forum.vdsworld.com

[cripled]

Did anyone attemted to access AD? I'm not a pro on using api, but i know that the AD api is in Wldap32.dll.

[FreezingFire]

Can you elaborate?

[cripled]

I created Helpdesk tools based on log-files, generated on logon, to find out where users were logged on (Computer) and extended information about the user. Our company dicided to upgrade to Active Directory. When they did this they hired and Security Officer (@%#$$%) that banned the use of these logfiles (in case of security hazard).

When i searched the internet to bypass that i noticed that a simple intruction query in AD deliverd more info then i imagend. A huge list of possibilities emerges . Unlocking users by quering there logon id or name, reset password. Last logon/logoff (Win2K logs this per PDC, in 2003 it's promoted to catalog) witch users are in "blabla"group and reverse (reports on licensing), e-mail adresses, telefoonnumbers.



Note: The only limit is the account the program/user uses to access the AD.