MaLDAPtive: LDAP Query Obfuscation and De-Obfuscation Techniques
Launch Your Cybersecurity Career in 6 Months
Build AI Apps with Azure, Copilot, and Generative AI — Microsoft Certified
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore a comprehensive DEF CON conference talk diving deep into LDAP (Lightweight Directory Access Protocol) security, obfuscation techniques, and detection mechanisms. Learn about the intricate relationship between LDAP and Active Directory, examining how tools like BloodHound and PingCastle have shaped offensive security approaches over the past decade. Discover MaLDAPtive, a groundbreaking 2,000-hour research project and framework that revolutionizes LDAP query obfuscation, de-obfuscation, and detection through a custom-built tokenizer and syntax tree parser. Master advanced techniques for understanding and defending against sophisticated LDAP-based attacks, while gaining insights into undocumented obfuscation methods rarely seen in real-world scenarios. Gain hands-on experience with this newly released open-source framework that transforms LDAP security from "lightweight" to "heavyweight."
Syllabus
DEF CON 32 - MaLDAPtive: Obfuscation and De-Obfuscation - Daniel Bohannon, Sabajete Elezaj
Taught by
DEFCONConference