ricardojoserf

ricardojoserf / AutoPtT

Public

Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack. Implemented in C#, C++, Crystal, Python and Rust

ricardojoserf.github.ioautoptt active-directory mimikatz pass-the-ticket red-team redteam-tools
124
13
69% credibility
Found Feb 10, 2026 at 54 stars 2x -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
C#
AI Summary

AutoPtT is a Windows tool for viewing login sessions, listing authentication passes, and automatically copying them between sessions to test security setups.

How It Works

1
🔍 Discover the tool

You hear about AutoPtT from a security friend who uses it to test how login passes work on Windows computers.

2
📥 Get the program

Download the ready-to-use program files to your Windows machine.

3
▶️ Start the program

Run the program from your command window and see simple options like list sessions or auto test.

4
Pick your test
📋
View or list

See who's logged in or what passes are available right now.

Auto magic

Let it find a good pass, grab it, and add it to your session instantly.

💾
Save or load

Pick a specific pass to save as a file or load one from a file.

5
🎯 Watch it work

The program shows available passes, you pick one if needed, and it copies it to your current login for testing.

Test ready

Your login now has the extra pass, ready to check access to other areas safely in your test environment.

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 54 to 124 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is AutoPtT?

AutoPtT automates Pass-the-Ticket attacks on Windows Kerberos tickets, letting you enumerate logon sessions, list tickets across sessions, export TGTs by LogonId, and inject them via simple CLI commands like `auto`, `sessions`, `klist`, `tickets`, `export`, or `ptt`. Built in C++ with a Python port, it serves as a lightweight, standalone alternative to Rubeus or Mimikatz for red team ops, solving the hassle of heavy dependencies in Active Directory pentests. Users get interactive ticket dumping and one-shot PtT without external tools.

Why is it gaining traction?

It skips the bloat of Mimikatz—no AV flags from lsass dumps—and offers an `auto` mode that scans TGTs, prompts selection, exports, and imports in seconds, ideal for fast lateral movement. Dual C++/Python builds mean easy compilation or scripting integration, plus clear screenshots in docs for quick onboarding. As a focused alternative, it hooks pentesters tired of GitHub automated pipelines bloating their kits.

Who should use this?

Red teamers running AD engagements, needing quick ticket pivots without Rubeus baggage. Blue team defenders simulating PtT for detection tuning. Security researchers prototyping Kerberos attacks on test domains.

Verdict

Grab it if you're in AD red teaming and want a no-fuss alternative—47 stars show niche appeal, but the 0.699999988079071% credibility score flags low maintenance; test thoroughly as docs are basic with no automated GitHub tests or versioning. Solid for targeted use, skip for production pipelines.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.