The Web Local
 

 

 

ldapminer

 

LdapMiner is a tool that collects information from different LDAP Server implementations. The Lightweight Directory Access Protocol is a protocol used to access directory listings within Active Directory. It is implemented in Web browsers and e-mail programs to enable lookup queries.

 

Note: - Anonymous queries will fail if LDAP NULL BASE queries are disabled.

 

It is available from here.

 

Installation:

 

Just unzip the file

Copy ldapminer.exe to the libs directory and execute from there

 

Usage:

 

ldapminer.exe -h host option


-p [port] : default to 389
-B [bind dn] : user. default null
-w [password] : user password. default null
-b [base search] : base for searching for user, group, ...
-F [output format] : 0 for ldif, 1 for clean
-d : dump all data you can grab

 

Expected output:

 

checking if server is alive
Connected to : 192.169.1.119
server type is : netscape
Netscape Checks enabled
Problem getting some server config info, results might not be 100% reliable

Netscape Admin server checks
============================

Netscape server checks
============================

Netscape base checks
============================
Netscape users
CN=Schema,CN=Configuration,DC=kev,DC=local:
CN=Configuration,DC=kev,DC=local:
DC=kev,DC=local:
Netscape groups :

CN=Schema,CN=Configuration,DC=kev,DC=local:

CN=Configuration,DC=kev,DC=local:

DC=kev,DC=local:
Netscape ACL :

LDAP server data available (clean output)
============================
dn: CN=Schema,CN=Configuration,DC=kev,DC=local
dn: CN=Configuration,DC=kev,DC=local
dn: CN=Everyone,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Everyone
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Everyone,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: og
Âñþ O§—Ø ÂçIÝ
attribute: objectSid
value[0]:
attribute: name
value[0]: Everyone
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1295
attribute: uSNCreated
value[0]: 1295
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated
value[0]: 20061010125051.0Z
dn: CN=Creator Owner,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Creator Owner
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Creator Owner,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: 8!PrŒnåE°.¡ìOb±¾
attribute: objectSid
value[0]:
attribute: name
value[0]: Creator Owner
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1296
attribute: uSNCreated
value[0]: 1296
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated
value[0]: 20061010125051.0Z
dn: CN=Creator Group,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Creator Group
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Creator Group,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: <C
°ùѹK¦ê ¢>/ë÷
attribute: objectSid
value[0]:
attribute: name
value[0]: Creator Group
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1297
attribute: uSNCreated
value[0]: 1297
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated
value[0]: 20061010125051.0Z
dn: CN=Self,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Self
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Self,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: Ó›Úc K›IŒX2Yxgþ attribute: objectSid
value[0]:
attribute: name
value[0]: Self
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1298
attribute: uSNCreated
value[0]: 1298
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated
value[0]: 20061010125051.0Z
dn: CN=Authenticated Users,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Authenticated Users
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Authenticated Users,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: Ÿ òÄ^I%K—¡Êø-³ÚH
attribute: objectSid
value[0]:
attribute: name
value[0]: Authenticated Users
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1299
attribute: uSNCreated
value[0]: 1299
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated
value[0]: 20061010125051.0Z
dn: CN=Network,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Network
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Network,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: =Ò­ã³/rJ + nkÉ… attribute: objectSid
value[0]:
attribute: name
value[0]: Network
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1300
attribute: uSNCreated
value[0]: 1300
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated
value[0]: 20061010125051.0Z
dn: CN=Batch,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: cn
value[0]: Batch
attribute: instanceType
value[0]: 4
attribute: distinguishedName
value[0]: CN=Batch,CN=WellKnown Security Principals,CN=Configuration,DC=kev,DC=local
attribute: objectCategory
value[0]: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,DC=kev,DC=local
attribute: objectClass
value[0]: top
value[1]: foreignSecurityPrincipal
attribute: objectGUID
value[0]: 3øfÝë1 F ŠCç·Ìù—
attribute: objectSid
value[0]:
attribute: name
value[0]: Batch
attribute: showInAdvancedViewOnly
value[0]: TRUE
attribute: uSNChanged
value[0]: 1301
attribute: uSNCreated
value[0]: 1301
attribute: whenChanged
value[0]: 20061010125051.0Z
attribute: whenCreated

 

Note: - This is abridged and the output from a default AD install on a Windows 2000 AS build.  I have used the tool against Windows 2003 and get very limited results i.e.

 

 checking if server is alive
Connected to : 192.169.1.119
server type is : netscape
Netscape Checks enabled
Problem getting some server config info, results might not be 100% reliable

Netscape Admin server checks
============================

Netscape server checks
============================

Netscape base checks
============================
Netscape users
CN=Schema,CN=Configuration,DC=kev,DC=local:
CN=Configuration,DC=kev,DC=local:
DC=kev,DC=local:
Netscape groups :

CN=Schema,CN=Configuration,DC=kev,DC=local:

CN=Configuration,DC=kev,DC=local:

 

And that's about it.

 

IT Security News:

 

Pen Testing Framework:

 

Latest Tool Reviews:

 

 

 

  
 

© VulnerabilityAssessment.co.uk 23 February 2008