📖 Notes

Search (Ctrl+K)

Recent Notes

heap exploitation
Jun 05, 2024
2024-06-05
Jun 05, 2024
- daily
2024-06-04
Jun 04, 2024
- daily
2024-06-03
Jun 03, 2024
- daily
2024-05-29
May 29, 2024
- daily

See 1409 more sorted by tag →

❯

LDAP filter

created Jan 08, 2024updated May 19, 20241 min read

how-to

An LDAP filter is a part of the LDAP URL used to search for matching directory entries.

Basic syntax:

comparison operators
- equality: (key=value)
- wildcards
  - (key1=val*) and (key1=*ue)
  - the attribute cannot be a DN
  - note that prefixed wildcards takes O(n), while suffixed wildcards are indexed
- greater than or equal to (lexicographical): >=
- less than or equal to (lexicographical): <=
- approximately equal to: ~=
- > and < are not supported
logical operators
- LDAP queries use a prefix notation.
- logical AND: (&(key1=value)(key2=value))
- logical OR: (|(key1=value)(key2=value))
- logical NOT: (!(key1=value))
- nest conditions with parentheses: (&(key1=value)(|(key2=value)(key3=value)))

For more on AD-specific filters, see source.

Graph View

Sources

social.technet.microsoft.com

Backlinks

ADSearch
LDAP URL
custom PowerShell AD searcher

Created with Quartz v4.2.3 © 2024

GitHub
LinkedIn
HackTheBox