AD CS – The ‘Certified Pre-Owned’ Attacks

Overview This post will cover the attacks detailed in the white-paper produced by SpecterOps. The most well-known of which is the 'ESC8' attack - where a standard domain user can escalate to Domain Admin, given a vulnerable environment. If AD CS is a new concept to you, then I have a post covering the basics, … Continue reading AD CS – The ‘Certified Pre-Owned’ Attacks