home.social
Sign in Create account

#activedirectorycertificateservices — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #activedirectorycertificateservices, aggregated by home.social.

  1. Analyst207 @[email protected] ·

    Attackers Exploit AD CS for Stealthy Privilege Escalation

    Malicious actors are exploiting weaknesses in Active Directory Certificate Services (AD CS) to secretly escalate privileges, often disguising their attacks as routine administrative actions. This stealthy tactic allows them to blend in with normal operations, making it a high-impact threat that's often…

    osintsights.com/attackers-expl

    #ActiveDirectoryCertificateServices #PrivilegeEscalation #Cve202226923 #SocialEngineering #StealthyThreats

    #activedirectorycertificateservices #privilegeescalation #cve202226923 #socialengineering #stealthythreats
  2. Analyst207 @[email protected] ·

    Attackers Exploit AD CS for Stealthy Privilege Escalation

    Malicious actors are exploiting weaknesses in Active Directory Certificate Services (AD CS) to secretly escalate privileges, often disguising their attacks as routine administrative actions. This stealthy tactic allows them to blend in with normal operations, making it a high-impact threat that's often…

    osintsights.com/attackers-expl

    #ActiveDirectoryCertificateServices #PrivilegeEscalation #Cve202226923 #SocialEngineering #StealthyThreats

    #activedirectorycertificateservices #privilegeescalation #cve202226923 #socialengineering #stealthythreats
  3. Jake Hildreth (acorn) :blacker_heart_outline: @[email protected] ·

    The Locksmith Active Directory (AD) Certificate Services (CS) remediation tool has been updated: github.com/TrimarcJake/Locksmi

    New features:
    - Support for Restricted Admin Mode. If RAM is detected, Locksmith will ask to be re-run using the -Credential switch.
    - If the AD Powershell module is not installed on Win 10/11, Locksmith will attempt to install it for you.
    Note: previously only available on server-class OSes.
    - New functions for checking user type and elevation status.
    - Auto-generated snippets for ownership issues (a subset of ESC4/ESC5).
    - Support for non-English Active Directory environments!

    Next planned updates:
    - Add individual CA Hosts to $SafeUsers using SIDs.
    - Perform additional environment checks before attempting to run.
    - Rename modes to something that makes sense.

    #IAM #IdentitySecurity #CertificateServices #ActiveDirectory #ActiveDirectoryCertificateServices #ADCS #PKI #Locksmith #OpenSource #DefensiveSecurity #DefensiveSecurityTooling #Pizza

    #iam #identitysecurity #certificateservices #activedirectory #activedirectorycertificateservices #adcs
  4. Jake Hildreth (acorn) :blacker_heart_outline: @[email protected] ·

    Locksmith has been updated: github.com/TrimarcJake/Locksmi

    New features:
    - Improved on-screen explanation of what the script is doing
    - Improved output formatting
    - Confirmation now required before the AD CS environment is changed
    - If Locksmith changes your environment, a script is created to easily revert those changes.
    - Less false positives
    - If Active Directory module is not installed, Locksmith will attempt to install it for you.

    Next planned updates:
    - Strict Mode support
    - RDP Restricted Admin support

    #IAM #IdentitySecurity #CertificateServices #ActiveDirectory #ActiveDirectoryCertificateServices #ADCS #Locksmith #OpenSource #DefensiveSecurity #DefensiveSecurityTooling #Pizza

    #iam #identitysecurity #certificateservices #activedirectory #activedirectorycertificateservices #adcs