[Download |Documentation |Mail ]



The license for all Phenoelit tools can be found here.


K0LD uses the availability of anonymous binds to LDAP servers. It queries all users below a given distinguished name in the LDAP tree and tryes several passwords from a password list to bind as this user.
Because LDAP servers usually don't close connections on failed authentications, K0LD can perform an attack without the connect() and close() calls for each password - therefor preventing the 'cannot assign requested address' stuff.

How to use

./k0ld -w wordlist.txt -h ldap.host.com -b 'ou=company, c=US' 
The options are: