Comments (6)
good project
from kerbrute.
you need update you system time as same with server. i try it, has got TGT
from kerbrute.
you need update you system time as same with server. i try it, has got TGT
Whilst syncing your clock with the victim server would indeed fix this specific case. It is not the point of this issue. The clock skew error only, as far as OP can tell, appears when a login attempt is made with valid credentials, as such this behavior can cause a lot of false negatives in cases where server clock sync is either not possible or impractical. Therefore, it would be great if kerbrute at least mentioned the clock skew error.
from kerbrute.
Thanks for pointing this out! I’m gonna have to do some testing cuz I would really want to make sure that error only occurs when credentials are valid before marking it as a “success”. The other alternative might be to just abort the attack and display a warning with the correct command to sync your time?
from kerbrute.
The warning would work too but many kerberos tools work without syncing time so it would be very convenient to just mark it as a successful login.
I did use CrackMapExec with a desynced clock and it worked fine so im guessting they ignore it too.
Im 99% sure this error only occurs with valid credentials but ive been unable to find any documentation explicitly stating that so testing is indeed needed ^^
from kerbrute.
Cool, so after testing more i'm 99% confident that seeing a clock skew error means the password is correct - how else would the KDC decrypt the AS and compare the timestamp? I pushed an update to treat it as a success
But I noticed other errors that occasionally pop up when your clock skew is incorrect (esp with pre-auth disabled), so I need to address that as well. Will do a bigger update on error handling next
from kerbrute.
Related Issues (20)
- Typo HOT 2
- [Feature Request] Pass the Hash Support HOT 3
- Please delete
- [feature request] decoy
- Kerbrute erroring out on some accounts HOT 1
- Error: accepts 1 arg(s), received 2 HOT 1
- Kerbrute running into Encoding Error HOT 6
- KDC ERROR - Wrong Realm.
- ARM version? HOT 5
- close
- Encoding_Error: failed to unmarshal KDC's reply: asn1: syntax error: sequence truncated HOT 4
- kerbrute not working with aarch64 HOT 2
- Error execution
- [Feature Request] Semi-Safe mode
- Password spray attempt increase badPwd counter by 2 HOT 2
- ARM binary support HOT 1
- panic: runtime error: invalid memory address or nil pointer dereference
- Error ensure resolv.conf
- Realm gets uppercase'd which doesn't work with Linux Kerberos 5 implementation
- Error on redirection on the "release" link
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from kerbrute.