The Cyber Threat Perspective

Episode 57: Find and FIX AD CS Vulnerabilities Using Locksmith with Jake and Sam

Sep 6, 2023

Jake Hildreth, the creator of the Locksmith tool, and Sam Erde, an IT veteran specializing in Microsoft technologies, discuss the critical role of Active Directory Certificate Services (AD CS) security. They delve into the inception of Locksmith, highlighting its unique features for identifying and fixing misconfigurations. The conversation is filled with personal anecdotes reflecting on their IT journeys and the importance of mentorship. They also share proactive strategies for enhancing organizational security, making this a treasure trove for cybersecurity enthusiasts.

38:29

Episode guests

Sam Erde

Jake Hildreth

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Locksmith is crucial for identifying and fixing Active Directory Certificate Services misconfigurations, particularly the common ESC vulnerabilities that threaten security.

Personal narratives from Jake and Sam highlight the importance of early technological engagement and mentorship in shaping careers in IT and cybersecurity.

Deep dives

Introduction to Locksmith and Active Directory Security

Locksmith is a tool developed to enhance Active Directory Certificate Services (ADCS) security. The need for improved security arose from the complexities of managing ADCS, which often intimidates administrators due to its intricate configurations and potential vulnerabilities. The podcast features insights from two experts, Jake and Sam, who emphasize the importance of understanding both the operational and security aspects of ADCS. Their experiences highlight the growing need for proactive measures in hardening AD environments and the role that Locksmith plays in facilitating this security process.

Intro

2min

Journeys in IT: From Childhood to Careers

10min

Enhancing AD CS Security: Tools and Insights

19min

Proactive Strategies for Securing IT Environments

6min

Engaging Discussions on Cybersecurity and Future Topics

2min

In this episode we talk all about Active Directory Certificate Services and a free tool designed to help find and fix AD CS misconfigurations called Locksmith. Jake Hildreth (Mastodon: @horse@infosec.exchange) the creator of Locksmith together with Sam Erde (Twitter: @SamErde) and myself (who are contributors to the project) chat about the inception of Locksmith and some of the awesome features, such as remediation snippets.

Invoke-Locksmith today!
https://github.com/TrimarcJake/Locksmith

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

The Cyber Threat Perspective

Episode 57: Find and FIX AD CS Vulnerabilities Using Locksmith with Jake and Sam

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Introduction to Locksmith and Active Directory Security

The Personal Journeys into IT

Common ADCS Misconfigurations

Best Practices for Hardening ADCS

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

The Cyber Threat Perspective

Episode 57: Find and FIX AD CS Vulnerabilities Using Locksmith with Jake and Sam

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Introduction to Locksmith and Active Directory Security

The Personal Journeys into IT

Common ADCS Misconfigurations

Best Practices for Hardening ADCS

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights