# Delegation Abuse

* <https://www.guidepointsecurity.com/blog/delegating-like-a-boss-abusing-kerberos-delegation-in-active-directory/>
* <https://www.thehacker.recipes/ad-ds/movement/kerberos/delegations#theory>
* <https://youtu.be/byykEId3FUs?t=2619>
* <https://luemmelsec.github.io/S4fuckMe2selfAndUAndU2proxy-A-low-dive-into-Kerberos-delegations/>
* <https://unit42.paloaltonetworks.com/next-gen-kerberos-attacks/>

{% embed url="<https://github.com/ShutdownRepo/The-Hacker-Recipes/raw/master/.gitbook/assets/Insomnihack%202022%20-%20Delegating%20Kerberos%20To%20Bypass%20Kerberos%20Delegation%20Limitations.pdf>" %}

## CVE-2022-33679

* <https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html>
* <https://github.com/Bdenneu/CVE-2022-33679>

## Tools

* <https://github.com/mtth-bfft/adeleg>