BloodHound.py icon indicating copy to clipboard operation
BloodHound.py copied to clipboard

Published 20 hours ago verified publisher icon dirkjanm

LDAP simple authentication support

Open awakenine opened this issue 3 years ago • 2 comments
trafficstars

Will you plan to support enumeration with ldap simple authentication? ldapsearch -h -w passwd bind password (for simple authentication)

awakenine avatar May 19 '22 10:05 awakenine

Is there a useful scenario for this? When running from source you could easily adapt it to use SIMPLE auth instead of NTLM here: https://github.com/fox-it/BloodHound.py/blob/master/bloodhound/ad/authentication.py#L63 I don't think adding a separate parameter for this makes sense.

dirkjanm avatar May 21 '22 13:05 dirkjanm

@dirkjanm yes, you can use this option to collect info as cn=directory manager. Simple authentication is still sometimes enabled and may be just one more collection option if you doesn't have valid credentials.

awakenine avatar May 23 '22 14:05 awakenine

I don't recall ever seeing this. If you need really need it in some cases I suggest making the small change to the source code mentioned above

dirkjanm avatar Oct 19 '22 19:10 dirkjanm