-
January 24th, 2010, 03:53 AM
#1
Member
LDAP probing
So i was reading a magazine (Hackinthebox) an article regarding LDAP and it got me thinking, would it be possible to query an Active directory domain anonymously? After a little search i found that it was not enabled by default in Windows 2003, well actually you can get some info but not much. So if i was logged into the network with a domain account (just basic user level permissions) would i be able to perform an LDAP query requesting password hashes? I'm not at home to try on my test network. If i had to guess i would say that it's not possible to get the hashes but possibly other useful information for a pentester. Anyone know if it is possible to get the password hashes via this method?
Similar Threads
-
By heatwave in forum AntiOnline's General Chit Chat
Replies: 4
Last Post: October 12th, 2012, 08:53 AM
-
By killerbeesateme in forum *nix Security Discussions
Replies: 4
Last Post: April 17th, 2006, 09:09 PM
-
By thwhomp in forum IDS & Scanner Discussions
Replies: 3
Last Post: May 5th, 2005, 08:30 PM
-
By thehorse13 in forum The Security Tutorials Forum
Replies: 0
Last Post: June 2nd, 2004, 05:59 PM
-
By jonathans_daddy in forum Web Security
Replies: 3
Last Post: May 4th, 2004, 04:50 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|