The Manticore Project
Crowdsourced open source offensive and defensive security tools to heighten the security posture of the community as a whole.
A collective of Go developers and security researchers dedicated to building security tools with the shared goal of strengthening the overall security posture of the community.
Why The Manticore Project
Built by security professionals, for security professionals.
Written in Go
All tools are built in Go for high performance, easy compilation, and single-binary distribution.
Cross-Platform
Every tool works on Windows, Linux, and macOS, ensuring compatibility with your environment.
Active Directory Focused
Deep expertise in Active Directory security: Kerberos, LDAP, ACLs, GPOs, and more.
Open Source
All tools are free and open source, allowing full transparency, auditing, and community contributions.
Security Tools
Comprehensive offensive and defensive security tools built by the community, for the community.
Delegations
A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active Directory
FindGPPPasswords
A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
LDAPWordlistHarvester
A tool that allows you to extract a client-specific wordlist from the LDAP of an Active Directory
DescribeNTSecurityDescriptor
A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
FindOldSIDTraces
A cross-platform tool to find traces of old SIDs remaining in LDAP objects of the Active Directory
goLAPS
A Go setter/getter for property ms-Mcs-AdmPwd used by LAPS
Libraries
Foundational libraries that power our security tools and enable rapid development.
Manticore
A cross platform library to write offensive and defensive security tools in Go
131winacl
A cross platform Go library to work with Windows Security Descriptors
40gopengraph
A Go library to create BloodHound OpenGraphs easily
13goopts
A cross platform Go library to parse arguments given in command line to a program
11Security Blog
Latest insights, tutorials, and research from The Manticore Project community.
Manticore v1.0.9 - Complete SMBv1, NDR 2.0, and the first RPC interfaces
A look at Manticore v1.0.9: a fully working SMBv1 client, a generic NDR 2.0 marshalling engine for DCE/RPC, and the first batch of RPC interfaces (LSARPC, SAMR, SRVSVC, EFSR, SVCCTL, WINREG).
Read moreActive Directory - Auditing and managing Kerberos delegations with Delegations
Presenting Delegations, a cross-platform Go tool to audit, find, add, remove, clear, and monitor all types of Kerberos delegations in Active Directory.
Read moreGo - Building CLI tools with goopts, a command-line argument parsing library
Presenting goopts, a cross-platform Go library for parsing command-line arguments with support for subcommands, argument groups, mutually exclusive options, and multiple value types.
Read moreJoin Our Community
Connect with security researchers and developers from around the world.
Ready to contribute to security?
Join our collective of Go developers and security researchers. Together, we can build tools that strengthen the security posture of the entire community.