Certify 2.0

This blogpost describes Certify 2.0 — an updated AD CS offensive tool — and documents new enumeration, template and CA management, certificate forging and renewal features that support exploiting multiple AD CS escalation techniques (ESC4/7/11/13/15/16). The author explains usability improvements, new template/CA attributes and filters, commands for managing templates and CAs, support for application policies and SAN types, and an expanded abuse scenario for the "Issue and Manage Certificates" (Manage Certificates) role that enables additional privilege escalation paths.