■■■■■ A (v3.5 compatible) .NET tool for stealing and importing certificates in the Windows certificate store without touching disk. Useful for red team operations where you need to poach a certificate for pivoting purposes and want to do so with an in-memory post-ex payload.
This is similar to Benjamin Delpy’s Mimikatz.
https://github.com/TheWover/CertStealer
https://t.me/cKure/9404