Kerberoasting is a technique used by attackers to exploit the Kerberos authentication protocol in Windows environments. The attacker requests a service ticket for a service account, which is then encrypted with the service account’s password hash. The attacker can then extract the ticket and attempt to crack the password hash offline.