Kerberoasting
Kerberoasting
- "Kerberoasting is a post-compromise attack technique for cracking passwords associated with service accounts in Microsoft Active Directory"[1]
- Basically, an attacker requests a Kerberos service ticket for a targeted user
- The service ticket contains the user's hashed password
- The attacker then brute-forces the hash offline to extract the password
Metadata
Sources
What is Kerberoasting? | Defintion | StrongDM