Red Teaming/Active Directory

AS-REP Roasting

Attacking users without Kerberos Pre-Authentication enabled.

Overview

AS-REP Roasting is an attack against Kerberos where a user's account has the 'Do not require Kerberos preauthentication' property enabled. This allows an attacker to request an AS-REP message for that user, which contains a chunk of data encrypted with the user's password.

Attack Execution

powershell

Rubeus.exe asreproast /format:hashcat /outfile:hashes.txt

Continue Learning

AS-REP Roasting

Learn the next step in Active Directory attacks: targeting users without Kerberos pre-authentication enabled.

Golden Ticket Attack

Master the ultimate persistence technique by forging Kerberos Ticket Granting Tickets (TGTs).

Join Us. Cut Costs.
Focus on What Matters.

Unlock high-impact penetration testing that drives real security gains. Led by experts, tailored for results, and designed to stay budget-friendly.

Submit Info

Share your environment, scope, or compliance needs via our quick form.

Senior Review

A lead RadiumFox engineer reviews and tailors your assessment—no junior handoffs.

Optional Scoping Call

We'll clarify priorities and technical details if needed.

Clear Quote

Expect a fixed-cost proposal—no hidden fees or fluff.

Fast Kickoff

Once approved, most projects launch within 5–7 business days with full support.

AS-REP Roasting

Overview

Attack Execution

Continue Learning

AS-REP Roasting

Golden Ticket Attack

Join Us. Cut Costs. Focus on What Matters.

Submit Info

Senior Review

Optional Scoping Call

Clear Quote

Fast Kickoff

Join Us. Cut Costs.
Focus on What Matters.