BloodHound

Installation and Setup

git clone https://github.com/BloodHoundAD/BloodHound.git

## Also grab a copy of the latest stable x64 linux binary
wget https://github.com/BloodHoundAD/BloodHound/releases/download/4.1.0/BloodHound-linux-x64.zip
unzip BloodHound-linux-x64.zip
chmod +x BloodHound-linux-x64/BloodHound
## Bloodhound is depdent the Neo4j database
sudo apt install neo4j
sudo neo4j console ## Visit the browser and change your password.

After installing Neo4j you'll need to provide the username and password for the database. neo4j:neo4j

After authenticating it'll ask you to create a new password. Do not use neo4j...

Now that neo4j is configured head into the BloodHound-linux-x64 directory and run the BloodHound binary. You'll need to provide the password you set for the neo4j database.

At this point we need to run the bloodhound collectors and aggregate some domain information.

In this instance I simply used a windows share to copy the sharphound.exe binary over and ran it.

SharpHound.exe --CollectionMethods All
SharpHound.exe --CollectionMethods Session --loop  ## By defualt this runs for two hours. You can stop it earlier with ctrl c

After running the Collector a couple of zip files or a single one will be created. Exfiltrate those off the Windows host however you seem fit.

At this point you will want to upload those zip files into BloodHound. You can also drag and drop.