Kerberoasting is an attack that targets enterprise Windows environments. Threat actors that have access to a valid, compromised account use it to steal credentials by abusing user authentication, and continue to access the network without raising any suspicions.
Download this White Paper from our Cyber Threat Research team to learn more about how kerberoasting works, detection and mitigation, and documented cases.
CRITICALSTART® and MOBILESOC® are federally registered trademarks owned by Critical Start. Critical Start also claims trademark rights in the following: Cyber Operations Risk & Response™ platform, and Trusted Behavior Registry®. Any unauthorized use is expressly prohibited.