exploiting-active-directory-certificate-services-esc1

This skill is not covert malware, but it is a high-risk offensive security skill. Its capabilities are consistent with its stated red-team purpose, yet that purpose is to weaponize AD CS misconfigurations for privilege escalation, ticket abuse, and credential dumping; such functionality is inherently dangerous for an AI agent and unsuitable outside tightly controlled authorized environments.

This is an explicit exploitation playbook describing how to abuse AD CS (ESC1) misconfigurations to obtain privileged domain credentials and perform DCSync/credential dumping. It is actionable and high-risk if used against production environments. Use of these steps constitutes offensive activity unless performed under authorized testing. Recommend treating packages or automation implementing these steps as malicious or high-risk in untrusted contexts and only use in authorized labs with consent.