two06/CerealKiller external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

two06/CerealKiller

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/two06/CerealKiller)

Close

two06 / CerealKillerView on GitHubMore

• External links
• Readme badge

.NET deserialization hunter

☆91Jul 21, 2024Updated last year

Alternatives and similar repositories for CerealKiller

Users that are interested in CerealKiller are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nettitude / TokenCert

  View on GitHub
  TokenCert
  ☆103Nov 15, 2024Updated last year
• logangoins / Cable

  View on GitHub
  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
  ☆401Jul 23, 2025Updated 10 months ago
• myexploit / Hunt

  View on GitHub
  ☆20Nov 5, 2025Updated 6 months ago
• Offensive-Panda / .NET_PROFILER_DLL_LOADING

  View on GitHub
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆47Jul 29, 2024Updated last year
• SpecterOps / cred1py

  View on GitHub
  A Python POC for CRED1 over SOCKS5
  ☆167Oct 5, 2024Updated last year
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• zyn3rgy / smbtakeover

  View on GitHub
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆356Nov 19, 2024Updated last year
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆151Feb 10, 2025Updated last year
• mlcsec / EDRenum-BOF

  View on GitHub
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆134Oct 4, 2024Updated last year
• SySS-Research / ldif2bloodhound

  View on GitHub
  Convert an LDIF file to JSON files ingestible by BloodHound
  ☆46May 20, 2026Updated last week
• decoder-it / ADCSCoercePotato

  View on GitHub
  ☆248May 5, 2024Updated 2 years ago
• trustedsec / The_Shelf

  View on GitHub
  Retired TrustedSec Capabilities
  ☆249Jan 5, 2026Updated 4 months ago
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆385Dec 13, 2024Updated last year
• rotarydrone / GlobalUnProtect

  View on GitHub
  Decrypt GlobalProtect configuration and cookie files.
  ☆160Sep 10, 2024Updated last year
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• rweijnen / createdump

  View on GitHub
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆153Sep 20, 2024Updated last year
• mandiant / ccmpwn

  View on GitHub
  ☆221Mar 26, 2024Updated 2 years ago
• MaLDAPtive / Invoke-Maldaptive

  View on GitHub
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆342Aug 7, 2024Updated last year
• synacktiv / DLHell

  View on GitHub
  Local & remote Windows DLL Proxying
  ☆174Jun 17, 2024Updated last year
• Yeeb1 / SharpLansweeperDecrypt

  View on GitHub
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆46Nov 29, 2024Updated last year
• tehstoni / tryharder

  View on GitHub
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆96Oct 7, 2024Updated last year
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆286Sep 18, 2024Updated last year
• trustedsec / orpheus

  View on GitHub
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆423Mar 21, 2025Updated last year
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• decoder-it / KrbRelayEx-RPC

  View on GitHub
  ☆201Mar 28, 2025Updated last year
• passthehashbrowns / VectoredExceptionHandling

  View on GitHub
  ☆109Aug 21, 2024Updated last year
• 0x4d5a-ctf / 38c3_com_talk

  View on GitHub
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆75Jan 3, 2025Updated last year
• Tw1sm / PySQLRecon

  View on GitHub
  Offensive MSSQL toolkit written in Python, based off SQLRecon
  ☆213May 8, 2026Updated 3 weeks ago
• Mayyhem / Maestro

  View on GitHub
  Abusing Azure services over C2
  ☆372Jan 20, 2026Updated 4 months ago
• 0xv1n / RemoteSessionEnum

  View on GitHub
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆118Aug 21, 2024Updated last year
• CobblePot59 / ADcheck

  View on GitHub
  Assess the security of your Active Directory with few or all privileges.
  ☆373May 3, 2026Updated 3 weeks ago
• passthehashbrowns / BOFMask

  View on GitHub
  ☆131Jun 28, 2023Updated 2 years ago
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆210Jun 10, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• PetrusViet / CVE-2023-38743

  View on GitHub
  ManageEngine ADManager Command Injection
  ☆11Oct 2, 2023Updated 2 years ago
• mandiant / msi-search

  View on GitHub
  ☆293Jul 20, 2023Updated 2 years ago
• Diverto / IPPrintC2

  View on GitHub
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆153May 3, 2024Updated 2 years ago
• CICADA8-Research / RemoteKrbRelay

  View on GitHub
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆645May 8, 2025Updated last year
• trustedsec / DitExplorer

  View on GitHub
  Tool for viewing NTDS.dit
  ☆201Mar 14, 2025Updated last year
• vxCrypt0r / Voidmaw

  View on GitHub
  A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…
  ☆352Oct 7, 2024Updated last year
• Offensive-Panda / LsassReflectDumping

  View on GitHub
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆217Oct 19, 2024Updated last year