PKI Meets Red Team: Revealing Common Microsoft AD CS Misconfigurations

Presented by

Ted Shorter, CTO, Chris Hickman, CSO, Lee Christensen, Technical Architect, & Will Schroeder, Technical Architect

About this talk

Microsoft Active Directory (AD) PKI is widely used by enterprises today, yet it has largely flown under the radar of attackers and defenders – until now. Recent research by SpecterOps reveals common user misconfigurations in AD CS that, if left unchecked, create serious security blindspots that attackers can abuse for credential theft, domain escalation, and persistence. Join leading Red Team & PKI Experts from SpecterOps and Keyfactor as they discuss the findings of the report, “Certified Pre-Owned: Abusing Active Directory Certificate Services.” In this discussion, they’ll cover: -What AD CS is and how it works -Common AD CS misconfigurations -PKI architecture and implementation flaws -Defensive advice and best practices to mitigate attacks

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (78)
Subscribers (4283)
Keyfactor is the leader in cloud-first PKI as-a-Service and crypto-agility solutions. Our Crypto-Agility Platform empowers security teams to find, control, and automate every machine identity with Keyfactor. We help our customers apply cryptography in the right way from modern, multi-cloud enterprises to complex IoT supply chains. With decades of cybersecurity experience, Keyfactor is trusted by more than 500 enterprises across the globe.