ad-ldap-enum icon indicating copy to clipboard operation
ad-ldap-enum copied to clipboard

Published 20 hours ago verified publisher icon CroweCybersecurity

Metadata

An LDAP based Active Directory user and group enumeration tool

Results 12 ad-ldap-enum issues
Sort by recently updated
recently updated
newest added

Switching to ldap3

This repository should consider moving to `ldap3` over `python-ldap` as ldap3 is entirely Python-based while python-ldap is Python/C. python-ldap does not work easily on Windows which causes this tool to...

Zamanry avatar Zamanry

Large Group Parsing Error

3 comment

Ran the following: `python3 ad-ldap-enum.py -l -d -u -p ` ![image](https://user-images.githubusercontent.com/11723613/118822941-96cbd000-b886-11eb-8b55-4713189aae2d.png)

3x14 avatar 3x14

Unable to Bind Output

1 comment

If the tool is unable to bind through a null/authenticated or insecure/secure LDAP connection, the tool outputs an error rather than a statement stating "Unable to bind to requested LDAP...

Zamanry avatar Zamanry

Critical extension is unavailable

1 comment

Queried our LDAP server. Got this: ldap.UNAVAILABLE_CRITICAL_EXTENSION: {'desc': 'Critical extension is unavailable'} Quick Google search turns up: http://blogs.adobe.com/apugalia/ldap-error-code-12-unavailable-critical-extension/ https://www.ca.com/us/services-support/ca-support/ca-support-online/knowledge-base-articles.tec439052.html ...commonly occurs when asking an LDAP Server to return paged results...

bill-e-ghote avatar bill-e-ghote

enhancement
help wanted

Empty results

5 comment

``` # ad-ldap-enum -d 'example.com' -l 'ldap.forumsys.com' -n ; cat ./* 2017-04-17 00:00:00 INFO Querying users 2017-04-17 00:00:00 INFO Querying groups 2017-04-17 00:00:00 INFO Querying computers 2017-04-17 00:00:00 INFO Building...

vdun avatar vdun

enhancement
help wanted

More user attributes

4 comment

Can we have a flag to pull the full list of LDAP attributes for users? I find myself wanting more information, but not sure it is worth trying to narrow...

jmmcatee avatar jmmcatee

enhancement
help wanted

Reduce Code Duplication

The methods get_password_last_set_date and get_last_logon_date are duplicating code. Calculating time-stamps should be made generic to allow for future expansion.

edepree avatar edepree

enhancement

Group Membership CSV Has Inconsistent Number of Columns

When values are not found, ad-ldap-enum sometimes outputs rows with different numbers of columns, instead of outputting a consistent number of columns with empty strings for values that aren't found....

gjhami avatar gjhami

Null Password and NTLM Hash

1 comment

On the HackTheBox machine Escape, the guest user was enabled on a DC. I attempted to authenticate using the password `''` but the tool refused to accept it as a...

Zamanry avatar Zamanry

LDAPNoSuchObjectResult

Within the HackTheBox Sauna and Forest machines, the same error occurred despite the domain being valid: ![image](https://user-images.githubusercontent.com/28152647/228113172-b65e47de-454c-453e-80ba-3e6f3a0d7e9c.png) Valid domain: - https://www.n00py.io/2020/02/exploiting-ldap-server-null-bind/ ![image](https://user-images.githubusercontent.com/28152647/228113567-04def2b8-8be7-4651-aa32-7dc40b29bbd3.png) Once authenticated, the tool ran fine.

Zamanry avatar Zamanry

Metadata

302
Stars
67
Forks
Watchers

Owner

verified publisher icon CroweCybersecurity

Metadata

An LDAP based Active Directory user and group enumeration tool

Back