Diabolic Parasite
A covert module that supports keystroke injection, keylogging, wireless access, and detection-evasion for red-team engagements
Diabolic Parasite is a next-generation hardware implant designed for stealth, precision, and real-world impact. Built with red teamers, pentesters, and security researchers in mind, it delivers powerful offensive capabilities in an ultra-compact form factor. Whether you’re simulating insider threats or testing physical access scenarios, the Parasite integrates seamlessly into target systems — silently capturing, emulating, and injecting like a true covert operator. It’s not just a tool — it’s a hands-on platform for exploring advanced attack techniques while staying completely under the radar.
Diabolic Parasite is designed to exploit real-world physical access opportunities. In the most common scenario, you simply unplug an existing HID device (such as a keyboard or mouse), connect it to the Parasite’s onboard female USB port, and plug the Parasite itself back into the original USB slot. It instantly clones the device’s full hardware identity, forwards all input in real time, and logs every keystroke — displaying it through the web UI — all while remaining invisible to the host system.
If the connected device isn’t an HID (for example, a printer or card reader), the Parasite automatically switches to Passthrough Mode (which can also be triggered manually to adapt to the situation), forwarding traffic untouched while staying completely dormant — as if it were just a set of wires. At any moment, you can wirelessly trigger a payload, causing the Parasite to impersonate the trusted device, inject keystrokes with full stealth, and then return to its dormant passthrough state — leaving no obvious trace of its presence.
Diabolic Parasite is engineered with stealth as its top priority, making it exceptionally difficult to detect during real-world operations. Unlike traditional HID injectors, it doesn’t just present itself as a generic keyboard — it clones the full hardware identity of any attached HID device, including the PID, VID, manufacturer, and product strings. This deep-level spoofing ensures that the host system perceives it as the original trusted device, preventing any operating system prompts like “Installing new keyboard” or alerting security tools monitoring for new USB peripherals.
To further evade detection, keystroke injection is performed using randomized typing cadence (Configurable), mimicking natural human input and bypassing basic behavioral detection systems that flag bursts of artificial typing. Additionally, the Parasite includes keyboard layout bypassing using the ALT+Numpad method, allowing it to inject English characters reliably even when the host system is set to a different language or keyboard layout — ensuring payload consistency across international environments.
Together, these features make Diabolic Parasite an advanced stealth platform capable of operating undetected in high-security environments, ideal for red team engagements and advanced USB-based security assessments.
What if you could type commands directly into a target system, see the output live, and extract files at will — without triggering a single alert?
That’s Diabolic Shell.
Available in Firmware v2.0, Diabolic Shell opens an encrypted command channel to the target machine. You gain a hidden shell session, fully controlled through the web UI. Type a command and watch the output stream back in real time. Need a file? Pull it through the same covert channel — configs, credentials, logs — whatever the engagement requires.
All data moves through a hardware-based HID channel — the same class of channel used daily by gaming mice, RGB peripherals, and firmware updaters.
Security tools ignore this channel because monitoring it would generate false alerts from virtually every peripheral in existence.
You’re not just plugged in — you’re inside.
Commands execute without logs.
Files exfiltrate without network traces.
All traffic is indistinguishable from normal USB peripheral behavior — a covert channel security tools were never designed to see.
Diabolic Parasite takes keystroke reflection to the next level — transforming a once noisy, detectable method into a truly silent exfiltration channel. Unlike traditional techniques that rely on blinking LEDs or visible activity, the Parasite sits between the host and a real keyboard, intercepting and relaying communication without disruption. It covertly listens for encoded data sent by the host as simulated keystrokes — decoding it silently, without triggering LED indicators or system alerts. Because it perfectly mimics the original HID device, every interaction appears legitimate, allowing data to be exfiltrated in plain sight. It’s not just stealthy — it’s virtually invisible.
At the heart of Diabolic Parasite lies an advanced hardware-based keylogger capable of capturing keystrokes from nearly any connected USB keyboard — whether standard or composite HID. Operating at the USB protocol level, it silently intercepts and logs every key press with high precision, regardless of the operating system or security software on the host. Logged keystrokes are displayed instantly in the built-in web interface, giving operators real-time visibility into user activity without ever touching the target machine. Whether for live monitoring or forensic analysis, the Parasite’s keylogger delivers unmatched insight — all while remaining completely invisible to the system.
| Diabolic Parasite | Rubber Ducky | O.MG Cable Elite | Key Croc | |
|---|---|---|---|---|
| Form Factor | Adapter | USB stick | Cable | Adapter |
| Compactness | Ultra-compact | Compact | Integrated into cable | Bulky |
| Keystroke Reflection Exfiltration | Yes (Truly covert — no LED indication) | Yes | No | No |
| Keylogger Functionality | Yes (Works with all keyboard types) | No | Only certain keyboards with detachable cables | Yes |
| Wireless Control | Yes (Wi-Fi enabled) | No | Yes (Wi-Fi enabled) | Yes (Wi-Fi enabled) |
| USB Passthrough Mode | Yes | No | Yes | No |
| Multi-HID Device Handling | Yes (keyboard and mouse emulation with input forwarding) | No | No | No |
| Remote Access | Yes | No | Yes | Yes |
| Self-Destruct | Yes | No | Yes | No |
| Mouse Jiggler | Yes | No | Yes | No |
Diabolic Parasite is partially open source, offering researchers, developers, and security professionals the opportunity to study and expand upon its design. The schematic is available here. Select firmware components will soon be available in our GitHub repository—along with related documentation—to encourage development, collaboration, and learning.
Produced by UNIT 72784 in Cairo, Egypt.
Sold and shipped by Crowd Supply.
Stealthy wireless keystroke-injection tool with built-in keylogger
Cybersecurity hardware company developing unique Red Teaming and Penetration Testing hardware devices.
