WMkick is a TCP protocol redirector/MITM tool that targets NTLM authentication message flows in WMI (135/tcp) and Powershell-Remoting/WSMan/WinRM (5985/tcp) to capture NetNTLMv2 hashes.
☆42Aug 2, 2021Updated 4 years ago
Alternatives and similar repositories for wmkick
Users that are interested in wmkick are comparing it to the libraries listed below
Sorting:
- A forensic system baselining, searching, and evidence collection tool☆19Sep 4, 2019Updated 6 years ago
- PAM module and library for auditing/enforcing Password Topology Histogram Wear-Leveling☆23Apr 26, 2017Updated 8 years ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆34Aug 26, 2021Updated 4 years ago
- My dotfiles for Linux boxes☆57Feb 20, 2026Updated last week
- Roast in the Middle☆294Sep 19, 2025Updated 5 months ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆81Jun 1, 2022Updated 3 years ago
- HTTP Server serving obfuscated Powershell Scripts/Payloads☆94Jul 3, 2021Updated 4 years ago
- ☆27Feb 3, 2026Updated last month
- Collection of rules and debug data for hashcat☆25Dec 2, 2025Updated 3 months ago
- A PoC that uses the DirSync protocol to poll Active Directory for changes☆13Aug 16, 2020Updated 5 years ago
- Demonstrate the behavior of the tunnel cache on Windows☆11Aug 13, 2019Updated 6 years ago
- ☆11Oct 4, 2018Updated 7 years ago
- NTLMRelay for MS Exchange☆11Nov 13, 2018Updated 7 years ago
- ☆10Jun 26, 2024Updated last year
- Screenshot Shenanigans☆26Nov 20, 2017Updated 8 years ago
- ☆252Sep 28, 2023Updated 2 years ago
- A malicious keyboard that delivers a multi-staged attack, consisting of a trojan payload which can bypass antivirus, with Windows machine…☆17Mar 23, 2025Updated 11 months ago
- A simple example on how to initiate a direct syscall on WoW64☆12Feb 2, 2018Updated 8 years ago
- havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…☆12May 8, 2023Updated 2 years ago
- Experimental kernel-level remote shell based on ICMP content☆15Aug 26, 2020Updated 5 years ago
- Linux and Windows Hardening Points☆12Mar 6, 2018Updated 7 years ago
- Contains the draft of the RFC Style Guide☆17Jan 29, 2026Updated last month
- Word split utility☆13Jun 21, 2018Updated 7 years ago
- DEF CON 31 AI Village - LLMs: Loose Lips Multipliers☆10Aug 16, 2023Updated 2 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆36Dec 9, 2019Updated 6 years ago
- Finds imports that could be exploited, still requires manual analysis.☆29Nov 9, 2022Updated 3 years ago
- Convenience tool for hashcat☆121Aug 26, 2025Updated 6 months ago
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆107Jun 18, 2022Updated 3 years ago
- Secretsdump C# version only supporting local (live) operation☆55Apr 20, 2025Updated 10 months ago
- A repository of Sysmon For Linux configuration modules☆16Oct 14, 2021Updated 4 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.☆30Jun 7, 2023Updated 2 years ago
- A PowerShell script to prevent Sysmon from writing its events☆16Apr 23, 2020Updated 5 years ago
- ☆12Feb 19, 2026Updated last week
- An analysis of the user password hashing algorithm used by Citrix NetScaler☆15Sep 23, 2025Updated 5 months ago
- Tool for reconnaissance of AWS cloud environments☆16Oct 9, 2023Updated 2 years ago
- A repository with my code snippets for research/education purposes.☆53Jul 28, 2023Updated 2 years ago
- Collection of BOFs for Cobalt Strike☆32Mar 28, 2023Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆42Jan 14, 2026Updated last month
- ☆79Sep 8, 2025Updated 5 months ago