pingcastle
pingcastle copied to clipboard
Increase points for "Check if authentication certificate templates allow users to control the subject" ?
The check for "Check if authentication certificate templates allow users to control the subject" is valued with just 15 points, but might result in a straight domain takeover from any normal user using certipy/certify. Compared to many other checks, I would give that more points, e.g. 50.