W4SP-Stealer
bbystealer
W4SP-Stealer | bbystealer | |
---|---|---|
2 | 1 | |
121 | 12 | |
- | - | |
10.0 | 10.0 | |
over 1 year ago | over 1 year ago | |
Python | JavaScript | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
W4SP-Stealer
- Phylum Discovers Dozens More PyPI Packages Attempting to Deliver W4SP Stealer in Ongoing Supply-Chain Attack
-
Dozens of malicious PyPI packages discovered targeting developers
Yep. You can read the source code for it here: https://github.com/loTus04/W4SP-Stealer
bbystealer
-
Discord Malware Analysis
Apparently this is a modified version of a quite popular pirate stealer, but while I was excited to grab the webhook URL and play with the attacker that paid for this NodeJS script, I found out they actually route it through two URLs. I'm not yet exactly sure if they request this API to call a webhook URL, or if they pass the webook to the API. Nonetheless, I should be able to directly invoke it myself...
What are some alternatives?
cargo-vet - supply-chain security for Rust
BlackCap-Grabber - A Powerfull Fully Undetect Token Stealer / Token Grabber, allow to steal discord new password / a2f codes / email / credit card / anti delete, steal browsers chromium based Passwords / Cookies / History, Can also steal steam / metamask / exodus / minecraft login / roblox cookies, with anti debug [GET https://api.github.com/repos/KSCHdsc/BlackCap-Grabber: 403 - Repository access blocked]
Luna-Grabber - The best discord token grabber made in python
Veerus - The best hidden Rat/Crypto Miner for Linux/Mac/Windows
lunasec - LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
node-dpapi - Node native module to encrypt/decrypt data. On Windows, it uses DPAPI
security-wg - Node.js Ecosystem Security Working Group
Umbral-Stealer - Umbral Stealer is a fast, lightweight stealer written in C#. The collected data is transferred through discord webhooks.
wapm-cli - 📦 WebAssembly Package Manager (CLI)
Contents - Community documentation, code, links to third-party resources, ... See the issues and pull requests for pending content. Contributions are welcome !
crev - Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real implemenation.
conductor - Conductor is a microservices orchestration engine.