two06/CerealKiller external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

two06/CerealKiller

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/two06/CerealKiller)

Close

two06 / CerealKillerView on GitHubMore

• External links
• Readme badge

.NET deserialization hunter

☆86Jul 21, 2024Updated last year

Alternatives and similar repositories for CerealKiller

Users that are interested in CerealKiller are comparing it to the libraries listed below

• logangoins / Cable

  View on GitHub
  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
  ☆399Jul 23, 2025Updated 7 months ago
• Offensive-Panda / .NET_PROFILER_DLL_LOADING

  View on GitHub
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆46Jul 29, 2024Updated last year
• myexploit / Hunt

  View on GitHub
  ☆20Nov 5, 2025Updated 4 months ago
• mlcsec / EDRenum-BOF

  View on GitHub
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆129Oct 4, 2024Updated last year
• nettitude / TokenCert

  View on GitHub
  TokenCert
  ☆102Nov 15, 2024Updated last year
• SpecterOps / cred1py

  View on GitHub
  A Python POC for CRED1 over SOCKS5
  ☆165Oct 5, 2024Updated last year
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Feb 10, 2025Updated last year
• rotarydrone / GlobalUnProtect

  View on GitHub
  Decrypt GlobalProtect configuration and cookie files.
  ☆157Sep 10, 2024Updated last year
• zyn3rgy / smbtakeover

  View on GitHub
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆345Nov 19, 2024Updated last year
• PetrusViet / CVE-2023-38743

  View on GitHub
  ManageEngine ADManager Command Injection
  ☆11Oct 2, 2023Updated 2 years ago
• 0xv1n / RemoteSessionEnum

  View on GitHub
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆117Aug 21, 2024Updated last year
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated last year
• 0x4d5a-ctf / 38c3_com_talk

  View on GitHub
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆75Jan 3, 2025Updated last year
• Yeeb1 / SharpLansweeperDecrypt

  View on GitHub
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆44Nov 29, 2024Updated last year
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆211Jun 10, 2024Updated last year
• rweijnen / createdump

  View on GitHub
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆153Sep 20, 2024Updated last year
• decoder-it / ADCSCoercePotato

  View on GitHub
  ☆242May 5, 2024Updated last year
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆283Sep 18, 2024Updated last year
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆108Aug 21, 2024Updated last year
• trustedsec / The_Shelf

  View on GitHub
  Retired TrustedSec Capabilities
  ☆247Jan 5, 2026Updated 2 months ago
• CobblePot59 / ADcheck

  View on GitHub
  Assess the security of your Active Directory with few or all privileges.
  ☆346Updated this week
• tehstoni / tryharder

  View on GitHub
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆96Oct 7, 2024Updated last year
• synacktiv / DLHell

  View on GitHub
  Local & remote Windows DLL Proxying
  ☆169Jun 17, 2024Updated last year
• SySS-Research / ldif2bloodhound

  View on GitHub
  Convert an LDIF file to JSON files ingestible by BloodHound
  ☆45Feb 9, 2026Updated 3 weeks ago
• MaLDAPtive / Invoke-Maldaptive

  View on GitHub
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆336Aug 7, 2024Updated last year
• trustedsec / orpheus

  View on GitHub
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆412Mar 21, 2025Updated 11 months ago
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆382Dec 13, 2024Updated last year
• watchtowrlabs / Citrix-Virtual-Apps-XEN-Exploit

  View on GitHub
  Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE
  ☆200Nov 12, 2024Updated last year
• trustedsec / DitExplorer

  View on GitHub
  Tool for viewing NTDS.dit
  ☆195Mar 14, 2025Updated 11 months ago
• vxCrypt0r / Voidmaw

  View on GitHub
  A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…
  ☆341Oct 7, 2024Updated last year
• fin3ss3g0d / IoDllProxyLoad

  View on GitHub
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆63Mar 19, 2024Updated last year
• api0cradle / RedTeamScripts

  View on GitHub
  Just some random Red Team Scripts that can be useful
  ☆153Jun 28, 2024Updated last year
• ScriptIdiot / sleepmask_ekko_cfg

  View on GitHub
  Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
  ☆49Mar 15, 2023Updated 2 years ago
• hackerhouse-opensource / Stinger

  View on GitHub
  CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…
  ☆301Feb 2, 2026Updated last month
• decoder-it / KrbRelayEx-RPC

  View on GitHub
  ☆198Mar 28, 2025Updated 11 months ago
• synacktiv / gpoParser

  View on GitHub
  gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…
  ☆334Jan 14, 2026Updated last month
• zblurx / certsync

  View on GitHub
  Dump NTDS with golden certificates and UnPAC the hash
  ☆647Mar 20, 2024Updated last year
• ricardojoserf / TrickDump

  View on GitHub
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆539May 9, 2025Updated 9 months ago