What are you trying to accomplish here?

You have compromised a lower-level administrator account on an Active Directory network
of a small company in Dallas, Texas. You discover Domain Controllers through enumeration.
You connect to one of the Domain Controllers on port 389 using Idp.exe. What are you trying
to accomplish here?

You have compromised a lower-level administrator account on an Active Directory network
of a small company in Dallas, Texas. You discover Domain Controllers through enumeration.
You connect to one of the Domain Controllers on port 389 using Idp.exe. What are you trying
to accomplish here?

A.
Poison the DNS records with false records

B.
Enumerate MX and A records from DNS

C.
Establish a remote connection to the Domain Controller

D.
Enumerate domain user accounts and built-in groups

Show Hint

Leave a Reply 2

Your email address will not be published. Required fields are marked *

Q 

Q 

The answer is D.

Port 389 (TCP/UDP) is reserved for LDAP, which is a protocol (service) used to communicate in an active directory environment.

LDAP is a lightweight protocol for accessing directory servers.

Choice C – Establish a remote connection to…is a deceitful trick, which is trying to confuse 389 (LDAP) and 3389 (Remote Desktop).

Reply