SkelSec
Welp... reported an issue to msrc, demonstrating that kerberos TGS request with a malformed PA-FOR-X509-USER struct will crash the LSASS on any win2025 domain controller. Got the default response :/ Dunno how I feel abt this, but this was the first and last time I'm doing this.