Lucene search
K

4 matches found

Rapid7 Blog
Rapid7 Blog
added 2025/01/31 9:34 p.m.25 views

Metasploit Weekly Wrap-Up 01/31/25

ESC4 Detection This week, Metasploit’s jheysel-r7 updated the existing ldapescvulnerablecertfinder module to include detecting template objects that can be written to by the authenticated user. This means the module can now identify instances of ESC4 from the perspective of the account that the...

9.3CVSS7.7AI score0.97446EPSS
Exploits9
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.151 views

AD CS Certificate Template Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AD CS Certificate Template Management', 'Description' = %q This module can create, read, update, and delete AD CS certificate templates from a...

7.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/06/02 4:20 p.m.48 views

Metasploit Weekly Wrap-Up

AD CS certificate templates Our very own Spencer McIntyre has developed a new module that allows for creating, reading, updating and deleting certificate template objects from Active Directory. ESC4 Exploitation These changes notably enables the exploitation of the technique identified as ESC4...

4.3CVSS6.9AI score0.55367EPSS
Exploits20
Metasploit
Metasploit
added 2023/05/22 7:50 p.m.785 views

AD CS Certificate Template Management

This module can create, read, update, and delete AD CS certificate templates from a Active Directory Domain Controller. The READ, UPDATE, and DELETE actions will write a copy of the certificate template to disk that can be restored using the CREATE or UPDATE actions. The CREATE and UPDATE actions...

5.4AI score
Exploits0
Rows per page
Query Builder