Kerberos PreAuthentication and Party Tricks
Back in 2016, Geoffrey Janjua of Exumbra Operations Group, presented at LayerOne about “Kerberos Party Tricks” and abusing user accounts which have Kerberos Pre-authentication disabled. The python script he released at the time was a great proof-of-concept, but there are alternative tools available now for detecting, and exploiting, this issue.