A tool for exploiting Kerberos tickets against system with Credential Guard enabled.
☆15Sep 2, 2025Updated 10 months ago
Alternatives and similar repositories for Klist2
Users that are interested in Klist2 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CVE-2025-59501 POC code☆25Nov 20, 2025Updated 7 months ago
- modified mssqlclient from impacket to extract policies from the SCCM database☆47Feb 24, 2026Updated 4 months ago
- An aggressor script that tracks operational changes made during a red team engagement. Gives you a full audit trail of what was changed a…☆27May 21, 2026Updated last month
- Async port scanner BOF. Supports IP/port ranges, CIDR notation and hostnames.☆18Jun 17, 2026Updated 3 weeks ago
- Printer exploitation framework for penetration testing. Discovers printers via PJL scanning, checks for default credentials, and extracts…☆21Mar 10, 2026Updated 4 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Dockerized nginx app used to create high-level timeline visuals for red team assessments☆32Feb 25, 2026Updated 4 months ago
- .NET CLR-Stomping☆146May 20, 2026Updated last month
- Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective☆181May 31, 2026Updated last month
- Reports on Driver, LSASS and other security services mitigations☆35Aug 18, 2025Updated 10 months ago
- Linux Process Injection via Seccomp Notifier☆95Dec 9, 2025Updated 7 months ago
- Dump TGTs remotely and convert Windows' klist binary output to ccache.☆81Jun 30, 2026Updated 2 weeks ago
- Entra ID user enumeration and auth method discovery via the public GetCredentialType API☆156Updated this week
- Busybox-style Beacon Object Files for *nix post-exploitation. Reimplements common Unix utilities as BOFs for use in stripped environments…☆81Jul 5, 2026Updated last week
- An easy way to convert BloodHound output files into data that can be imported into reporting software like Dradis and Plextrac. Built by …☆20Oct 15, 2020Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆19Mar 19, 2025Updated last year
- Tyche is a Mythic HTTPX Profile Generator used to create Malleable C2 Profiles.☆46Mar 28, 2026Updated 3 months ago
- Microsoft Graph API post-exploitation framework with a browser-based GUI.☆51Apr 15, 2026Updated 3 months ago
- NTLM HTTP relay tool with SOCKS proxy for browser session hijacking☆178Apr 6, 2026Updated 3 months ago
- A BOF designed to inspect processes memory and addresses☆40Apr 19, 2026Updated 2 months ago
- Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does☆96Jul 3, 2025Updated last year
- A stealthier approach to WMI-based command execution using Impacket without touching the disk.☆85Mar 15, 2026Updated 4 months ago
- Adaptix C2 extender to support Cobalt Strike Malleable C2 profiles☆48Jun 28, 2026Updated 2 weeks ago
- Noradrenaline is a collection of high-performance post-exploitation shared libraries designed for native execution on macOS and Linux end…☆29Jul 6, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆71Dec 25, 2025Updated 6 months ago
- A vibe-coded port of wiretap☆35Apr 25, 2026Updated 2 months ago
- Community Eventing and Scripting examples☆19Aug 11, 2025Updated 11 months ago
- Async PICO Hub is a work-in-progress framework to extend Cobalt Strike with custom event monitoring and in-process Asynchronous BOFs☆23Jun 4, 2026Updated last month
- MacOS Shared Library to Shellcode Loader☆73Feb 23, 2026Updated 4 months ago
- Execute shellcode via ASPNET compiler☆61Oct 2, 2025Updated 9 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆38Oct 1, 2025Updated 9 months ago
- DSCourier is a proof-of-concept that uses the WinGet Configuration COM API to apply DSC configurations through Microsoft-signed binaries.☆210Jun 25, 2026Updated 3 weeks ago
- A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself☆97Apr 9, 2026Updated 3 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A credential extraction BOF for Veeam Backup and Replication and Veeam One☆78Jul 1, 2026Updated 2 weeks ago
- Phantom is project created to perform loading and executing unmanaged code in memory within an IIS environment running in full‑trust mode…☆107Jun 5, 2026Updated last month
- Cobalt Strike BOF☆58Dec 10, 2025Updated 7 months ago
- BOF to terminate a process via PID as argument☆28Sep 7, 2025Updated 10 months ago
- Nim implementation for sud0Ru's Credential Dumping from SAM/SECURITY Hives Method (a.k.a. SilentHarvest)☆107Apr 4, 2026Updated 3 months ago
- Janus analyzes C2 telemetry to surface failure patterns, operator friction, and automation opportunities across engagements.☆54Jun 23, 2026Updated 3 weeks ago
- Async BOF to automatically extract or renew Kerberos TGTs on a target system.☆134Updated this week