Phil Knüfer
Phil is a Senior Security Consultant and head of the IT Security team at DigiTrace GmbH. He started his IT security studies in 2010 at Ruhr University Bochum and has been working full-time in this field since 2016.
His focus is on internal infrastructure penetration tests and security consulting, with the occasional IT forensics project in between.
While Phil is an avid user of open source technology, he soon realized that most company networks are built around Active Directory, making him realize that even a basement child cannot live without Windows.
Session
The Active Directory Certificate Service (ADCS) has been studied extensively, which lead to an entire category of privilege escalation techniques: the ESC attacks.
We combined known research about attacks on ADCS and the Windows Server Update Service (WSUS) to compromise Windows machines in supposedly "secure" environments.
As this technique can be generalized, we decided to introduce the new escalation number ESC17.