Skip to content

Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.

License

BSD-3-Clause, MIT licenses found

Licenses found

BSD-3-Clause
LICENSE
MIT
LICENSE_Bouncy_Castles
Notifications You must be signed in to change notification settings

HarmJ0y/ASREPRoast

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

This project has now been deprecated. Its functionality has been incorporated into Rubeus via the "asreproast" action, which utilizes a more minimal ASN.1 parsing library.

ASREPRoast

Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.

More information is available here and in ExumbraOps' post.

ASREPRoast.ps1

Get-ASREPHash

Returns a crackable hash for users withouth kerberos preauthentication enabled.

Invoke-ASREPRoast

Enumerates any users in the current (or specified) domain without kerberos preauthentication enabled and requests crackable AS-REP responses.

krb5_asrep_fmt_plug.c

A customized version of the krb5_tgs_fmt_plug.c plugin from magnumripper version of John The Ripper. Drop into ./src/ and compile as normal. The new hash tag is krb5asrep.

tgscrack.go

A customized version of @tifkin_'s tgscrack project. The hash format needed is salt:hash:description.

About

Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.

Resources

License

BSD-3-Clause, MIT licenses found

Licenses found

BSD-3-Clause
LICENSE
MIT
LICENSE_Bouncy_Castles

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published