AS2Go | Run – Herr HoZi

AS2Go | How one certificate template misconfiguration (ESC1) can lead to complete Active Directory (AD) forest compromise

September 9, 2023October 8, 2024Herr HoZi1 Comment

This post explains how to execute an ESC1 attack using AS2Go v2.9.

In three out of four Active Directory Security Assessments (ADSA), my colleagues and I identified vulnerabilities in Active Directory Certificate Services (ADCS). Most issues stem from certificate templates that, by default, are secure but become vulnerable due to human misconfigurations.

This discovery prompted me to enhance my script, “Attack Scenario To Go” (AS2Go), by adding a new privilege escalation method and creating this corresponding blog post.

Continue reading →

AS2Go | Prepare & Test the Ransomware Attack

February 18, 2022December 1, 2022Herr HoZi1 Comment

This post describes how to prepare the Victim PC for the attack scenario, to simulate an ransomware attack against the domain controller.

Assuming you already finished lab setup 3/3 | Victim PC⬈ you have to do the following steps on your Victim PC.

download files from GitHub to c:\temp\AS2Go
optional create an creates a self-signed certificate

Continue reading →

AS2Go | Run over PtH & PtT Attack

January 7, 2022December 1, 2022Herr HoZi2 Comments

This post describes how to handle AS2Go to run the attack!

Assuming you finished the attack preparation.

The attack runs step-by-step alone the cyber kill-chain and covers the following attack stages:

Continue reading →