Skip to content

EricEsquivel/ADSIsearch

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
basicrecon
basicrecon
 
 
demos
demos
 
 
query
query
 
 
ADSIsearch.cna
ADSIsearch.cna
 
 
README.md
README.md
 
 

Repository files navigation

ADSIsearch

ADSIsearch is a Beacon Object File (BOF) to query Active Directory using ADDS, ADSI, and Network Management WinAPIs.

Installation

cd basicrecon/
x86_64-w64-mingw32-gcc -c basicrecon.c -o basicrecon.x64.o

cd query/
x86_64-w64-mingw32-gcc -c query.cpp -o query.x64.o

Then load the ADSIsearch.cna script into Cobalt Strike.

Example Usage

Using basicrecon:

ADSIsearch basicrecon

Using query:

ADSIsearch query <LDAP Query> <Optional Filter>

ADSIsearch query (objectCategory=user) samaccountname

Demo

ADSIsearch

Credits:

My BOF is heavily based off of Microsoft's example code and Outflank's Recon-AD project. I made this BOF to better understand how these tools worked and also use different parts from both projects to produce what I was looking for. You can also learn more about these different APIs here:

About

ADSIsearch is a Beacon Object File (BOF) to query Active Directory using ADDS, ADSI, and Network Management WinAPIs.

Resources

Readme
Activity

Stars

10 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages