PassTheCert
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
Install / Use
/learn @AlmondOffSec/PassTheCertREADME
PassTheCert
Sometimes, Domain Controllers do not support PKINIT. This can be because their
certificates do not have the Smart Card Logon EKU. However, several
protocols, including LDAP, support Schannel, thus authentication through TLS.
We created a small Proof-of-Concept tool that allows authenticating against an
LDAP/S server with a certificate to perform different attack actions.
More information in the accompanying blog post.
This repository contains a C# version, by the-useless-one, and a Python version, by ThePirateWhoSmellsOfSunflowers / drm (@lowercase_drm)
Related Skills
node-connect
329.0kDiagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps
frontend-design
81.1kCreate distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.
openai-whisper-api
329.0kTranscribe audio via OpenAI Audio Transcriptions API (Whisper).
commit-push-pr
81.1kCommit, push, and open a PR
