Re: LDAP Pentest

[Walter Williams <wbjw () comcast net>]

LDAP Browser from Softterra is only free for a read only version.  If
you want a free GUI interface, use jxplorer.  Otherwise Sun has some
really nice tools in their SunOne Resource kit.  I recommend the 5.1
version which has a nice TCL ldap shell called ilash (a hold out from
their innosoft days)

Walt

Anders Thulin wrote:
> andre lista wrote:
>
> > I would like to know if there is any tools or other related material 
> > that could
> > help me on one LDAP directory pentest.
>
>
>   A useful tool for LDAP in general is the free LDAP browser from
> Softerra (www.ldapbrowser.com).
>
>   As for finding tools, how about www.securityfocus.com/swsearch and
> then try 'ldap' in the 'tools' category?  I don't find bf_ldap there,
> but THC-Hydra certainly is.
>
>   For vulnerabilities and possibly exploits, try the 'vulns' category.



------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------