Table of Contents

Description

Extracts a usable TGT from the current session using the Kerberos GSS-API delegation trick.

Overview

Extracts a usable TGT from the current logon session using the Kerberos GSS-API delegation trick. This technique abuses unconstrained delegation to obtain a TGT without needing the user’s credentials. The extracted TGT can be used for further Kerberos attacks.

Arguments

Parameter	Type	Description
Target	string	The SPN to use for the delegation trick. Defaults to the host SPN of the DC.

Dependencies

Operating Systems

Windows

Description

Overview

Arguments

Dependencies

Operating Systems

Share this: