Note
This documentation applies to Legacy BloodHound and is no longer maintained.
See up-to-date documentation for BloodHound CE here: BloodHound Support
Further Reading/Viewing¶
Further reading and viewing of content related to BloodHound
Blogs from the Authors¶
https://wald0.com/?p=14
https://wald0.com/?p=68
https://wald0.com/?p=112
https://wald0.com/?p=179
https://blog.cptjesus.com/posts/introtocypher https://blog.cptjesus.com/posts/newbloodhoundingestor https://blog.cptjesus.com/posts/bloodhoundobjectproperties https://blog.cptjesus.com/posts/sharphoundtechnical https://blog.cptjesus.com/posts/sharphoundtargeting https://blog.cptjesus.com/posts/bloodhound15 https://blog.cptjesus.com/posts/bloodhound20 https://blog.cptjesus.com/posts/bloodhound21
https://blog.harmj0y.net/redteaming/a-guide-to-attacking-domain-trusts/ https://blog.harmj0y.net/activedirectory/a-case-study-in-wagging-the-dog-computer-takeover/ https://blog.harmj0y.net/redteaming/kerberoasting-revisited/ https://blog.harmj0y.net/redteaming/from-kekeo-to-rubeus/ https://blog.harmj0y.net/activedirectory/the-most-dangerous-user-right-you-probably-have-never-heard-of/
Presentations from the Authors¶
Six Degrees of Domain Admin - DEF CON 24 https://www.youtube.com/watch?v=wP8ZCczC1OU
Six Degrees of Domain Admin: Using Bloodhound to Automate Active Directory Domain Privilege Escalation Analysis - BSidesLV 2016: https://www.youtube.com/watch?v=lxd2rerVsLo
Six Degrees of Domain Admin - ekoparty 2016 https://www.youtube.com/watch?v=1DCR1BEpvSA
Here Be Dragons The Unexplored Land of Active Directory ACLs - Derbycon https://www.youtube.com/watch?v=z8thoG7gPd0
BloodHound: Head to Tail - DerbyCon 2019 https://www.youtube.com/watch?v=fqYoOoghqdE
An ACE Up the Sleeve: Designing Active Directory DACL Backdoors - DEF CON 25 https://www.youtube.com/watch?v=_nGpZ1ydzS8
BloodHound and the Adversary Resilience Methodology - Troopers 2019 https://www.youtube.com/watch?v=0r8FzbOg2YU
BloodHound: He Attac, But he also Protec https://www.youtube.com/watch?v=hHfxZug1HHo
Blogs/writings from our friends¶
https://en.hackndo.com/bloodhound/ https://www.ernw.de/download/BloodHoundWorkshop/ERNW_DogWhispererHandbook.pdf https://insinuator.net/2019/10/blue-hands-on-bloodhound/ https://www.pentestpartners.com/security-blog/bloodhound-walkthrough-a-tool-for-many-tradecrafts/ https://blog.stealthbits.com/attacking-active-directory-permissions-with-bloodhound/ https://hausec.com/2019/03/12/penetration-testing-active-directory-part-ii/ https://blog.cobaltstrike.com/2016/12/14/my-first-go-with-bloodhound/ https://www.sans.org/cyber-security-summit/archives/file/summit-archive-1554719047.pdf https://www.praetorian.com/blog/active-directory-visualization-for-blue-teams-and-threat-hunters
Presentations from our friends¶
BloodHound From Red to Blue - Mathieu Saulnier, DerbyCon 2019 https://www.youtube.com/watch?v=-HPhJw9K6_Y
Extending BloodHound for Red Teamers - Tom Porter, Wild West Hackin’ Fest 2017 https://www.youtube.com/watch?v=Pn7GWRXfgeI
CypherDog2.0 - Bloodhound Dog Whispering with PowerShell - Walter Legowski, PowerShell + DevOps Global Summit 2019 https://www.youtube.com/watch?v=WiQnm0B0hio
Invoke EmpireHound: Merging BloodHound Empire for Enhanced Red Team Workflow - Walter Legowski, DerbyCon 2018 https://www.youtube.com/watch?v=iMoFORL2fpQ
https://www.youtube.com/watch?v=DBx-AA9nOc0 https://www.youtube.com/watch?v=ob9SgtFm6_g
Sniffing Active Directory with Bloodhound - Aaron McPhall, Roanoke InfoSec Exchange, May 2019 https://www.youtube.com/watch?v=amvyWgJahbk