All technologies and systems currently use cryptography and most uses certificates at some points. Since it’s boom, internal PKI systems has not change a lot, but as well the problems that we observe during almost all pentests. It’s time to revise your knowledge about one of the cornerstones of enterprise security and learn few tricks that attackers are using to spoof any identity. What are common pitfalls and mistakes that can lead to full breach of trust and your systems? Where are hidden certificates in Windows infrastructure and who and how can use them? How Azure Information Protection, Windows Hello for Bussiness and other modern technologies rely on Certificates and their security? Brace yourself, this will be demo intense!