performing-kerberoasting-attack
CommunitySimulate Kerberoasting to test AD security posture.
AuthorYukiIto1999
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Kerberoasting exposure in Active Directory environments is simulated to help security teams validate detection, response, and password-hardening measures against real-world abuse techniques.
Core Features & Use Cases
- Enumerate SPN-enabled accounts in a target AD domain and collect metadata (SPNs, domain, group membership, last password set) for risk assessment.
- Acquire Kerberos TGS tickets for identified SPNs using offline crackable formats to demonstrate cracking potential and remediation needs.
- Analyze resulting hashes to categorize encryption types (RC4 vs AES) and generate actionable remediation guidance and reporting.
- Use cases include red-team assessments, vulnerability validation, and security blue-team training in controlled environments.
Quick Start
Run the Kerberoasting workflow in a safe AD lab to generate a post-assessment report.
Dependency Matrix
Required Modules
impacketldap3python-evtxrich
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: performing-kerberoasting-attack Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#performing-kerberoasting-attack Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.