Mimikatz MCP Server
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@Mimikatz MCP Serverextract logon passwords from LSASS memory"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
Mimikatz MCP Server
A Model Context Protocol (MCP) server that provides programmatic access to Mimikatz, the powerful credential extraction and security assessment tool for Windows systems.
WARNING: This tool is intended for authorized security testing only. Unauthorized use of Mimikatz may be illegal and unethical. Always ensure you have proper authorization before using this tool.
Features
Credential Extraction: Extract plaintext passwords, NTLM hashes, Kerberos tickets from memory
SAM/LSA Dumping: Dump local SAM database and LSA secrets
DCSync Attacks: Replicate Active Directory credentials
Kerberos Attacks: Create Golden/Silver tickets, Pass-the-Ticket
DPAPI Decryption: Decrypt Windows Data Protection API master keys
Certificate Export: Export certificates with private keys
Token Manipulation: Elevate privileges and impersonate users
Related MCP server: Cobalt Strike MCP Server
Installation
Prerequisites
Node.js 18+
Mimikatz binary (see Setup)
Windows (native) or Linux with Wine (for Kali Linux)
Quick Start
# Clone the repository
git clone https://github.com/schwarztim/sec-mimikatz-mcp.git
cd sec-mimikatz-mcp
# Install dependencies
npm install
# Build
npm run buildMimikatz Setup
Windows
Download Mimikatz from the official repository and place it in one of these locations:
C:\tools\mimikatz\x64\mimikatz.exeC:\mimikatz\x64\mimikatz.exe%USERPROFILE%\mimikatz\x64\mimikatz.exe
Or set the MIMIKATZ_PATH environment variable.
Kali Linux
Mimikatz is typically pre-installed:
# Check if mimikatz is available
locate mimikatz.exe
# Common paths on Kali:
# /usr/share/windows-resources/mimikatz/x64/mimikatz.exe
# /usr/share/mimikatz/x64/mimikatz.exeUsage
Claude Desktop Configuration
Add to your claude_desktop_config.json:
{
"mcpServers": {
"mimikatz": {
"command": "node",
"args": ["/path/to/sec-mimikatz-mcp/dist/index.js"],
"env": {
"MIMIKATZ_PATH": "/path/to/mimikatz.exe"
}
}
}
}MCP Configuration (user-mcps.json)
{
"mimikatz": {
"command": "node",
"args": ["/path/to/sec-mimikatz-mcp/dist/index.js"],
"env": {
"MIMIKATZ_PATH": "/usr/share/windows-resources/mimikatz/x64/mimikatz.exe"
}
}
}Available Tools
Status and Information
Tool | Description |
| Check Mimikatz installation status and system compatibility |
Credential Extraction (sekurlsa)
Tool | Description |
| Extract plaintext passwords, hashes, PIN codes, and Kerberos tickets |
| Extract WDigest credentials from LSASS |
| List Kerberos credentials and tickets |
| Extract NTLM hashes (MSV1_0 credentials) |
LSA/SAM Dumping
Tool | Description |
| Dump SAM database hashes (local accounts) |
| Dump LSA secrets (service account credentials) |
| DCSync attack to replicate AD credentials |
Kerberos Attacks
Tool | Description |
| Create Golden Ticket for persistent domain access |
| Create Silver Ticket for service-specific access |
| Pass-the-Ticket: Import a Kerberos ticket |
| List Kerberos tickets in current session |
| Purge all Kerberos tickets |
Additional Tools
Tool | Description |
| Dump Windows Vault credentials (saved passwords) |
| Decrypt DPAPI master keys |
| Export certificates with private keys |
| Elevate to SYSTEM or impersonate users |
| Enable SeDebugPrivilege |
| List running processes with security context |
| Spawn command prompt with elevated context |
| Execute custom Mimikatz commands |
Examples
Check Installation Status
Tool: mimikatz_statusExtract Logon Passwords
Tool: mimikatz_sekurlsa_logonpasswordsDCSync Attack
Tool: mimikatz_lsadump_dcsync
Arguments:
domain: "corp.example.com"
user: "Administrator"Create Golden Ticket
Tool: mimikatz_kerberos_golden
Arguments:
domain: "corp.example.com"
sid: "S-1-5-21-..."
krbtgt_hash: "aad3b435b51404eeaad3b435b51404ee"
user: "FakeAdmin"Custom Commands
Tool: mimikatz_custom
Arguments:
commands: ["privilege::debug", "sekurlsa::logonpasswords", "exit"]Security Considerations
Authorization: Only use on systems you own or have explicit permission to test
Privilege Requirements: Most tools require administrative/SYSTEM privileges
Detection: Mimikatz is detected by most antivirus/EDR solutions
Audit Logs: Actions may be logged by Windows Event Log and SIEM systems
Legal Compliance: Ensure compliance with all applicable laws and regulations
Environment Variables
Variable | Description |
| Full path to mimikatz.exe binary |
Troubleshooting
Mimikatz Not Found
Set the MIMIKATZ_PATH environment variable to the full path of your mimikatz.exe binary.
Permission Denied
Run with elevated privileges (Administrator on Windows, root on Linux).
Wine Issues on Linux
Ensure Wine is properly installed and configured:
sudo apt install wine64
wine --versionDevelopment
# Install dependencies
npm install
# Development mode (with hot reload)
npm run dev
# Build
npm run build
# Run
npm startLicense
MIT License - see LICENSE
Disclaimer
This tool is provided for educational and authorized security testing purposes only. The authors are not responsible for any misuse or damage caused by this tool. Always obtain proper authorization before conducting security assessments.
References
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/schwarztim/sec-mimikatz-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server