Active Directory environments use Kerberos as the default authentication protocol, which unfortunately makes them particularly vulnerable to “Kerberoasting”, an attack where threat actors leverage the fact that service tickets are encrypted using a key derived from the account’s password to obtain the credentials and takeover privileged accounts. Generally, the adversary performs a service ticket request…
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2025/10/kerberoasting-protection/
