From 339536934763b4568a8c46e81b96230db267a6da Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Wed, 18 Aug 2021 14:04:09 +0700
Subject: [PATCH] Add: eloypgz/certi to Privilege Escalation section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index ce094cd..8f99b50 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -817,6 +817,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/eladshamir/Whisker">eladshamir/Whisker</a></td>
         <td>Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/eloypgz/certi">eloypgz/certi</a></td>
+        <td>Utility to play with ADCS, allows to request tickets and collect information about related objects. Basically, it's the impacket copy of Certify. Thanks to @harmj0y and @tifkin_ for its great work with ADCS.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/GhostPack/ForgeCert">GhostPack/ForgeCert</a></td>
         <td>ForgeCert uses the BouncyCastle C# API and a stolen Certificate Authority (CA) certificate + private key to forge certificates for arbitrary users capable of authentication to Active Directory.</td>