Silver Ticket

#

This attack requires to have control over a Service Account.

Steal credentials from an account that is associated with a service.
Using those credentials, request a TGS for that service.
Authenticate against the service using the acquired TGS.

For example, we can create a TGS to grant us access to the HOST, create a Scheduled Task to download our payload and get a reverse shell as SYSTEM.