Skip to content
/ rESC13 Public

An enumeration tool for ADCS. It searches Certificate Templates that contain Issuance Policies with group links by querying a Domain LDAP server.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Business1sg00d/rESC13

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 

Repository files navigation

References the following article: https://posts.specterops.io/adcs-esc13-abuse-technique-fda4272fbd53.

Build docker container then run:

docker run --network host -di image

Simple bind usage:

./target/debug/ldap_rust -i 172.16.0.6 -u "CN=bruhurb,CN=Users,DC=fed,DC=local" -p "MyPassword123!!!" -d "DC=fed,DC=local"

Kerberos usage:

KRB5CCNAME=bruhurb\@dc02.fed.local.ccache ./target/debug/ldap_rust -k -i dc02.fed.local -d "DC=fed,DC=local"

Make sure to configure your /etc/krb5.conf file with the desired realm(s).

About

An enumeration tool for ADCS. It searches Certificate Templates that contain Issuance Policies with group links by querying a Domain LDAP server.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages