Offensive Security Tool: Rubeus – Toolset for raw Kerberos interaction and abuses

Reading Time: 30 Minutes

Offensive Security Tool: Rubeus

GitHub Link

Rubeus

Rubeusby harmj0y is a C# toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy‘s Kekeo project (CC BY-NC-SA 4.0 license) and Vincent LE TOUX‘s MakeMeEnterpriseAdmin project (GPL v3.0 license). Rubeus is a C# toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy‘s Kekeo project (CC BY-NC-SA 4.0 license) and Vincent LE TOUX‘s MakeMeEnterpriseAdmin project (GPL v3.0 license).

Post Exploitation Techniques are very important when it comes to conducting attacks in regards to gaining credentials, Privilege escalation etc.. that is because, shell is just the beginning.

Besides Bruteforcing which, depending on the situation, can be noisy. Rubeus offers outstanding techniques to gain credentials, such as working with the Kerberos and abuses of Microsoft Windows. This specific tool, requires a lot of practice, and studying but mastering it, will always give you the ability to gain access to credentials, and breaking in.

See Also: Complete Offensive Security and Ethical Hacking Course

Table of Contents

• Rubeus
• Table of Contents
• Background
• Command Line Usage
• Opsec Notes

• Overview
• Weaponization
• Example: Credential Extraction
• Example: Over-pass-the-hash
• Ticket requests and renewals
• asktgt
• asktgs
• renew
• brute
• Constrained delegation abuse

• s4u
• Ticket Management
• ptt
• purge
• describe
• Ticket Extraction and Harvesting
• triage
• klist
• dump
• tgtdeleg
• monitor
• harvest
• Roasting
• kerberoast
• kerberoasting opsec
• asreproast

• Miscellaneous
• createnetonly
• changepw
• hash
• tgssub
• currentluid

• Compile Instructions
• Targeting other .NET versions
• Sidenote: Building Rubeus as a Library
• Sidenote: Running Rubeus Through PowerShell
• Sidenote Sidenote: Running Rubeus Over PSRemoting