kerberoasting – Active Directory & Azure AD/Entra ID Security

Tag: kerberoasting

Jan 20 2026

Active Directory Security Tip #16: Mitigating Kerberoast Attacks

By Sean Metcalf in ActiveDirectorySecurity, Microsoft Security, Mitigation, PowerShell, RealWorld

There are two main password attacks leveraged by adversaries; one is called Password Spraying and the other is called Kerberoasting. This post focuses on identifying accounts that may be targeted for Kerberoasting and how to harden the environment against Kerberoasting.

ActiveDirectory, ActiveDirectorySecurityTip, Kerberoast, kerberoasting, MitigateKerberoastAttack, PowerShell

Oct 04 2025

The History of Active Directory Security

By Sean Metcalf in ActiveDirectorySecurity, Technical Reference

During the Summer of 2024, I had a talk at Troopers called “A Decade of Active Directory Attacks:What We’ve Learned & What’s Next” (Slides & Video) where I focused on the key milestones of Active Directory security (history). This article covers my “decade of Active Directory attacks” in some detail which was correlated with public …

ACEUptheSleeve, ActiveDirectorySecurityHistory, Adalanche, ADCSAttacks, ADSecurityHistory, BadSuccessor, Bloodhound, Bloodhound.py, BloodhoundCE, BloodhoungOpenGraph, CertifiedPre-Owned, Certify, Certipy, CrackMapExec, DCShadow, DCSync, DNSAdminToDomainAdmin, DSInternals, DSRM, ExploitingGroupPolicyPreferences, GoldenTickets, GroupManagedServiceAccounts, HistoryOfActiveDirectorySecurity, Honeypot, Impacket, Kerberoast, kerberoasting, KerberosRelay, KrbRelayUp, LDAPDomainDump, Locksmith, mimikatz, MimikatzDCSync, NBNSpoof, NTLMRelayX, Overpass-the-hash, Pass-the-ticket, PassTheHash, PetitPotam, PingCastle, PowerShell Empire, PowerShellAttackDetection, PowerSploit, PowerView, PrinterBug, PurpleKnight, RemotePotato, Responder, Rubeus, Sharphound, SilverTickets, SMBRelay, SMBRelay2, WCE, WindowsCredentialEditor

Jan 29 2017

Sneaky Persistence Active Directory Trick #18: Dropping SPNs on Admin Accounts for Later Kerberoasting

By Sean Metcalf in ActiveDirectorySecurity, Microsoft Security, Technical Reference

The content in this post describes a method through which an attacker could persist administrative access to Active Directory after having Domain Admin level rights for about 5 minutes. Complete list of Sneaky Active Directory Persistence Tricks posts This post explores how an attacker could leverage existing admin rights and/or over-permissive delegation to gain persistence …

AD Sneaky Persistence, attacking kerberos, Kerberoast, kerberoasting, Kerberos attack, Kerberos Ticket Cracking, KerberosRequestorSecurityToken, PowerShell Kerberoasting, RC4 TGS ticket, service principal name, sneaky persistence tricks, SPN, System.IdentityModel, TGS cracking, Write ServicePrincipalName

Content Disclaimer: This blog and its contents are provided "AS IS" with no warranties, and they confer no rights. Script samples are provided for informational purposes only and no guarantee is provided as to functionality or suitability. The views shared on this blog reflect those of the authors and do not represent the views of any companies mentioned. Content Ownership: All content posted here is intellectual work and under the current law, the poster owns the copyright of the article. Terms of Use Copyright © 2011 - 2025.

Tag: kerberoasting

Active Directory Security Tip #16: Mitigating Kerberoast Attacks

The History of Active Directory Security

Sneaky Persistence Active Directory Trick #18: Dropping SPNs on Admin Accounts for Later Kerberoasting

Recent Posts

Active Directory & Entra ID Security Services

Popular Posts

Categories

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright

Tag: kerberoasting

Active Directory Security Tip #16: Mitigating Kerberoast Attacks

The History of Active Directory Security

Sneaky Persistence Active Directory Trick #18: Dropping SPNs on Admin Accounts for Later Kerberoasting

Recent Posts

Active Directory & Entra ID Security Services

Popular Posts

Categories

Tags

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright