Description
Requests a Kerberos TGS (service ticket) using an existing TGT.
Overview
Requests a Kerberos TGS (Ticket Granting Service) ticket for a specified service using an existing TGT. Useful for accessing specific services or performing targeted Kerberos attacks.
Arguments
| Parameter | Type | Description |
|---|---|---|
| Ticket | string | The base64-encoded TGT ticket to use. |
| Service | string | The SPN of the target service (e.g., cifs/dc01.domain.com). |
| DC | string | The domain controller to target. |
| EncType | string | The encryption type to request. |
| Ptt | switch | Pass the ticket into the current session. |
Additional Parameters
- TargetDomain: The target domain for cross-domain requests.
- Enterprise: Use enterprise principal name format.
- Opsec: Use opsec-safe request format.
- U2U: Perform User-to-User authentication.
- KeyList: Perform Keylist attack.
Dependencies
- AD
Operating Systems
- Windows