Red team SSH wrapper — tunnels, transfers, mapping, logging.
All flags pass through. Linux + Windows targets.
Everything you need during an engagement without changing how you work. All SSH flags pass through unchanged — Slipstream stays invisible while building a full picture of the target.
Wraps the real ssh binary. All flags, -o options, and ~/.ssh/config pass through unchanged. Your workflow doesn't change — Slipstream just listens.
iptables-style syntax. Real SSH forwarding via control socket. Add, delete, list, flush, save, and restore tunnels per target. SOCKS, local, and reverse forwards.
Upload and download with SFTP→SCP→cat→base64 fallback chain. Windows paths handled automatically via forward-slash conversion. Works even on locked-down targets.
Passive output parsing. Builds a searchable map from ls, dir, find, net user, and ipconfig. No extra commands sent — it reads what's already on screen.
Per-command log files with timestamps. Session index for OSCP proof and engagement reporting. Every command, every response, automatically captured.
One command grabs passwd, shadow, SAM, systeminfo, ipconfig, privileges, users, processes, and network connections. Triage in seconds, not minutes.
Slipstream sits transparently between the operator and the SSH child process. The PTY layer intercepts all I/O — commands trigger built-in handlers, output feeds the passive mapper and logger.
Slipstream adapts to the remote OS automatically. Parser selection, prompt injection, and path handling all switch based on detected target type.
Six subsystems. Thirty capabilities. One binary that wraps your existing ssh workflow without altering it.
Cargo build. Drop in your PATH. Connect exactly as you would with ssh — every flag, every option, every config entry still works.