Rubeus v2.1 releases: C# toolset for raw Kerberos interaction and abuses
Rubeus is a C# toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy‘s Kekeo project (CC BY-NC-SA 4.0 license) and Vincent LE TOUX‘s MakeMeEnterpriseAdmin project (GPL v3.0 license). Full credit goes to Benjamin and Vincent for working out the hard components of weaponization- without their prior work, this project would not exist.
logonsessioncommand to list information about the current logon session
Retrieve a TGT based on a user hash, optionally applying to the current logon session or a specific LUID:
Retrieve a TGT based on a user hash, start a /netonly process, and to apply the ticket to the new process/logon session:
Renew a TGT, optionally appling the ticket or auto-renewing the ticket up to its renew-till limit:
Reset a user’s password from a supplied TGT (AoratoPw):
Retrieve a service ticket for one or more SPNs, optionally applying the ticket:
Perform S4U constrained delegation abuse:
Submit a TGT, optionally targeting a specific LUID (if elevated):
Copyright (c) 2018, Will Schroeder
All rights reserved.