AD CS
Abuse Active Directory Certificate Service to achieve lateral movement and total domain compromise.
Abuse Active Directory Certificate Service to achieve lateral movement and total domain compromise.
Request certificate as another user with enrollee-supplied subject
Request certificate on behalf of another user with a enrollment agent certificate
Leverage vulnerable certificate access control to escalate privileges.