- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
4 Get requests = 3 Domain admins: CyberArk magic you didn’t know about | SO-CON 26
Speaker: Marat Nigmatullin
CyberArk Privilege Access Management is a powerful tool for protecting privileged accounts, but what happens when its configuration and permissions are less than ideal? In this talk, we'll dive deep into the inner workings of CyberArk's Privileged Vault Web Access (PVWA) and Central Credential Provider (CCP) components, uncovering how misconfigurations and overlooked permissions can lead to unexpected and potentially dangerous consequences.
We'll demonstrate how the CCP REST API can be abused to extract credentials from CyberArk vaults, enabling privilege escalation in just a few simple steps. Additionally, we'll explore key concepts related to CyberArk's PVWA vault access controls, the integration of CCP into PVWA, and how specific configurations can be exploited to compromise credentials.
Slides: https://github.com/SpecterOps/presentations/tree/main/SO-CON%202026/Marat%20Nigmatullin%20-%204%20Get%20requests%20%3D%203%20Domain%20admins%20CyberArk%20magic%20you%20didn%E2%80%99t%20know%20about
SO-CON: https://specterops.io/so-con/
Видео 4 Get requests = 3 Domain admins: CyberArk magic you didn’t know about | SO-CON 26 канала SpecterOps
CyberArk Privilege Access Management is a powerful tool for protecting privileged accounts, but what happens when its configuration and permissions are less than ideal? In this talk, we'll dive deep into the inner workings of CyberArk's Privileged Vault Web Access (PVWA) and Central Credential Provider (CCP) components, uncovering how misconfigurations and overlooked permissions can lead to unexpected and potentially dangerous consequences.
We'll demonstrate how the CCP REST API can be abused to extract credentials from CyberArk vaults, enabling privilege escalation in just a few simple steps. Additionally, we'll explore key concepts related to CyberArk's PVWA vault access controls, the integration of CCP into PVWA, and how specific configurations can be exploited to compromise credentials.
Slides: https://github.com/SpecterOps/presentations/tree/main/SO-CON%202026/Marat%20Nigmatullin%20-%204%20Get%20requests%20%3D%203%20Domain%20admins%20CyberArk%20magic%20you%20didn%E2%80%99t%20know%20about
SO-CON: https://specterops.io/so-con/
Видео 4 Get requests = 3 Domain admins: CyberArk magic you didn’t know about | SO-CON 26 канала SpecterOps
Комментарии отсутствуют
Информация о видео
4 июня 2026 г. 21:28:55
00:45:30
Другие видео канала
Curious about our hiring process?
![The BloodHound Enterprise State of Attack Path Management - Justin Kohler [SO-CON 2024]](https://i.ytimg.com/vi/mm5LU3cX6IU/default.jpg)
The BloodHound Enterprise State of Attack Path Management - Justin Kohler [SO-CON 2024]
Less Praying More Relaying - Identifying EPA Enforcement for Multiple Protocols
The Certificate Strikes Back: ADCS's Path to Azure | SO-CON 2025
Mastering Mythic doesn't have to be complicated. #shorts #cybersecurity
Not Just Cookies: Modern Session Abuse | SO-CON 26
Operationalizing BloodHound's Attack Graph for Defense
BloodHound Live: Monthly Release Recap (Jan. 2025)
Introduction to Attack Path Management
Defining the Undefined: What is Tier Zero, Part 4
AnsibleHound: Attack Path Management applied to Ansible | SO-CON 26
Defending Your Gold
Detecting Configuration Manager Attack Paths | SO-CON 2025
PSConf 2017: Catch Me If You Can
Security Distilled: Building a First-Principles Approach to Security
Tiers for Fears: How Every Attacker Wants to Rule Your World | SO-CON 26
Don't miss "Project Apeman: Mapping AWS Identity Attack Paths" @ SO-CON 2024! #shorts #cybersecurity
Mythic for Developers – C2 Profile Definitions
🎥 Revisit your favorite #SOCON2025 talks! #shorts #infosec #cybersecurity
Nobody Puts BloodHound in a Corner: Infusing APM into Your Identity Protection Strategy | SO-CON 26
The Unintended Risks of Trusting Active Directory
