https://4m3rr0r.me/posts/ Recent content in Posts on 4m3rr0r's Blog Hugo en Sun, 07 Jun 2026 12:00:38 +0600 https://4m3rr0r.me/posts/abusing-constrained-delegation-without-local-admin/ Sun, 07 Jun 2026 12:00:38 +0600 https://4m3rr0r.me/posts/abusing-constrained-delegation-without-local-admin/ <p>There is a persistent misconception in Active Directory penetration testing to pull off a Constrained Delegation attack, you need to compromise a host, escalate to local administrator, and dump credentials from memory.</p> <p>While dumping LSASS is a standard path it is not a strict requirement. If the target is a user account configured with a weak password, a standard domain user can execute a complete delegation attack and achieve Domain Administrator impersonation entirely over the network, without ever touching a target endpoint&rsquo;s disk or needing elevated privileges.</p>