Table of Contents
Loading contents...
README.md
RollerRoaster 🎢
RollerRoaster is a tool designed for performing enumeration and exploitation of Kerberoasting attack in Active Directory environments.
Developed with stealth in mind, it incorporates features such as controlled delays between Service Principal Name (SPN) requests to evade detection, and an Event Tracing for Windows (ETW) patch to enhance stealth.
🔧 Features
- 🔐 Identify accounts with Service Principal Names (SPNs)
- ⏳ Optional delay between SPN requests
- 🛡️ Optional ETW patch prior to SPN requests
- 🔑 SPN Hashes in hashcat output format for offline cracking
📘 Usage
.\RollerRoaster.exe /domain:north.sevenkingdoms.local /list
🎥 Demo
https://github.com/user-attachments/assets/4e00e25d-a812-4f75-a5b4-006679347f9f
⚠️ Disclaimer
RollerRoaster is intended for authorized security testing and educational purposes only.
Unauthorized use against systems you do not own or have permission to test is illegal and unethical. Use responsibly.
Tool Information
Related Tools
NTDLLReflection
Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle to ntdll , and trigger exported APIs from the export table
Stable
kernel-exploit-factory
Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your environment anymore.
Stable
NovaHypervisor
NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (either via Bring Your Own Vulnerable Driver (BYOVD) or other means) by safeguarding defense products (AntiVirus / Endpoint Protection) and kernel memory structures and preventing unauthorized access to kernel memory.
Stable