Microsoft Active Directory (AD) PKI is widely used by enterprises today, yet it has largely flown under the radar of attackers and defenders – until now. Recent research by SpecterOps reveals common user misconfigurations in AD CS that, if left unchecked, create serious security blindspots that attackers can abuse for credential theft, domain escalation, and persistence.
Join leading Red Team & PKI Experts from SpecterOps and Keyfactor as they discuss the findings of the report, “Certified Pre-Owned: Abusing Active Directory Certificate Services.”
In this discussion, they’ll cover:
- What AD CS is and how it works
- Common AD CS misconfigurations
- PKI architecture and implementation flaws
- Defensive advice and best practices to mitigate attacks