How to Install Bloodhound on Linux and correct Java problems.
Install JAVA and Dependencies
Bloodhound requires several dependencies to be installed first. You can install these dependencies by running the following command in the terminal:
echo "deb http://httpredir.debian.org/debian stretch-backports main" | sudo tee -a /etc/apt/sources.list.d/stretch-backports.list
sudo apt-get install openjdk-11-jre
sudo apt-get install openjdk-11-jdk
export JAVA_HOME=/usr/lib/jvm/openjdk-11-jdk
export PATH=$PATH:$JAVA_HOME/bin
sudo apt-get update
sudo apt-get install apt-transport-https
Install Neo4J
wget -O - https://debian.neo4j.com/neotechnology.gpg.key | sudo apt-key add -
echo 'deb https://debian.neo4j.com stable 4.4' > /etc/apt/sources.list.d/neo4j.list
┌──(rfs㉿fed)-[/usr/bin]
└─$ sudo ./neo4j console
firefox http://localhost:7474/
Neo4J Configuration File
Reset Neo4J Password
Linux Installation BloodHound
You can now install Bloodhound using pip. Run the following command:
apt install bloudhound
┌──(rfs㉿fed)-[~]
└─$ bloodhound --no-sandbox
Configure Bloodhound
sudo nano /etc/hosts
sudo nano /etc/resolv.conf
.\SharpHound.exe -c all -d active.htb --searchforest
.\SharpHound.exe -c all,GPOLocalGroup
Only collect from the DC, doesn’t query the computers (more stealthy)
Data Collection
Windows – SharpHound
.\SharpHound.exe --CollectionMethod DCOnly
.\SharpHound.exe -c all --LdapUsername <UserName> --LdapPassword <Password> --JSONFolder <PathToFile>
.\SharpHound.exe -c all --LdapUsername <UserName> --LdapPassword <Password> --domaincontroller 10.10.10.100 -d active.htb
.\SharpHound.exe -c all,GPOLocalGroup --outputdirectory C:\Windows\Temp --randomizefilenames --prettyjson --nosavecache --encryptzip --collectallproperties --throttle 10000 --jitter 23
Windows – Powershell
Invoke-BloodHound -SearchForest -CSVFolder C:\Users\Public
Invoke-BloodHound -CollectionMethod All -LDAPUser <UserName> -LDAPPass <Password> -OutputDirectory <PathToFile>
Comments