Certify

Overview

Certify is a C# tool designed to enumerate and abuse misconfigurations in Active Directory Certificate Services (AD CS). It's part of the GhostPack suite of tools and is widely used for both offensive security testing and defensive auditing of AD CS infrastructures.

GitHub Documentation

Key Features

Enumerate AD CS certificate templates
Identify vulnerable certificate templates
Abuse misconfigured certificate templates
Request and retrieve certificates
Perform various AD CS attacks (e.g., ESC1, ESC2, ESC3)

Usage Example

Here's a basic example of how to use Certify to find vulnerable certificate templates:

Certify.exe find /vulnerable

This command will search for and display any vulnerable certificate templates in the AD CS environment.