21 days ago
![[Image: Screenshot-1.png]](https://i.postimg.cc/bwyjhZ4b/Screenshot-1.png)
Identity plays a crucial role in security of an enterprise environment. Certainly, Identity is the new security perimeter. In an enterprise environment, Identity is usually managed by Active Directory or by Azure AD in case of a Hybrid Identity. An often-overlooked part of enterprise infrastructure is Active Directory Certificate Services (AD CS). AD CS is a Windows Server Role that implements Public Key Infrastructure and can be used for user authentication, machine authentication, document signing, email signing, file encryption and so much more. This makes AD CS a crucial part of Identity Management.
![[Image: img-1.png]](https://static.wixstatic.com/media/470c31_549ae18ad27748d686f3dbcebc9eea9e~mv2.png/v1/crop/x_10,y_0,w_959,h_1000/fill/w_188,h_196,al_c,q_85,usm_0.66_1.00_0.01,enc_avif,quality_auto/img-1.png)
Unfortunately, not many professionals understand AD CS. This, of course, makes it harder to secure it against even the simplest attacks that may result in compromise of the entire enterprise environment.
We have years of experience of teaching classes at world’s leading organizations and hacker conferences and Red Team operations against some of the better enterprise environments. Drawing from that experience, we have created this course and lab that helps you in getting started with Attacking and Defending AD CS.
We have years of experience of teaching classes at world’s leading organizations and hacker conferences and Red Team operations against some of the better enterprise environments. Drawing from that experience, we have created this course and lab that helps you in getting started with Attacking and Defending AD CS.
The AD CS Attacks for Red and Blue Teams lab provides course videos, learning aids and a meticulously created lab environment that helps you in understanding AD CS security in-depth. The lab is beginner friendly and you don’t need any prior experience with AD CS. We cover a lot of interesting topics like CA enumeration, Local Privilege Escalation, Persistence by abusing Certificates, Domain Privilege Escalation by - abusing CA, Certificate Templates, Abusing Certificates – Client Auth, EFS, Code Signing, SSH etc., Domain persistence after compromising CA, Network Pivoting by abusing VPN Certificates, Abusing certificates on Linux machines, Lateral movement to Azure and a lot more!
What's Included
![[Image: image%20new.jpg]](https://static.wixstatic.com/media/470c31_dfda69e3d6ad4d5286842736dce8dbec~mv2.jpg/v1/crop/x_0,y_73,w_740,h_674/fill/w_234,h_213,al_c,q_80,usm_0.66_1.00_0.01,enc_avif,quality_auto/image%20new.jpg)
- Access to a lab environment (One/Two/Three months) with updated Server 2022 and Linux machines. Lab can be accessed using a web browser or VPN.
- A ready to use student VM in the cloud that has both Windows and Linux tools pre-installed.
- Life time access to all the learning material (including course updates).
- 11+ hours of video course
- Slides, Lab Manual, Walk-through videos and Diagrams as learning aid.
- Lab manual for solving the labs.
- One exam attempt for the Certified Enterprise Security Professional – AD CS (CESP - ADCS) certification.
- Support on email and Discord.
What will you Learn?
![[Image: web-img-2-3.png]](https://static.wixstatic.com/media/470c31_24680e579d0e47c4bdcc23301813702c~mv2.png/v1/crop/x_0,y_246,w_1000,h_512/fill/w_300,h_153,al_c,q_85,usm_0.66_1.00_0.01,enc_avif,quality_auto/web-img-2-3.png)
- Performing Red Team operation or Penetration Test against a modern AD CS environment.
- AD CS is not the only CA in the lab. Learn and practice attacks against other Certificate Services too!
- Pivot to Azure by abusing Azure Certificate-based authentication.
- Abuse VPN certificates to pivot to protected networks .
- Abuse Trusted CAs across the AD forests.
- Learn to execute attacks from both Windows and Linux.
Password:leakforum.io
![[Image: tumblr-b540b318feeef992063cb2e5ff500a57-...resize.gif]](https://i.postimg.cc/jjkLFCGZ/tumblr-b540b318feeef992063cb2e5ff500a57-68426a28-1280-ezgif-com-resize.gif)
