🖊️ Author: Nairuz Abulhul
🌐 Blog: R3dbuck3t
<aside> 📌 **Unconstrained delegation allows an application to impersonate a user or computer account to access any service within the forest on behalf of the authenticated user.
Only Domain controllers can have the unconstrained delegation enabled; any other servers shouldn’t have the feature enabled.**
</aside>
Steps to abuse delegation assigned to computer account
Steps to abused delegation assigned to user account
Active Directory Module