Description
BloodHound uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment. As of version 4.0, BloodHound now also supports Azure. Attackers can use BloodHound to easily identify highly complex attack paths that would otherwise be impossible to quickly identify. Defenders can use BloodHound to identify and eliminate those same attack paths. Both blue and red teams can use BloodHound to easily gain a deeper understanding of privilege relationships in an Active Directory environment.
| Platform | All |
| Author | @_wald0, @CptJesus, and @harmj0y |
| License | GPLv3 |
| URL | https://github.com/BloodHoundAD/BloodHound |
Examples
Graph path from specific user to domain admin
This example shows the path from the ‘yfan_a’ account to the domain admin, by searching using a starting node and ending node (like google maps).
Shortest path to domain admin
This pre-built query shows the shortest path to get domain admin without specifying a starting point.
Blog Posts