ADenum: find misconfiguration through the protocol LDAP
AD Enum
AD Enum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those weaknesses with Kerberos.
Features and Functionality
LDAP:
- Enum Domain Admin users
- Enum Domain Controllers
- Enum Domain users with Password Not Expire
- Enum Domain users with old password
- Enum Domain users with an interesting description
- Enum Domain users with not the default encryption
- Enum Domain users with Protecting Privileged Domain Accounts
Kerberos:
- AS-REP Roastable
- Kerberoastable
- Password cracking with John (krb5tgs and krb5asrep)
Install
- Impacket
- John
- Python 3
- If you are using debian or kali:
$ sudo apt-get install libsasl2-dev python-dev libldap2-dev libssl-dev
git clone https://github.com/SecuProject/ADenum.git
$ pip3 install -r Requirements.txt
Use
Copyright (C) 2021 SecuProject
Source: https://github.com/SecuProject/
