I was a bit bored, so decided to work on a blog post this weekend. It covers how to Kerberoast accounts, while trying to stay under the radar. I'll explain different OpSec failures as well.
@DebugPrivilege
Really nice recommendations for red teamers, now I know how to enhance our honey SPNs) I wouldn't bother about RC4, it normal for many services. In general what we see, pentesters behave quite noisy while performing kerberoasting.