Testing NTLM/Kerberos against a public URL

I am creating a Java open source package that makes it easy to connect with HttpClient 3.1 to resources that are protected by NTLm v1/v2 and Kerberos.

I need to test this tool against real world servers. Are there any publicly available endpoints that are protected by NTLM or Kerberos that I can get a user and password to test against?

Basically I am looking for something like Browserspy for NTLM/Kerberos. Also a public site using self signed certificates would be helpful for testing.

A bit late to the party but ...

The freeipa project has a public demo realm. See the instructions.

$ kinit [email protected]
Password for [email protected]: 
$ klist 
Ticket cache: KEYRING:persistent:1000:1000
Default principal: [email protected]

Valid starting       Expires              Service principal
05/09/2019 20:53:50  05/10/2019 20:53:44    krbtgt/[email protected]
$ klist 
Ticket cache: KEYRING:persistent:1000:1000
Default principal: [email protected]

Valid starting       Expires              Service principal
05/09/2019 20:54:21  05/10/2019 20:53:44  HTTP/[email protected]
05/09/2019 20:54:21  05/10/2019 20:53:44  HTTP/ipa.demo1.freeipa.org@
05/09/2019 20:53:50  05/10/2019 20:53:44  krbtgt/[email protected]

The http ticket appeared after kinit'ing and visiting https://ipa.demo1.freeipa.org