Passback Attack

  • Most Printer or other devices have weak login password but also quite often a LDAP/AD connection. Login to printer - changing LDAP Server to your Listener and catch username and password.
  • With creditials you can go further in the network.
  • Netcat or Responder could work as target server

Further Information

  • https://www.mindpointgroup.com/blog/how-to-hack-through-a-pass-back-attack
  • http://foofus.net/goons/percx/praeda/pass-back-attack.pdf
  • https://medium.com/r3d-buck3t/pwning-printers-with-ldap-pass-back-attack-a0d8fa495210