Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: LDAP Pentest
From: Walter Williams <wbjw () comcast net>
Date: Wed, 22 Sep 2004 23:50:42 -0400

LDAP Browser from Softterra is only free for a read only version.  If
you want a free GUI interface, use jxplorer.  Otherwise Sun has some
really nice tools in their SunOne Resource kit.  I recommend the 5.1
version which has a nice TCL ldap shell called ilash (a hold out from
their innosoft days)

Walt

Anders Thulin wrote:
andre lista wrote:

I would like to know if there is any tools or other related material that could
help me on one LDAP directory pentest.


  A useful tool for LDAP in general is the free LDAP browser from
Softerra (www.ldapbrowser.com).

  As for finding tools, how about www.securityfocus.com/swsearch and
then try 'ldap' in the 'tools' category?  I don't find bf_ldap there,
but THC-Hydra certainly is.

  For vulnerabilities and possibly exploits, try the 'vulns' category.




------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault