cme_ldap
Execute LDAP enumeration and custom queries against Active Directory domain controllers to discover users, computers, groups, and delegation settings.
Instructions
Execute LDAP protocol operations. Supports Active Directory enumeration including users, computers, groups, delegation, and custom LDAP queries.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| targets | Yes | Target Domain Controller IP or hostname | |
| username | No | Username or file path to usernames | |
| password | No | Password or file path to passwords | |
| hash | No | NTLM hash for pass-the-hash | |
| domain | No | Domain name | |
| kerberosAuth | No | Use Kerberos authentication | |
| port | No | LDAP port (default: 389, 636 for LDAPS) | |
| threads | No | Concurrent threads | |
| usersEnabled | No | Enumerate enabled users | |
| computers | No | Enumerate computers | |
| dc | No | Enumerate domain controllers | |
| trustedForDelegation | No | Find accounts trusted for delegation | |
| passwordNotReqd | No | Find accounts with PASSWD_NOTREQD flag | |
| adminCount | No | Find accounts with adminCount=1 | |
| gmsa | No | Dump gMSA passwords | |
| ldapQuery | No | Custom LDAP query | |
| module | No | Module to run | |
| moduleOptions | No | Module options | |
| verbose | No | Verbose output | |
| debug | No | Debug output |