all InfoSec news
LDAP shell - AD ACL Abuse
April 10, 2022, 9:30 p.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
This repository contains a small tool inherited from ldap_shell (https://github.com/SecureAuthCorp/impacket/blob/master/impacket/examples/ldap_shell.py).
Installation
These tools are only compatible with Python 3.5+. Clone the repository from GitHub, install the dependencies and you should be good to go:
git clone https://github.com/z-Riocool/ldap_shell.git
cd ldap_shell
python3 setup.py install
Usage
Connection options
ldap_shell domain.local/user:password
ldap_shell domain.local/user:password -dc-ip 192.168.1.2
ldap_shell domain.local/user -hashes aad3b435b51404eeaad3b435b51404ee:aad3b435b51404eeaad3b435b51404e1
export KRB5CCNAME=/home/user/ticket.ccache
ldap_shell -k -no-pass domain.local/user
Functionality
access to the domain object, assign the DS-Replication right to the selected user. del_dcsync user - …More from www.kitploit.com / KitPloit - PenTest Tools!
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Program Associate, Cyber Risk
@ Kroll | Toronto, ONT, Canada
Cybersecurity Operations Engineer 2
@ Humana | Remote US
Vice President - Lead Security Engineer (SECS04)
@ JPMorgan Chase & Co. | Columbus, OH, United States
Security Specialist
@ BGIS | Markham, ON, Canada