Certifried

When you have credentials:

certipy req -u 'user@domain.com' -p 'password' -dc-ip 10.10.10.dc -target 'CA01.domain.com' -ca 'CA-01' -template 'User'

When it grabs the PFX, it should say SID is …

If it doesn’t, then it is vulnerable to Certifried