Automic VaultAutomic Vault

brew

Install certsync with Homebrew, MacPorts, Nix

Dump NTDS with golden certificates and UnPAC the hash. Version 0.1.6 via Homebrew; verified 2026-05-20.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install certsync

local Homebrew formula metadata

MacPortsverified · 94%
sudo port install certsync

MacPorts ports tree · security/certsync/Portfile · source: api.github.com

Linux

Nixverified · 92%
nix profile install nixpkgs#certsync

nixpkgs package indexes · pkgs/by-name/ce/certsync/package.nix · source: api.github.com

overview

Package summary

Dump NTDS with golden certificates and UnPAC the hash

Commands and aliases

  • certsync

history

Project history and usage

certsync is an Active Directory Certificate Services attack tool for remotely dumping NTDS data without DRSUAPI. Its README describes a workflow based on golden certificates and UnPAC the hash.

Project history

The upstream GitHub repository was created in January 2023, with the first commit on the same day. A 0.1.6 GitHub release followed in March 2024, and the project is published as a Python package as well as source.

Adoption history

The README documents local installation, PyPI installation, and BlackArch packaging, and links a Repology packaging-status badge. The supplied package facts also list Homebrew, MacPorts, and Nix packages.

How it is used

certsync collects users, CA information, and CRLs over LDAP, dumps the CA certificate and private key or uses a supplied CA PFX, forges certificates, and uses PKINIT plus UnPAC to recover hashes. Its options cover password, NTLM hash, Kerberos cache, AES key, DNS, LDAP filtering, and OPSEC timing controls.

Why package nerds care

certsync is package-nerd interesting because it represents the fast path from a newly described ADCS tradecraft technique to broad packaging in security distributions and general package managers. It is niche, but package presence makes lab and assessment reproduction much easier.

Timeline

  • 2023: Public GitHub repository and first commit created.
  • 2024: 0.1.6 release published.

Related projects

  • The README credits Certipy, the UnPAC the hash technique, Certified Pre-Owned, Certify, and GOAD as related research or lab projects.

security posture

No protected-tool coverage found yet

No matching local secret-handling manifest was found for certsync. Nucleus package metadata is still published here so future coverage has a stable package URL.

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Installs with 3 runtime dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
certsynccliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-10
manager version0.1.6
manager updated2026-05-20
local dataok
upstreamnot checked
latest detectednot detected

https://github.com/zblurx/certsync

install metadata

Package metadata

Package keybrew:certsync
Version0.1.6
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/certsync
Homepagehttps://github.com/zblurx/certsync
Repositoryhttps://github.com/zblurx/certsync
Upstream docshttps://github.com/zblurx/certsync#readme
LicenseMIT
Source archivehttps://files.pythonhosted.org/packages/c8/75/3928920bdbfb0af317446236fad17b47a1d6aad507f1ae2eed6bbf7e7ad9/certsync-0.1.6.tar.gz
Last updated2026-05-20T11:47:05Z
Pulseupdated
Dependenciescertifi, cryptography, python@3.14
Uses from macOSlibffi
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namecertsync
Version Scheme0
Revision10
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Nix95%

certsync

nix profile install nixpkgs#certsync
  • normalized package name match
  • Matched by: Certsync
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/ce/certsync/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
MacPorts95%

certsync

sudo port install certsync
  • normalized package name match
  • Matched by: Certsync
MacPorts ports tree · api.github.com · MacPorts ports tree: security/certsync/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment