PKI Meets Red Team: Revealing Common Microsoft AD CS Misconfigurations

Logo
Presented by

Ted Shorter, CTO, Chris Hickman, CSO, Lee Christensen, Technical Architect, & Will Schroeder, Technical Architect

About this talk

Microsoft Active Directory (AD) PKI is widely used by enterprises today, yet it has largely flown under the radar of attackers and defenders – until now. Recent research by SpecterOps reveals common user misconfigurations in AD CS that, if left unchecked, create serious security blindspots that attackers can abuse for credential theft, domain escalation, and persistence. Join leading Red Team & PKI Experts from SpecterOps and Keyfactor as they discuss the findings of the report, “Certified Pre-Owned: Abusing Active Directory Certificate Services.” In this discussion, they’ll cover: -What AD CS is and how it works -Common AD CS misconfigurations -PKI architecture and implementation flaws -Defensive advice and best practices to mitigate attacks
Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (163)
Subscribers (10049)
Keyfactor is the machine and IoT identity platform for modern enterprises. The company helps security teams manage cryptography as critical infrastructure by simplifying PKI, automating certificate lifecycle management, and enabling crypto-agility at scale. Companies trust Keyfactor to secure every digital key and certificate for multi-cloud enterprises, DevOps, and embedded IoT security.