The Cyber Threat Perspective Episode 154: Pentesting on a Budget for IT Admins
Oct 24, 2025
Dive into practical pentesting tips for IT admins on a budget. Discover essential free tools like Pink Castle and Locksmith to identify vulnerabilities in Active Directory. Spencer shares effective methodologies to detect low-hanging fruits in Windows security. Learn how to prioritize findings based on impact and remediation costs. Get insights on tracking security improvements and fixing insecure delegations. Finally, explore additional resources and community wikis to further enhance your skills and tools.
AI Snips
Chapters
Transcript
Episode notes
Start With Broad AD Scanners
- Run Pink Castle and Purple Knight first to cast a wide net across Active Directory and hygiene issues.
- Use their 180+ checks to quickly find certificate, GPO, account, and KRBTGT rotation problems.
Scan AD Certificate Templates
- Run Locksmith to uncover Active Directory Certificate Services misconfigurations and dangerous template permissions.
- Prioritize fixing templates that allow unintended user enrollment or privilege escalation.
Find Unsafe Delegations
- Use Adeleg and Adeleganator to find non-default delegated permissions that grant unsafe groups elevated rights.
- Remove dangerous delegations that give domain users or other low-privilege groups control over privileged objects.