ADCS Certified Enterprise Security Professional
HomeAuthor
  • CESP Certification
  • 🔥RFS Methodology
    • Pwning
  • 1️⃣ Learn AD CS (Module 1)
    • Active Directory Certificate Services (AD CS)
    • 🟢AD CS Components
    • 🟢Certificate Formats
    • Certificate Attributes
    • Containers in AD
  • 2️⃣ AD CS Attacks (Module 2)
    • Attack
    • Prevention
    • Detection
  • 3️⃣ Basics of AD CS Attacks (Module 3)
    • Tools
    • AV Bypass
    • Payload Delivery
    • 🟢Bypass PowerShell Logging
    • WinRS
    • 🟢Certificate Management
    • 🟢Pass the Cert
    • 🟢UnPAC the Hash
    • 🟢S4U2Self Attack
  • 4️⃣ AD CS Patches (Module 4)
    • 🟢CBA patch
    • 🟢ADCS SID Extension Policy Module
  • 5️⃣ AD CS Enumeration (Module 5)
    • 🥰Methodology
    • Tools
    • 🟢CAs Info
    • Groups
    • Extract the Private Key
  • 6️⃣ AD CS Local Privilege Escalation (Module 6)
    • 🟢CertPotato
    • 🟢ESC1 – Understand the Arbitrary Subject Alternative Name Vulnerability
  • AD CS Domain Privilege Escalation
    • Page 3
  • AD CS Pivoting and Lateral Movement
    • Page 4
  • AD CS Theft and Collection
    • Page 5
  • AD CS Local and Domain Persistence
    • Page 6
  • Abusing Cross Forest and External Trusted CAs
    • Page 7
  • Abusing Azure CBA for Lateral Movement and Persistence on Cloud
    • Page 8
  • Evasion and Bypasses
    • Page 9
  • Group 1
    • Page 2
Powered by GitBook
On this page

Was this helpful?

  1. 1️⃣ Learn AD CS (Module 1)

AD CS Components

Active Directory Certificate Services (AD CS) is a critical component of public key infrastructure (PKI), providing customizable services for creating and managing digital certificates.

Key components include:

  • Certificate Templates: Predefined blueprints for certificate creation, allowing customization of settings and policies per organizational needs.

  • Certificate Enrollment Web Service (CES): Offers a secure, web-based method to request and retrieve certificates, enabling users and devices not part of the domain to enroll.

  • Certificate Enrollment Policy Web Service: Serves policies to clients, aiding in the automation of certificate enrollment by providing available certificate types and requirements.

  • CA Web Enrollment: A web interface that allows users to request certificates via a browser, simplifying the certificate enrollment process for various scenarios.

  • Network Device Enrollment Services (NDES): Provides a mechanism for routers and other network devices to obtain certificates, crucial for scenarios where manual enrollment is impractical or impossible.

PreviousActive Directory Certificate Services (AD CS)NextCertificate Formats

Last updated 1 year ago

Was this helpful?

🟢