{
	"id": "b1e83f6b-2abb-45f7-87c7-dcc3e2d813a3",
	"created_at": "2026-04-06T00:09:02.170187Z",
	"updated_at": "2026-04-10T03:30:33.843198Z",
	"deleted_at": null,
	"sha1_hash": "ae9e5f551e4c9551d00305192ae886fc1d38451c",
	"title": "GitHub - fortra/impacket: Impacket is a collection of Python classes for working with network protocols.",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 180784,
	"plain_text": "GitHub - fortra/impacket: Impacket is a collection of Python\r\nclasses for working with network protocols.\r\nBy Dfte\r\nArchived: 2026-04-05 17:19:46 UTC\r\npypi vv00..1133..00\r\n \r\nBuild and test Impacket passing\r\nCopyright Fortra, LLC and its affiliated companies. All rights reserved.\r\nImpacket was originally created by SecureAuth, and now maintained by Fortra's Core Security.\r\nImpacket is a collection of Python classes for working with network protocols. Impacket is focused on providing\r\nlow-level programmatic access to the packets and for some protocols (e.g. SMB1-3 and MSRPC) the protocol\r\nimplementation itself. Packets can be constructed from scratch, as well as parsed from raw data, and the object-oriented API makes it simple to work with deep hierarchies of protocols. The library provides a set of tools as\r\nexamples of what can be done within the context of this library.\r\nWhat protocols are featured?\r\nEthernet, Linux \"Cooked\" capture.\r\nIP, TCP, UDP, ICMP, IGMP, ARP.\r\nIPv4 and IPv6 Support.\r\nNMB and SMB1, SMB2 and SMB3 (high-level implementations).\r\nMSRPC version 5, over different transports: TCP, SMB/TCP, SMB/NetBIOS and HTTP.\r\nPlain, NTLM and Kerberos authentications, using password/hashes/tickets/keys.\r\nPortions/full implementation of the following MSRPC interfaces: EPM, DTYPES, LSAD, LSAT, NRPC,\r\nRRP, SAMR, SRVS, WKST, SCMR, BKRP, DHCPM, EVEN6, MGMT, SASEC, TSCH, DCOM, WMI,\r\nOXABREF, NSPI, OXNSPI.\r\nPortions of TDS (MSSQL) and LDAP protocol implementations.\r\nMaintainer\r\nhttps://github.com/SecureAuthCorp/impacket\r\nPage 1 of 3\n\nCore Security\r\nTable of Contents\r\nGetting Impacket\r\nSetup\r\nTesting\r\nLicensing\r\nDisclaimer\r\nContact Us\r\nGetting Impacket\r\nLatest version\r\nImpacket v0.13.0\r\nppyytthhoonn 33..99 || 33..1100 || 33..1111 || 33..1122 || 33..1133\r\nCurrent and past releases\r\nDevelopment version\r\nImpacket v0.14.0-dev (master branch)\r\nppyytthhoonn 33..99 || 33..1100 || 33..1111 || 33..1122 || 33..1133\r\nSetup\r\nQuick start\r\nℹ️ We recommend using pipx over pip for system-wide installations.\r\nIn order to grab the latest stable release run:\r\npython3 -m pipx install impacket\r\nIf you want to play with the unreleased changes, download the development version from the master branch,\r\nextract the package, and execute the following command from the directory where Impacket has been unpacked:\r\npython3 -m pipx install .\r\nDocker Support\r\nBuild Impacket's image:\r\nhttps://github.com/SecureAuthCorp/impacket\r\nPage 2 of 3\n\n$ docker build -t \"impacket:latest\" .\r\nUsing Impacket's image:\r\n $ docker run -it --rm \"impacket:latest\"\r\nTesting\r\nThe library leverages the pytest framework for organizing and marking test cases, tox to automate the process of\r\nrunning them across supported Python versions, and coverage to obtain coverage statistics.\r\nA comprehensive testing guide is available.\r\nLicensing\r\nThis software is provided under a slightly modified version of the Apache Software License. See the\r\naccompanying LICENSE file for more information.\r\nSMBv1 and NetBIOS support based on Pysmb by Michael Teo.\r\nDisclaimer\r\nThe spirit of this Open Source initiative is to help security researchers, and the community, speed up research and\r\neducational activities related to the implementation of networking protocols and stacks.\r\nThe information in this repository is for research and educational purposes and not meant to be used in production\r\nenvironments and/or as part of commercial products.\r\nIf you desire to use this code or some part of it for your own uses, we recommend applying proper security\r\ndevelopment life cycle and secure coding practices, as well as generate and track the respective indicators of\r\ncompromise according to your needs.\r\nContact Us\r\nWhether you want to report a bug, send a patch, or give some suggestions on this package, reach out to us at\r\nhttps://www.coresecurity.com/about/contact.\r\nFor security-related questions check our security policy.\r\nSource: https://github.com/SecureAuthCorp/impacket\r\nhttps://github.com/SecureAuthCorp/impacket\r\nPage 3 of 3",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://github.com/SecureAuthCorp/impacket"
	],
	"report_names": [
		"impacket"
	],
	"threat_actors": [
		{
			"id": "75108fc1-7f6a-450e-b024-10284f3f62bb",
			"created_at": "2024-11-01T02:00:52.756877Z",
			"updated_at": "2026-04-10T02:00:05.273746Z",
			"deleted_at": null,
			"main_name": "Play",
			"aliases": null,
			"source_name": "MITRE:Play",
			"tools": [
				"Nltest",
				"AdFind",
				"PsExec",
				"Wevtutil",
				"Cobalt Strike",
				"Playcrypt",
				"Mimikatz"
			],
			"source_id": "MITRE",
			"reports": null
		}
	],
	"ts_created_at": 1775434142,
	"ts_updated_at": 1775791833,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/ae9e5f551e4c9551d00305192ae886fc1d38451c.pdf",
		"text": "https://archive.orkl.eu/ae9e5f551e4c9551d00305192ae886fc1d38451c.txt",
		"img": "https://archive.orkl.eu/ae9e5f551e4c9551d00305192ae886fc1d38451c.jpg"
	}
}