DarkSpaceSecurity / SSH-StealerLinks
Smart keylogging capability to steal SSH Credentials including password & Private Key
☆147Updated 8 months ago
Alternatives and similar repositories for SSH-Stealer
Users that are interested in SSH-Stealer are comparing it to the libraries listed below
Sorting:
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆119Updated 5 months ago
- Cobalt Strike module x loader x profile x wike / A public collection of open resources for Cobalt Strike (only legal use in Red Team and …☆51Updated last week
- Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation☆158Updated 2 weeks ago
- PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.☆176Updated 2 months ago
- Enumerate active EDR's on the system☆146Updated 2 months ago
- TeamServer and Client of Exploration Command and Control Framework☆176Updated 3 weeks ago
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆225Updated 2 years ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆145Updated 8 months ago
- We found a way to DLL sideload with cleanmgr.exe☆95Updated 9 months ago
- Chrome browser extension-based Command & Control☆217Updated 4 months ago
- Leverage WindowsApp createdump tool to obtain an lsass dump☆151Updated last year
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆158Updated 2 years ago
- Remote DLL Injection with Timer-based Shellcode Execution☆151Updated 4 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆126Updated last year
- A lightweight Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).☆66Updated 3 weeks ago
- Fuegoshell is a powershell oneliner generator for Windows remote shell re-using TCP 445☆53Updated last year
- Active Directory Authentication Library☆84Updated 3 weeks ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆154Updated last year
- Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...☆171Updated last year
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆101Updated last year
- ☆163Updated 2 years ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆76Updated last year
- A user-mode code and its rootkit that will Kill EDR Processes permanently by leveraging the power of Process Creation Blocking Kernel Cal…☆245Updated 5 months ago
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆51Updated 10 months ago
- Go Shellcode Loader to be Integrated in Exploration C2☆28Updated 9 months ago
- CVE-2025-33053 Proof Of Concept (PoC)☆61Updated 5 months ago
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- ☆219Updated last year
- ☆255Updated 4 months ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆45Updated 3 months ago