Certify is a C# tool part of the GhostPack suite. It's designed to enumerate and abuse misconfigurations in Active Directory Certificate Services (AD CS). Certify can be used to find vulnerable certificate templates and request certificates that can be used for privilege escalation.

• Enumerate AD CS certificate templates
• Identify vulnerable certificate templates
• Request certificates for privilege escalation
• Supports various output formats

certify.exe find /vulnerable