Class: Client

kerberos.Client Known Issues: Hardcoded timeout in gokrb5 library TGT / Session Handling not exposed Client is kerberos client Example

const kerberos = require('nuclei/kerberos');
// if controller is empty a dns lookup for default kdc server will be performed
const client = new kerberos.Client('acme.com', 'kdc.acme.com');

Constructors

constructor

Properties

Methods

Constructors

constructor

• new Client(domain, controller?): Client

Parameters

Name	Type
`domain`	`string`
`controller?`	`string`

Returns

Client

Defined in

kerberos.ts:90

Properties

Krb5Config

• Optional Krb5Config: Config

Defined in

kerberos.ts:82

Realm

• Optional Realm: string

Defined in

kerberos.ts:86

controller

• Optional controller: string

Defined in

kerberos.ts:90

domain

• domain: string

Defined in

kerberos.ts:90

Methods

EnumerateUser

▸ EnumerateUser(username): EnumerateUserResponse EnumerateUser and attempt to get AS-REP hash by disabling PA-FX-FAST

Parameters

Name	Type
`username`	`string`

Returns

EnumerateUserResponse Example

const kerberos = require('nuclei/kerberos');
const client = new kerberos.Client('acme.com', 'kdc.acme.com');
const resp = client.EnumerateUser('pdtm');
log(resp);

Defined in

kerberos.ts:122

GetServiceTicket

▸ GetServiceTicket(User): TGS GetServiceTicket returns a TGS for a given user, password and SPN

Parameters

Name	Type
`User`	`string`

Returns

TGS Example

const kerberos = require('nuclei/kerberos');
const client = new kerberos.Client('acme.com', 'kdc.acme.com');
const resp = client.GetServiceTicket('pdtm', 'password', 'HOST/CLIENT1');
log(resp);

Defined in

kerberos.ts:137

SetConfig

▸ SetConfig(cfg): void SetConfig sets additional config for the kerberos client Note: as of now ip and timeout overrides are only supported in EnumerateUser due to fastdialer but can be extended to other methods currently

Parameters

Name	Type
`cfg`	`Config`

Returns

void Example

const kerberos = require('nuclei/kerberos');
const client = new kerberos.Client('acme.com', 'kdc.acme.com');
const cfg = new kerberos.Config();
cfg.SetIPAddress('192.168.100.22');
cfg.SetTimeout(5);
client.SetConfig(cfg);

Defined in

kerberos.ts:107

Templates

Protocols

Reference

Workflows

Kerberos.Client

Class: Client

Table of contents

Constructors

Properties

Methods

Constructors

constructor

Parameters

Returns

Defined in

Properties

Krb5Config

Defined in

Realm

Defined in

controller

Defined in

domain

Defined in

Methods

EnumerateUser

Parameters

Returns

Defined in

GetServiceTicket

Parameters

Returns

Defined in

SetConfig

Parameters

Returns

Defined in

Templates

Protocols

Reference

Workflows

​Class: Client

​Table of contents

​Constructors

​Properties

​Methods

​Constructors

​constructor

​Parameters

​Returns

​Defined in

​Properties

​Krb5Config

​Defined in

​Realm

​Defined in

​controller

​Defined in

​domain

​Defined in

​Methods

​EnumerateUser

​Parameters

​Returns

​Defined in

​GetServiceTicket

​Parameters

​Returns

​Defined in

​SetConfig

​Parameters

​Returns

​Defined in

Class: Client

Table of contents

Constructors

Properties

Methods

Constructors

constructor

Parameters

Returns

Defined in

Properties

Krb5Config

Defined in

Realm

Defined in

controller

Defined in

domain

Defined in

Methods

EnumerateUser

Parameters

Returns

Defined in

GetServiceTicket

Parameters

Returns

Defined in

SetConfig

Parameters

Returns

Defined in