Certipy

Certipy is a tool used to identify and exploit vulnerabilities in Active Directory Certificate Services (AD CS). It allows penetration testers to audit AD CS environments for misconfigurations or weak permissions that can be leveraged for privilege escalation or lateral movement. Certipy can perform tasks such as certificate enumeration, requesting certificates, and abusing certificate-based authentication to impersonate users or escalate privileges. This makes it an essential tool for understanding the security of certificate-based authentication in Active Directory environments.