https://0xjs.github.io/0xjs, Jony Schats his webpage to post Pentesting / RedTeaming content, blogs etc. 2025-08-21T14:42:47+02:00 Jony Schats https://0xjs.github.io/ Jekyll © 2025 Jony Schats /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2023-08-24T15:30:00+02:00 2025-08-21T14:42:24+02:00 https://0xjs.github.io/posts/CESP-review/ jony

Introduction Altered Security released the new course Certified Enterprise Security Professional – AD CS (CESP). This course is pureply focussed on Active Directory Certificate Services (ADCS). It is required to have basic Active Directory(AD) knowledge before starting the course (CRTP level). I have a decent amount of knowledge about AD, but I never played with ADCS and my knowledge was limite...

2022-12-18T20:35:00+01:00 2025-08-21T14:42:24+02:00 https://0xjs.github.io/posts/Identifying-highly-privileged-identities-and-checking-MFA-status/ jony

Introduction This is the fourth blog in the series. If you haven’t read the previous blog you can find it here. In the previous blogs we discussed the different types of identities and how we can find high privileged identities. In those blogs PowerShell cmdlets were created which helped querying these different types of identities. In this blog everything will be tied together into one cmdlet ...

2022-11-28T20:12:00+01:00 2025-08-21T14:42:24+02:00 https://0xjs.github.io/posts/Service-principals-did-you-know-they-can-have-owners-too/ jony

Introduction This is the third blog in the series. If you haven’t read the first or second blog I recommend reading them. In the previous blogpost we focussed on retrieving group owners and that they should be considered as high privileged users if the group he owns is member of a high privileged role. In this blogpost we will have a look at Service Principals and they can have owners too! Ser...

2022-11-25T17:44:00+01:00 2025-08-21T14:42:24+02:00 https://0xjs.github.io/posts/PentesterAcademy-PACES-review/ jony

Introduction I just passed the PentesterAcademy Certified Enterprise Security Specialist exam. The lab and the course is made by PentesterAcademy and is known as the Global Central Bank(GCB). It is the biggest red teaming Active Directory lab they offer. The material The GCB course consists out of nine videos with a total length of 3 hours. The video’s covers topics such as: PAM Trusts L...

2022-11-15T19:40:00+01:00 2025-08-21T14:42:24+02:00 https://0xjs.github.io/posts/Do-you-check-for-group-owners-of-privileged-roles/ jony

Introduction This is the second blog in the series. If you havent read the first one you can find it here. In the previous blogpost we focussed on retrieving userobjects from groups and roles and created a PowerShell cmdlet to get a overview of the users of 14 privileged roles. The created PowerShell cmdlet Get-AzureADPrivilegedRolesMembers searches recursivly through all these roles and return...