AS-REP Roasting is a pre-authentication attack for Windows. If any users on a Windows domain have kerberos authentication disabled, they will be vulnerable to AS-REP Roasting. This may allow an attacker to gain access to a users kerberos tickets, which can be cracked to gain a users account password for further domain usage and attack.

~~~
This is an educational video, gain permission from target owners before attempting anything from this tutorial. By not doing so, you risk being penalised by the computer misuse act or equivalent in your country
~~~

1:08 – Showing the attack in practice

Impacket – https://github.com/SecureAuthCorp/impacket

8 views

Leave a Reply

Your email address will not be published. Required fields are marked *