Difficulty: 5/10
Active Directory Certificate Services (AD CS) is widely used for managing certificates for systems, users, etc. Misconfigurations in the AD CS can result in credential theft, privilege escalation, and persistence.
Resources
You can learn about AD CS vulns from this series of blog posts.
Vulns
Locksmith is a tool used for finding and patching AD CS vulns. You should use it as a source of inspiration for which vulns to include.
How to resolve this issue
You can create a fork of the repo, add the desired vulns, and then submit a pull request. Resources explaining how to add vulnerabilities are present in our documentation, slides, and video
Difficulty: 5/10
Active Directory Certificate Services (AD CS) is widely used for managing certificates for systems, users, etc. Misconfigurations in the AD CS can result in credential theft, privilege escalation, and persistence.
Resources
You can learn about AD CS vulns from this series of blog posts.
Vulns
Locksmith is a tool used for finding and patching AD CS vulns. You should use it as a source of inspiration for which vulns to include.
How to resolve this issue
You can create a fork of the repo, add the desired vulns, and then submit a pull request. Resources explaining how to add vulnerabilities are present in our documentation, slides, and video