Rapid7’s 2026 Global Cybersecurity Summit is now available on-demand.Watch sessions.
Rapid7

module

Kerberos keytab utilities

Disclosed
N/A
Created
Jan 27, 2023

Description

Utilities for interacting with keytab files, which can store the hashed passwords of one or
more principals.

Discovered keytab files can be used to generate Kerberos Ticket Granting Tickets, or bruteforced
offline.

Keytab files can be also useful for decrypting Kerberos traffic using Wireshark dissectors,
including the krbtgt encrypted blobs if the AES password hash is used.

Author

alanfoster

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


msf > use auxiliary/admin/kerberos/keytab
msf auxiliary(keytab) > show actions
...actions...
msf auxiliary(keytab) > set ACTION < action-name >
msf auxiliary(keytab) > show options
...show and set options...
msf auxiliary(keytab) > run

Title
Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.