HIDX StealthLink

HIDX StealthLink allows remote access & exfiltration of loot even on Air Gapped machines. This is accomplished by enumerating a raw HID channel on the target device, as opposed to a network interface or an external drive.

The code supplied in these examples is meant to be used as a reference. You should implement your own versions for production & operational needs.

Select which mode you would like to explore:

• Usage Examples
  • Windows PowerShell Remote Shell
  • Linux Remote Shell
  • macOS Python Remote Shell
  • Windows PowerShell TCP Exfil
  • macOS Python TCP Exfil
  • Linux TCP Exfil
• Documentation and Resources
  • Technical Notes
  • Troubleshooting

This page is a work in progress as more reference content is added.

Note: The "Universal" Python reference implementation provides both exfil and shell capabilities for customers looking to build capabilities cross platform.