ENNAENNA

Kerbrute

Apache-2.0

馃攽 Password AttacksGo

Kerbrute is a Go-based tool designed to quickly brute-force and enumerate valid Active Directory accounts through Kerberos pre-authentication. It is utilized for discovering valid usernames and testing password policies within AD environments. Kerbrute is a useful utility for security assessments, allowing penetration testers to identify weaknesses in Kerberos authentication configurations.

3.3kstars
472forks
41issues
Updated 1y ago
+I use this
View on GitHub

Tags

kerberosactive-directoryuser-enumpassword-spray

Details

Category
馃攽 Password Attacks
Language
Go
Repository
ropnop/kerbrute
License
Apache-2.0
Platforms
馃惂linux馃崕macos馃獰windows

Links

GitHub Repository

github.com/ropnop/kerbrute

Releases

github.com/ropnop/kerbrute/releases

Issues

github.com/ropnop/kerbrute/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Used in 2 Workflows

馃敟

Active Directory Attack Path

Advanced6 steps 路 2-5 days

馃攽

Active Directory Password Audit

Advanced7 steps 路 4-8 hours

Community Reviews

More in Password Attacks

John the Ripper

C

Fast password cracker. Supports hundreds of hash types and ciphers. CPU and GPU modes.

hash-crackingbrute-forcewordlist

Hashcat

C

World's fastest password recovery tool. GPU-accelerated with support for 300+ hash types.

gpuhash-crackingrule-based

THC Hydra

C

Fast online password brute-forcer. Supports 50+ protocols including SSH, FTP, HTTP, SMB, MySQL.

brute-forceonlinemulti-protocol

Medusa

C

Speedy, parallel, modular brute-forcer. Supports HTTP, MySQL, SMB, SSH, Telnet, and more.

brute-forceparallelmodular

CeWL

Ruby

Custom wordlist generator. Spiders a target site and builds password lists from scraped words.

wordlistspidercustom

SecLists

Shell

The security tester's companion. Huge collection of wordlists - usernames, passwords, URLs, fuzzing payloads, shells.

wordlistsfuzzingpayloads