How to Install Bloodhound on Linux and correct Java problems.

Install JAVA and Dependencies

Bloodhound requires several dependencies to be installed first. You can install these dependencies by running the following command in the terminal:

echo "deb http://httpredir.debian.org/debian stretch-backports main" | sudo tee -a /etc/apt/sources.list.d/stretch-backports.list
sudo apt-get install openjdk-11-jre
sudo apt-get install openjdk-11-jdk
export JAVA_HOME=/usr/lib/jvm/openjdk-11-jdk
export PATH=$PATH:$JAVA_HOME/bin
sudo apt-get update
sudo apt-get install apt-transport-https

Install Neo4J

wget -O - https://debian.neo4j.com/neotechnology.gpg.key | sudo apt-key add -
echo 'deb https://debian.neo4j.com stable 4.4' > /etc/apt/sources.list.d/neo4j.list
┌──(rfs㉿fed)-[/usr/bin]
└─$ sudo ./neo4j console
firefox http://localhost:7474/

Neo4J Configuration File

Reset Neo4J Password

Linux Installation BloodHound

You can now install Bloodhound using pip. Run the following command:

apt install bloudhound

┌──(rfs㉿fed)-[~]
└─$ bloodhound --no-sandbox

Configure Bloodhound

sudo nano /etc/hosts
sudo nano /etc/resolv.conf
.\SharpHound.exe -c all -d active.htb --searchforest
.\SharpHound.exe -c all,GPOLocalGroup

Only collect from the DC, doesn’t query the computers (more stealthy)

Data Collection

Windows – SharpHound

.\SharpHound.exe --CollectionMethod DCOnly
.\SharpHound.exe -c all --LdapUsername <UserName> --LdapPassword <Password> --JSONFolder <PathToFile>
.\SharpHound.exe -c all --LdapUsername <UserName> --LdapPassword <Password> --domaincontroller 10.10.10.100 -d active.htb
.\SharpHound.exe -c all,GPOLocalGroup --outputdirectory C:\Windows\Temp --randomizefilenames --prettyjson --nosavecache --encryptzip --collectallproperties --throttle 10000 --jitter 23

Windows – Powershell

Invoke-BloodHound -SearchForest -CSVFolder C:\Users\Public
Invoke-BloodHound -CollectionMethod All  -LDAPUser <UserName> -LDAPPass <Password> -OutputDirectory <PathToFile>

Windows – RustHound

Cloud Azure

Categorized in:

Penetration Testing Tools,