Mastering Active Directory Certificate Services (ADCS): NTLM Relay & Petitpotam Attacks Explained

Welcome to Redfox Security! In this deep-dive tutorial, we explore two of the most critical attack vectors targeting Active Directory Certificate Services (ADCS)—NTLM Relay and PetitPotam. These techniques have been used in real-world attacks to gain unauthorized access, escalate privileges, and compromise entire Windows environments. Whether you're a cybersecurity professional, student, or just passionate about Windows security, this video will give you the knowledge and hands-on insight you need. What You’ll Learn: ✓ ADCS Overview – Understand what ADCS is, its components, and its role in Windows-based PKI environments. ✓ NTLM Relay Attacks – See how NTLM relay vulnerabilities are used to target and abuse certificate services. ✓ PetitPotam Exploit – Learn how this attack forces machine authentication to escalate access within ADCS. ✓ Live Demonstration – Watch real-time execution of both attack chains, including setup, exploitation, and impact analysis. ✓ Defense Tactics – Get practical mitigation strategies and configuration tips to secure your ADCS infrastructure. Key Takeaways: ✓ Clear understanding of how ADCS can be compromised ✓ Step-by-step demonstrations of NTLM Relay and PetitPotam ✓ Real-world mitigation strategies and hardening tips Time Stamps: 0:00 Intro 03:57 ADCS Basics 08:56 NTLM Relay Attack 10:46 PetitPotam Attack 14:35 ESC8 Theory 23:11 ESC8 Practical 56:16 ESC8 Prevention 01:01:16 Conclusion Launch your cybersecurity career with our expert-led training: https://academy.redfoxsec.com/ Join the Redfox Security community: https://linktr.ee/redfoxsec Powered by Redfox Cyber Security Pvt. Ltd. Important Note: This video is for educational purposes only. It demonstrates ethical hacking techniques in authorized, controlled environments. Using these methods without documented consent is prohibited and unethical. Disclaimer: Redfox Security is not responsible for any misuse or unauthorized actions by viewers. Who Are We? Redfox Security is a global penetration testing firm with over ten years of cybersecurity experience. We help businesses, from startups to large corporations, protect against threats. Our expert team provides top-tier security consulting services across four countries, dedicated to ensuring your business grows securely. Website: https://redfoxsec.com LinkedIn:   / redfoxsec   Facebook:   / redfoxsec   Instagram:   / redfoxcybersecurity   Twitter: https://x.com/redfoxsec Like, share, and subscribe for more cybersecurity tutorials and attack breakdowns. Stay informed—turn on notifications so you never miss an upload! #ActiveDirectory #ADCS #NTLMRelay #Petitpotam #Cybersecurity #PenetrationTesting #EthicalHacking #SecurityTutorial #WindowsSecurity #ITsecurity #AttackVectors #PrivilegeEscalation #NetworkSecurity #ExploitDemo #SecurityMitigation #ESC8

Deploying A Multi-Tier PKI (Public Key Infrastructure) Inside an Active Directory Domain Using ADCS
▶︎

Deploying A Multi-Tier PKI (Public Key Infrastructure) Inside an Active Directory Domain Using ADCS

Attacking ADCS Full Course
▶︎

Attacking ADCS Full Course

The Shocking Truth About ESC1, ESC2, ESC3 Attacks [Demo]
▶︎

The Shocking Truth About ESC1, ESC2, ESC3 Attacks [Demo]

DEF CON 32 - Winning the Game of Active Directory - Brandon Colley
▶︎

DEF CON 32 - Winning the Game of Active Directory - Brandon Colley

BlackAlps 2022: NTLM Relay: The Attack That Keeps On Giving by Sylvain Heiniger
▶︎

BlackAlps 2022: NTLM Relay: The Attack That Keeps On Giving by Sylvain Heiniger

Hacking Active Directory for Beginners (over 5 hours of content!)
▶︎

Hacking Active Directory for Beginners (over 5 hours of content!)

Becoming a Keymaster: Active Directory Certificate Services (ADCS) Attacks
▶︎

Becoming a Keymaster: Active Directory Certificate Services (ADCS) Attacks

Active Directory Certificate Services Install & Config in just 20mins
▶︎

Active Directory Certificate Services Install & Config in just 20mins

God Says:"THIS IS AN URGENT MESSAGE FOR YOU TODAY."/God Message Now/God Message
▶︎

God Says:"THIS IS AN URGENT MESSAGE FOR YOU TODAY."/God Message Now/God Message

Common Active Directory Attacks: Back to the Basics of Security Practices
▶︎

Common Active Directory Attacks: Back to the Basics of Security Practices

Hack Active Directory Certificate Services (ADCS) with Certipy
▶︎

Hack Active Directory Certificate Services (ADCS) with Certipy

The World's Most Important Machine
▶︎

The World's Most Important Machine

Instant Focus Mode – 40Hz Gamma Brainwave Music for Deep Focus & Productivity
▶︎

Instant Focus Mode – 40Hz Gamma Brainwave Music for Deep Focus & Productivity

ADCS ESC1 Privilege Escalation Tutorial | Attack Active Directory Certificate Services
▶︎

ADCS ESC1 Privilege Escalation Tutorial | Attack Active Directory Certificate Services

ADCS ESC8 Tutorial | Attack Active Directory Certificate Services
▶︎

ADCS ESC8 Tutorial | Attack Active Directory Certificate Services

China Is About To Pop The AI Bubble
▶︎

China Is About To Pop The AI Bubble

Hacks Weekly #60 - PetitPotam Strikes Back: From (almost) Zero to Domain Admin
▶︎

Hacks Weekly #60 - PetitPotam Strikes Back: From (almost) Zero to Domain Admin

Creator of C++: Bell Labs, Negative Overhead Abstraction, Mistakes | Bjarne Stroustrup
▶︎

Creator of C++: Bell Labs, Negative Overhead Abstraction, Mistakes | Bjarne Stroustrup

Attack and Detection of DFSCoerce and NTLM relaying ADCS attacks.
▶︎

Attack and Detection of DFSCoerce and NTLM relaying ADCS attacks.

🚀 Complete Generative AI Course | RAG, AI Agents & Deployment | Build Production-Ready AI Apps
▶︎

🚀 Complete Generative AI Course | RAG, AI Agents & Deployment | Build Production-Ready AI Apps