Oliver Lyak is an offensive security expert and researcher based in Copenhagen with six years of hands-on experience in adversarial testing, red teaming, and tooling for Windows AD environments. Currently at IFCR and contributing to ENISA's Team Europe initiative, he brings practical experience from CTF competition and open-source work to informed threat emulation. Notably, his contributions to the Certipy project include implementing PKINIT-related authentication and certificate management features that enable Active Directory Certificate Services enumeration and abuse. He combines deep protocol-level knowledge with pragmatic engineering—improving error handling, CA configuration retrieval, and security controls—to turn novel research into reliable offensive tooling.
6 years of coding experience
Gymnasium, English Language and Social Sciences, Gymnasium, English Language and Social Sciences at Ørestad Gymnasium
Tool for Active Directory Certificate Services enumeration and abuse
Role in this project:
Security Engineer
Contributions:22 releases, 66 commits, 40 PRs in 1 year 2 months
Contributions summary:Oliver primarily contributed to the `certipy` project, a tool for Active Directory Certificate Services enumeration and abuse, by implementing and refactoring core authentication logic, error handling, and certificate management features. Their work involved understanding and implementing PKINIT, which retrieves a user's NT hash with a certificate. They also updated the project with features for CA configuration retrieval. The user's contributions also involved adding security measures.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.