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆51Updated 11 months ago
- TeamServer and Client of Exploration Command and Control Framework☆174Updated last month
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆157Updated 2 years ago
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆170Updated last year
- Leverage WindowsApp createdump tool to obtain an lsass dump☆153Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆154Updated last year
- We found a way to DLL sideload with cleanmgr.exe☆95Updated 9 months ago
- Automated .NET AppDomain hijack payload generation☆130Updated 10 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆149Updated 8 months ago
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆53Updated last year
- ☆163Updated 2 years ago
- Abusing SSRF to deliver an authenticated command injection payload☆30Updated 3 months ago
- ☆259Updated 5 months ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆76Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…☆61Updated 7 months ago
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- An aggressor script that can help automate payload building in Cobalt Strike☆118Updated last year
- ☆221Updated last year
- Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit☆62Updated 7 months ago
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆129Updated 3 months ago