j0hnZ3RA

j0hnZ3RA / ldapx-py

Public

Transform LDAP filters, BaseDNs, attribute lists, and attribute entries using composable middleware chains. Zero dependencies. Works as a library or CLI tool.

11
0
100% credibility
Found Mar 22, 2026 at 11 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

ldapx is a Python library and command-line tool for transforming LDAP queries in ways that preserve their meaning but make them harder for security tools to detect.

How It Works

1
🔍 Discover the tool

You hear about ldapx from a security friend who uses it to test company networks without triggering alarms.

2
📥 Bring it home

You add it to your computer with a quick download, and it's ready to use right away.

3
💻 Open your helper

You start the simple command helper on your computer to begin transforming searches.

4
Make a sneaky search

You enter a normal search like 'find admin accounts' and pick fun tricks to disguise it while keeping the same results.

5
🔄 See the magic

It instantly shows you the changed version that looks totally different but finds exactly what you wanted.

Test safely

Your disguised searches now slip past defenses during security checks, helping keep networks stronger.

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 11 to 11 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is ldapx-py?

ldapx-py is a zero-dependencies Python library and CLI for transforming LDAP filters, BaseDNs, attribute lists, and entries using composable chains of obfuscation techniques. It turns simple queries like "(cn=admin)" into evasive variants that Active Directory accepts, drawing from MaLDAPtive research for red-team evasion. Install via pip and use high-level functions or CLI commands like `ldapx filter -f "(cn=admin)" -c "COGDR"`.

Why is it gaining traction?

Unlike rigid obfuscators, ldapx-py's composable chains let you mix tactics (e.g., OID attributes, random case, garbage filters) via short strings, generating variants on demand. It includes a compatibility matrix for libraries like impacket, ldap3, and badldap, plus adapters to bypass client parsers. The CLI supports stdin piping, JSON output, and options tweaking, making it script-friendly without setup hassle.

Who should use this?

Red-team operators enumerating AD with tools like NetExec, Certipy, or bloodhound.py, needing query obfuscation to dodge detectors. Pentesters scripting LDAP transforms for impacket or bloodyAD integrations. Security devs testing permissive AD parsers against client-side validation fails.

Verdict

Solid for niche LDAP transform needs—excellent docs and compatibility details outweigh 11 stars and 1.0% credibility score—but it's beta (v0.3.1) with no tests visible. Grab it if you're in AD red-teaming; otherwise, check the original Go ldapx for proxy mode.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.