Certipy

Active Directory Certificate Services (AD CS) is Microsoft's on-premises Public Key Infrastructure (PKI) solution for is…

This wiki assumes you're familiar with fundamental Active Directory (AD) concepts. Before exploring attack techniques, i…

This page presents a curated selection of key resources related to AD CS security. The resources are organized into thre…

Certipy is a Python tool that supports Python 3.12+ and runs on both Linux and Windows. The tool is distributed via pip …

Certipy is a command-line tool with a modular structure. The basic invocation is: certipy [ global options ] <command…

Misconfigurations in AD CS can allow a low-privileged user to escalate privileges in Active Directory, often up to Domai…

Once an attacker has escalated privileges, successfully executed initial attacks, or otherwise acquired sufficient contr…

This section serves as a quick reference for Certipy's commands, summarizing their purpose and usage. Use this as a chea…

👋 Welcome to the Certipy Wiki This wiki is your guide to abusing Active Directory Certificate Services (AD CS) with Cert…