Jonas Bülow Knudsen
Jonas Bülow Knudsen
## Description Support for ADCS ESC16 attacks. ESC16 is a certificate-based attack path that allows attackers to impersonate any domain user or computer by exploiting misconfigured Enterprise Certificate Authorities. This...
## Description Coverage of the ADCS ESC11 attack paths. ESC11 attacks exploit misconfigured Enterprise Certificate Authorities that allow inbound relay attacks and impersonation of any domain principal. This PR implements:...
## Description Collection of additional CA reg key value (RPC encryption enforcement) ## Motivation and Context This change is required for ADCS ESC11 coverage. Corresponding SHC PR: https://github.com/SpecterOps/SharpHoundCommon/pull/239 Corresponding BHCE...
## Description The corresponding PR for this commonlib PR: https://github.com/SpecterOps/SharpHoundCommon/pull/236 ## Motivation and Context See commonlib PR. ## How Has This Been Tested? Locally. ## Types of changes - [...
## Description Collection of two new ACL permissions: - WriteAltSecurityIdentities - WritePublicInformation ## Motivation and Context Tickets: BED-6155 ## How Has This Been Tested? Locally in lab environment. ## Types...
## Description Collection of additional CA reg key value (RPC encryption enforcement) ## Motivation and Context This change is required for ADCS ESC11 coverage. Corresponding BHCE PR: https://github.com/SpecterOps/BloodHound/pull/1679 Resolves BED-6182...
## Description Collection of CA registry key DisabledExtensions for ADCS ESC16 edge Also updates the collection of CA reg key setting `IsUserSpecifiesSanEnabled` to support custom reg key paths. ## Motivation...