Explore the security implications of Microsoft's Active Directory Certificate Services (AD CS) in this Black Hat conference talk. Delve into the often-overlooked aspects of AD CS, including its potential for credential theft, machine persistence, domain escalation, and subtle domain persistence. Learn about certificate request processes, client authentication methods, and malicious certificate enrollments. Discover escalation scenarios, NTLM relay attacks, and golden certificate techniques. Gain insights into defensive strategies, including how to protect and audit AD CS implementations. Understand high-level architecture guidance and incident response procedures for AD CS-related security issues. Equip yourself with hunting techniques to identify and mitigate potential threats in your AD CS environment.