You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Kerberos Relay and Forwarder for (Fake) SMB MiTM Server
7
+
Kerberos Relay and Forwarder for (Fake) RPC/DCOM MiTM Server
6
8
7
9
---
8
-
KrbRelayEx is a tool designed for performing Man-in-the-Middle (MitM) attacks by relaying Kerberos AP-REQ tickets. It listens for incoming SMB connections and forwards the AP-REQ to the target host, enabling access to SMB shares or HTTP ADCS (Active Directory Certificate Services) endpoints on behalf of the targeted identity.
10
+
KrbRelayEx-RPC is a tool similar to my <a href=https://github.com/decoder-it/KrbRelayEx>KrbRelayEx</a> designed for performing Man-in-the-Middle (MitM) attacks by relaying Kerberos AP-REQ tickets. <br>
11
+
This version implements a fake RPC/DCOM server:<br>
12
+
- Listens for authenticated ISystemActivator requests and extracts the AP-REQ tickets
13
+
- Extracts dynamic port bindings from EPMAPPER/OXID resolutions
14
+
- Relay the AP-REQ to access SMB shares or HTTP ADCS (Active Directory Certificate Services) on behalf of the victim on the real destination host
15
+
- Forwards the victim's requests dynamically and transparently to the real destination and port so the victim is unaware that their requests are being intercepted and relayed.
0 commit comments