Summary: MaLDAPtive is an open-source framework designed for parsing, obfuscating, deobfuscating, and detecting LDAP SearchFilters. It features a custom C# LDAP parser and a flexible PowerShell wrapper for enhanced functionality and integration.
Threat Actor: N/A | MaLDAPtive
Victim: N/A | LDAP SearchFilter Users
Key Point :
- Custom-built C# LDAP parser for tokenization and syntax tree parsing.
- Includes properties for precise obfuscation, deobfuscation, and detection of LDAP SearchFilters.
- PowerShell wrapper allows for flexibility, randomization, and seamless integration of functions.
- Available for free on GitHub, requiring PowerShell 7.1 and .NET 6.0 (LTS).
MaLDAPtive is an open-source framework for LDAP SearchFilter parsing, obfuscation, deobfuscation, and detection.
At its core, the project features a custom-built C# LDAP parser designed for tokenization and syntax tree parsing. It also incorporates specialized properties to ensure precise obfuscation, deobfuscation, and detection of LDAP SearchFilters.
Complementing this is a PowerShell wrapper, crafted for flexibility and randomization, with pipeline capabilities that allow seamless integration of all desired functions within a single command.
MaLDAPtive is available for free on GitHub.
Required packages: PowerShell 7.1, .NET 6.0 (LTS).
Must read: