A
silver ticket attack forges Kerberos service tickets for specific services using the service account's NTLM hash — more targeted than golden tickets but harder to detect.
Silver tickets target specific services (SQL Server, file shares) using that service's account hash. Unlike golden tickets, they don't require DC communication (harder to detect). Mitigation: managed service accounts with complex auto-rotated passwords.