skills.homes logoskills.homescapability registry
home/categories/containers/blacklanternsecurity-red-run-skills-ad-kerberos-delegation-skill-md
cd ..
containersdevops

kerberos-delegation

Exploits Kerberos delegation misconfigurations for privilege escalation and lateral movement in Active Directory. Covers Unconstrained Delegation (TGT harvesting via coercion), Constrained Delegation (S4U2Self + S4U2Proxy with SPN swapping), and Resource-Based Constrained Delegation (RBCD via writable machine accounts).

查看源码containers
blacklanternsecurity
maintainer
blacklanternsecurity
更新于 3/22/2026
星标
126
分支
14
quick start

Installation and usage

Exploits Kerberos delegation misconfigurations for privilege escalation and lateral movement in Active Directory. Covers Unconstrained Delegation (TGT harvesting via coercion), Constrained Delegation (S4U2Self + S4U2Proxy with SPN swapping), and Resource-Based Constrained Delegation (RBCD via writable machine accounts).

安装
$ install --globalskills.sh
使用

安装后,您可以通过在终端运行以下命令来使用此技能:

skills use kerberos-delegation