SERVICESEXPERTS BLOGLET'S TALK

Experts Blog

Interview with an Expert: OCO Director Matt Shirley
Fortalice Solutions

Over on our Vimeo, Fortalice Director of Offensive Cybersecurity Operations (OCO) Matt Shirley talks the red team's perspective on cyber threats and exploiting them on behalf of our clients.

Take a look:

                                                                      https://vimeo.com/531597263

Offensive Cybersecurity Operations
Related Posts
Shadow Credentials: Workstation Takeover Edition
Matthew Creel

Active Directory Certificates and PKINIT are hot topics these days and our operators at Fortalice have been doing their best to stay on top of the new research and tools. My previous blog touched on PyWhisker and referenced one of its resources available on https://thehacker.recipes. While reading through the documentation there, a note near the bottom caught my eye, which stated: User objects can't edit their own msDS-KeyCredentialLink attribute while computer objects can.

PKINIT FTW - Chaining Shadow Credentials and ADCS Template Abuse
Matthew Creel

On a recent red team engagement, our team was tasked with focusing on Active Directory Certificate Services (ADCS) exploitation. The objective was to identify certificate template misconfigurations and potentially achieve privilege escalation by abusing them. The concepts and attacks used were based around the work and whitepaper by Will Shroeder (@harmj0y) and Lee Christensen (@tifkin_).

Categories
Defensive Perspectives
Offensive Perspectives
Executive Perspectives
Recent Posts
Shadow Credentials: Workstation Takeover Edition
PKINIT FTW - Chaining Shadow Credentials and ADCS Template Abuse
Wire Fraud Alert: Business Email Compromise (BEC) on the Rise