Home page logo

pen-test logo Penetration Testing mailing list archives

Re: LDAP Pentest
From: Walter Williams <wbjw () comcast net>
Date: Wed, 22 Sep 2004 23:50:42 -0400

LDAP Browser from Softterra is only free for a read only version.  If
you want a free GUI interface, use jxplorer.  Otherwise Sun has some
really nice tools in their SunOne Resource kit.  I recommend the 5.1
version which has a nice TCL ldap shell called ilash (a hold out from
their innosoft days)


Anders Thulin wrote:
andre lista wrote:

I would like to know if there is any tools or other related material that could
help me on one LDAP directory pentest.

  A useful tool for LDAP in general is the free LDAP browser from
Softerra (www.ldapbrowser.com).

  As for finding tools, how about www.securityfocus.com/swsearch and
then try 'ldap' in the 'tools' category?  I don't find bf_ldap there,
but THC-Hydra certainly is.

  For vulnerabilities and possibly exploits, try the 'vulns' category.

Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]