DarkSpaceSecurity / SSH-StealerLinks
Smart keylogging capability to steal SSH Credentials including password & Private Key
☆151Updated 10 months ago
Alternatives and similar repositories for SSH-Stealer
Users that are interested in SSH-Stealer are comparing it to the libraries listed below
Sorting:
- Cobalt Strike module x loader x profile x wike / A public collection of open resources for Cobalt Strike (only legal use in Red Team and …☆107Updated 2 months ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆149Updated 7 months ago
- A lightweight Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).☆68Updated last month
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆224Updated 2 years ago
- PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.☆180Updated 5 months ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆125Updated 2 years ago
- We found a way to DLL sideload with cleanmgr.exe☆96Updated 11 months ago
- TeamServer and Client of Exploration Command and Control Framework☆177Updated last month
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆156Updated 10 months ago
- Enumerate active EDR's on the system☆150Updated 4 months ago
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆159Updated 2 years ago
- CVE-2025-33053 Proof Of Concept (PoC)☆64Updated 7 months ago
- Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation☆336Updated last week
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆169Updated last year
- Chrome browser extension-based Command & Control☆232Updated 7 months ago
- ☆163Updated 2 years ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆183Updated last month
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆132Updated 5 months ago
- ☆48Updated 2 months ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆52Updated last year
- Documents Exfiltration project for fun and educational purposes☆145Updated 2 years ago
- Remote DLL Injection with Timer-based Shellcode Execution☆154Updated 6 months ago
- Automated .NET AppDomain hijack payload generation☆129Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆128Updated last year
- ☆222Updated last year
- Leverage WindowsApp createdump tool to obtain an lsass dump☆153Updated last year
- Abusing SSRF to deliver an authenticated command injection payload☆30Updated 5 months ago
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆233Updated this week
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆203Updated 11 months ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆77Updated last year