Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Pass-the-Ticket PtT steals and reuses a valid Kerberos ticket to authenticate as a victim without their password, enabling lateral movement in a domain.
Pass-the-Ticket PtT Definition: Pass-the-Ticket PtT steals and reuses a valid Kerberos ticket to authenticate as a victim without their password, enabling lateral movement in a domain.
Pass-the-Ticket PtT is a credential theft and lateral movement technique in which an attacker steals a valid Kerberos ticket from memory and reuses it to authenticate as the victim without knowing their password. By extracting Ticket Granting Tickets or service tickets from a compromised host, often with tools like Mimikatz, the adversary impersonates the user across the domain. Forged variants such as Golden and Silver Tickets extend the attack to long-term, privileged domain access.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →