TGT Delegation Trick (Invoke-RubeusTgtdeleg)

Description

Extracts a usable TGT from the current session using the Kerberos GSS-API delegation trick.

Overview

Extracts a usable TGT from the current logon session using the Kerberos GSS-API delegation trick. This technique abuses unconstrained delegation to obtain a TGT without needing the user’s credentials. The extracted TGT can be used for further Kerberos attacks.

Arguments

Parameter Type Description
Target string The SPN to use for the delegation trick. Defaults to the host SPN of the DC.

Dependencies

  • AD

Operating Systems

  • Windows
Scroll to Top