Home page logo

pen-test logo Penetration Testing mailing list archives

Re: LDAP + Active Directory
From: "Adrien de Beaupre" <adrien.debeaupre () elytra com>
Date: Mon, 15 Oct 2001 22:15:08 -0400

If you are using Win2k Professional LDP.EXE from the resource kit
is a simple but functional LDAP client.
Construct queries, playing around will often reveal a lot.

ld = ldap_open("victim-server", 389);
ldap_search_s(ld, "dc=victim,dc=com", 2, "cn=*", attrList,  0, &msg)
ldap_search_s(ld, "dc=victim,dc=com", 0, "objectclass=*", attrList,  0,
ldap_search_s(ld, "dc=victim,dc=com", 2, "name=*", attrList,  0, &msg)
Expanding base 'dc=victim,dc=com'...

Adrien de Beaupré,  CISSP, GCIH, MCSE
IT Security Specialist
Elytra Enterprises Inc.
----- Original Message -----

 LDAP uses an anonymous access for reading the tree, so if using a
browser you type:


you should see all the tree, including the ACI´s

port is usually # 389
and the machine.com must be the FQN.

hope this help

This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]