Rubeus (Kerberoasting) & Winpeas

Rubeus is a tool for exploiting Kerberos weaknesses in Windows environments. Kerberoasting is a method to extract ticket granting ticket (TGT) hashes from AD. Attackers target service accounts with associated Kerberos service principal names (SPNs). TGTs are requested from the DC for these accounts, then cracked offline to reveal user passwords. Kerberoasting exploits weak service account passwords and the nature of Kerberos authentication.

Usage :

winpeas is the malicious script which is used for the priviledge escalation on the windows accounts on the active directory domain

./winpeas.exe

rubeus.exe kerberoast /outfile:hash.txt

once the hash is obtained we can crack the hash using the hash cracking tools such as hashcat

PreviousBitsAdmin NextAD-DC Querying

Last updated 4 months ago