# Kerberos

- [Kerberoasting](/active-directory/lateral-movement/kerberos/kerberoasting.md): Kerberos is the preferred authentication protocol in Active Directory networks for domain accounts.
- [AS-REP Roasting](/active-directory/lateral-movement/kerberos/as-rep-roasting.md)
- [Pass the Hash/Ticket](/active-directory/lateral-movement/kerberos/pass-the-hash-ticket.md)
- [MSSQL Trusted Links](/active-directory/lateral-movement/kerberos/mssql-trusted-links.md)
- [Forged Tickets](/active-directory/lateral-movement/kerberos/forged-tickets.md)
- [Delegations](/active-directory/lateral-movement/kerberos/delegations.md)
- [Unconstrained Delegation](/active-directory/lateral-movement/kerberos/delegations/unconstrained-delegation.md)
- [Constrained Delegation](/active-directory/lateral-movement/kerberos/delegations/constrained-delegation.md)
- [(RBCD) Resource-Based Constrained](/active-directory/lateral-movement/kerberos/delegations/rbcd-resource-based-constrained.md)