ad_kerberoast
Perform Kerberoasting attack to extract service ticket hashes from Active Directory. Use domain credentials to target specific users or all service principal names.
Instructions
Perform Kerberoasting attack to extract service ticket hashes.
Args: domain: AD domain username: Domain username password: Domain password dc_ip: Domain Controller IP target_user: Specific user to target (all SPNs if empty)
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| dc_ip | No | ||
| domain | Yes | ||
| password | Yes | ||
| username | Yes | ||
| target_user | No |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
| result | Yes |