Our Blog

CertPotato – Using ADCS to privesc from virtual and network service accounts to local system

Reading time: ~14 min
The goal of this blog post is to present a privilege escalation I found while working on ADCS. We will...

Constrained Delegation Considerations for Lateral Movement

Reading time: ~18 min
The abuse of constrained delegation configuration, whereby a compromised domain user or computer account configured with constrained delegation can be...