BloodHound

Description

(PenTestPartners) BloodHound is an application used to visualize active directory environments. The front-end is built on electron and the back-end is a Neo4j database, the data leveraged is pulled from a series of data collectors also referred to as ingestors which come in PowerShell and C# flavours.

It can be used on engagements to identify different attack paths in Active Directory (AD), this encompasses access control lists (ACLs), users, groups, trust relationships and unique AD objects. The tool can be leveraged by both blue and red teams to find different paths to targets. The subsections below explain the different and how to properly utilize the different ingestors.

Names

Name
BloodHound

Type

Reconnaissance

Information

https://www.pentestpartners.com/security-blog/bloodhound-walkthrough-a-tool-for-many-tradecrafts/
https://github.com/BloodHoundAD/BloodHound

Mitre Attack

https://attack.mitre.org/software/S0521/

Other Information

Uuid

2bfed9a7-09bb-469b-a297-c7d6f39a0df7

Last Card Change

2022-12-30

Threat Intelligence Garden

Explorer

BloodHound

BloodHound

Description

Names

Category

Type

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks