Our Blog

Protected Users: you thought you were safe uh?

Reading time: ~10 min
On the 31st of October 2022, a PR on CrackMapExec from Thomas Seigneuret (@Zblurx) was merged. This PR fixed Kerberos...

CertPotato – Using ADCS to privesc from virtual and network service accounts to local system

Reading time: ~14 min
The goal of this blog post is to present a privilege escalation I found while working on ADCS. We will...

Constrained Delegation Considerations for Lateral Movement

Reading time: ~18 min
The abuse of constrained delegation configuration, whereby a compromised domain user or computer account configured with constrained delegation can be...