4.4 LDAP Enumeration

LDAP Enumeration

  • Lightweight Directory Access Protocol (LDAP) is an Internet protocol for accessing distributed directory services.
  • Directory services may provide any organized set of records, often in a hierarchical and logical structure, such as a corporate email directory.
  • A client starts an LDAP session by connecting to a Directory System Agent (DSA) on TCP port 389 and sends an operation request to the DSA.
  • Information is transmitted between the client and the server using Basic Encoding Rules (BER).
  • Attacker queries LDAP service to gather information such as valid user names, addresses, departmental details, etc. that can be further used to perform attacks.

LDAP Enumeration Tool: Softerra LDAP Administrator

LDAP Enumeration Tools

results matching ""

    No results matching ""