Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
More information is available here and in ExumbraOps' post.
Returns a crackable hash for users withouth kerberos preauthentication enabled.
Enumerates any users in the current (or specified) domain without kerberos preauthentication enabled and requests crackable AS-REP responses.
A customized version of the krb5_tgs_fmt_plug.c plugin from magnumripper version of John The Ripper. Drop into ./src/ and compile as normal. The new hash tag is krb5asrep.
A customized version of @tifkin_'s tgscrack project. The hash format needed is salt:hash:description.