MaLDAPtive: LDAP Query Obfuscation and De-Obfuscation Techniques

Explore a comprehensive DEF CON conference talk diving deep into LDAP (Lightweight Directory Access Protocol) security, obfuscation techniques, and detection mechanisms. Learn about the intricate relationship between LDAP and Active Directory, examining how tools like BloodHound and PingCastle have shaped offensive security approaches over the past decade. Discover MaLDAPtive, a groundbreaking 2,000-hour research project and framework that revolutionizes LDAP query obfuscation, de-obfuscation, and detection through a custom-built tokenizer and syntax tree parser. Master advanced techniques for understanding and defending against sophisticated LDAP-based attacks, while gaining insights into undocumented obfuscation methods rarely seen in real-world scenarios. Gain hands-on experience with this newly released open-source framework that transforms LDAP security from "lightweight" to "heavyweight."