Abusing Active Directory Certificate Services with Certipy: From Initial Access to Beyond Root

2025-12-30 4 min read Active Directory Pentesting Certificate Security

This post covers an alternative attack path in an Active Directory lab using AD CS misconfigurations. It walks through Certipy-based enumeration, certificate abuse, domain escalation, and advanced post-compromise recon beyond Domain Admin. Continue reading

Building and Breaking a Vulnerable Active Directory Lab: Full Exploitation Walkthrough

2025-12-29 4 min read Active Directory Pentesting Labs

This post shows how to build a vulnerable Active Directory lab and then exploit it step by step, with real commands, real attack paths, and real lessons. Continue reading

Golden Ticket Attack: Exploiting Kerberos from Linux

2025-10-30 3 min read Cybersecurity Penetration Testing Windows Exploitation

Explore how to execute a full Golden Ticket attack on Active Directory using Linux tools. Includes practical, field-proven Impacket command examples and focuses on technical accuracy for red team and security professionals. Continue reading

GOAD_Provisioning_ActiveDirectory

2025-03-02 8 min read Active Directory AD Ethical Hacking Windows

Today we will talk about GOAD, from its creators:

GOAD is a pentest active directory LAB project. The purpose of this lab is to give pentesters a vulnerable Active directory environment ready to use to practice usual attack techniques.

This lab is extremely vulnerable, do not reuse recipe to build your environment and do not deploy this environment on internet without isolation (this is a recommendation, use it as your own risk). This repository was build for pentest practice.
Continue reading