Kerbrute

Kerbrute is a tool for bruteforcing and enumerating valid Active Directory accounts via Kerberos pre-authentication.

Visit Website

Visit Website

Introduction

Kerbrute

A tool to quickly bruteforce and enumerate valid Active Directory accounts through Kerberos Pre-Authentication.

Grab the latest binaries from the releases page to get started.

This tool is designed to assist in quickly bruteforcing valid Active Directory accounts through Kerberos Pre-Authentication. It is designed to be used on an internal Windows domain with access to one of the Domain Controllers.

Key features:

User Enumeration: Enumerate valid domain usernames without causing account lockouts.
Password Spray: Perform horizontal password spraying attacks against a list of users.
Brute User: Traditional bruteforce attack against a single username.
Brute Force: Read username and password combinations from a file or stdin and test them.

Use cases:

Identifying valid usernames in an Active Directory environment.
Testing common passwords against a list of users.
Bruteforcing a single user's password.
Validating credentials obtained from other sources.

Back

Information

Publisher
Admin
Websitegithub.com
Published date2025/07/06

More Products

Infrastructure Security

Visit Website

GodPotato

Details

GodPotato is a privilege escalation tool for Windows, exploiting DCOM to elevate privileges to NT AUTHORITY\SYSTEM with ImpersonatePrivilege.

Internal

Infrastructure Security

Visit Website

BloodHound Query Library

Details

BloodHound Query Library appears to be a resource for pre-built queries designed for use with BloodHound, a tool for analyzing Active Directory environments.

Internal