Privilege Escalation Exploit Leads to Active Directory Domain Takeover

Today, an exploitation of excessive privilege chains allowed the compromise of an Active Directory service account, followed by a domain takeover using the ESC9 ADCS technique. This attack, detailed by HackTheBox, demonstrates how misconfigured permissions can be exploited to gain full access to the domain. The ESC9 ADCS technique is particularly effective in this context, allowing attackers to deeply infiltrate the infrastructure.