🎙️ In this episode, Craig Birch exposes one of the most overlooked Active Directory misconfigurations: the “Do not require Kerberos pre-authentication” setting.
Attackers love it — it enables AS-REP Roasting, silent user enumeration, and offline password cracking — and it often flies under the radar of SIEMs and detection tools.
• What Kerberos pre-auth actually does
• How disabling it creates an AS-REP Roasting risk
• Why this setting leads to silent user enumeration
• How attackers extract TGTs for cracking with Hashcat/John
• PowerShell steps to detect and remediate it safely
🔍 What You’ll Learn:
• What Kerberos pre-auth actually does
• How disabling it creates an AS-REP Roasting risk
• Why this setting leads to silent user enumeration
• How attackers extract TGTs for cracking with Hashcat/John Ripper
• PowerShell steps to detect and remediate it safely
🛠️ PowerShell Spotlight:# Import the AD module
Import-Module ActiveDirectory
# Find accounts vulnerable to AS-REP Roasting
$users = Get-ADUser -Filter {DoesNotRequirePreAuth -eq $true} -Properties DoesNotRequirePreAuth
# Output affected accounts
$users | Select-Object Name, SamAccountName, UserPrincipalName
# Optional: Remediation (confirmation step)
Read-Host -Prompt "Press Enter to remediate these accounts"
foreach ($user in $users) {
Set-ADAccountControl -Identity $user -DoesNotRequirePreAuth $false
}
âś… Use this to detect and fix accounts vulnerable to offline ticket cracking.âś… Quick Takeaways:
AS-REP Roasting bypasses standard authentication failure logging
Pre-auth disabled = easy ticket extraction and brute-force attempts
This setting is often set by legacy apps or weak GPOs
Always confirm account function before remediation
Add detection logic to your SIEM or use scheduled PowerShell audits
💬 Found this helpful? Like, share, or comment. Got a topic for a future 10-minute breakdown? Drop it below — we’re listening.
đź“Ś Powered by Guardians of the Directory
Popular Podcasts
Stuff You Should Know
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Dateline NBC
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
On Purpose with Jay Shetty
I’m Jay Shetty host of On Purpose the worlds #1 Mental Health podcast and I’m so grateful you found us. I started this podcast 5 years ago to invite you into conversations and workshops that are designed to help make you happier, healthier and more healed. I believe that when you (yes you) feel seen, heard and understood you’re able to deal with relationship struggles, work challenges and life’s ups and downs with more ease and grace. I interview experts, celebrities, thought leaders and athletes so that we can grow our mindset, build better habits and uncover a side of them we’ve never seen before. New episodes every Monday and Friday. Your support means the world to me and I don’t take it for granted — click the follow button and leave a review to help us spread the love with On Purpose. I can’t wait for you to listen to your first or 500th episode!