May 31, 2022
In this tutorial, we will see how to perform AS-REP Roasting attack. AS-REP Roasting is an attack against Kerberos for user accounts that do not require any kind of pre-authentication. Pre-authentication is required by default in Active Directory but it can be modified by a user account control setting on user accounts.
This page contains more information about this type of attack.
Let's run GetNPUsers.py to retrieve the TGT for the user called "Kaorz".
Save the TGT in a text file.
It shows how to crack the TGT using hashcat.
And it shows how to crack the TGT using john.
If you liked reading this article, you can follow me on Twitter: mujtabareads.