When auditing active directory on languages other than english some filters are rarely useful, for example the filter on the description is looking for pwd and password but in french 🇫🇷 it will more likely be mdp or mot? de passe .
|
OBJECT_TO_SEARCH = '(&(objectCategory=user)(|(description=*pwd*)(description=*password*)))' |
It results in false negative where juicy description are missed:
[-] Users with an interesting description
[!] No entry found !
It would be nice to have an option --description-regexp where one can pass a custom LDAP regexp to filter for, eg. *mdp* that would be added in addition to the default one.
When auditing active directory on languages other than english some filters are rarely useful, for example the filter on the description is looking for
pwdandpasswordbut in french 🇫🇷 it will more likely bemdpormot? de passe.ADenum/ADenum.py
Line 270 in fbbe14d
It results in false negative where juicy description are missed:
It would be nice to have an option
--description-regexpwhere one can pass a custom LDAP regexp to filter for, eg.*mdp*that would be added in addition to the default one.