VIDEO
The Risks of Outdated Active Directory Certificate Services Configurations
Video Summary:
A single misconfiguration in Active Directory Certificate Services (AD CS) can let attackers go from low-privileged users to full-on domain administrators, without ever touching a password. In this episode, Sherri Davidoff and Tom Pohl walk through a real-world case where this exact misconfiguration led to a total domain takeover. If your organization installed AD CS more than 6 months ago, you could be at risk. We'll discuss: ▪ What Active Directory Certificate Services (AD CS) actually does ▪ How a default setting in the AD CS web interface enables privilege escalation ▪ Step-by-step: How attackers impersonate a domain controller ▪ How stolen certificates and DC Sync attacks lead to full credential dumps and more Don't forget to like and subscribe for more cybersecurity advice! #ActiveDirectory #CyberSecurity #PenetrationTesting #ADCS #PrivilegeEscalation #LMGSecurity #DomainAdmin #ITSecurity #PassTheHash #NetworkSecurity
A single misconfiguration in Active Directory Certificate Services (AD CS) can let attackers go from low-privileged users to full-on domain administrators, without ever touching a password. In this episode, Sherri Davidoff and Tom Pohl walk through a real-world case where this exact misconfiguration led to a total domain takeover. If your organization installed AD CS more than 6 months ago, you could be at risk. We'll discuss: ▪ What Active Directory Certificate Services (AD CS) actually does ▪ How a default setting in the AD CS web interface enables privilege escalation ▪ Step-by-step: How attackers impersonate a domain controller ▪ How stolen certificates and DC Sync attacks lead to full credential dumps and more Don't forget to like and subscribe for more cybersecurity advice! #ActiveDirectory #CyberSecurity #PenetrationTesting #ADCS #PrivilegeEscalation #LMGSecurity #DomainAdmin #ITSecurity #PassTheHash #NetworkSecurity
