pingcastle Increase points for "Check if authentication certificate templates allow users to control the subject" ?

Increase points for "Check if authentication certificate templates allow users to control the subject" ?

Open ruppde opened this issue 3 months ago • 1 comments

The check for "Check if authentication certificate templates allow users to control the subject" is valued with just 15 points, but might result in a straight domain takeover from any normal user using certipy/certify. Compared to many other checks, I would give that more points, e.g. 50.

Mar 07 '24 11:03 ruppde

pingcastle pingcastle copied to clipboard

Increase points for "Check if authentication certificate templates allow users to control the subject" ?

pingcastle
pingcastle copied to clipboard