Posted in: Penetration Testing Tools, Active Directory

How to Install Bloodhound on Linux

How to Install Bloodhound on Linux and correct Java problems.

Install JAVA and Dependencies

echo "deb stretch-backports main" | sudo tee -a /etc/apt/sources.list.d/stretch-backports.list
sudo apt-get install openjdk-11-jre
sudo apt-get install openjdk-11-jdk
export JAVA_HOME=/usr/lib/jvm/openjdk-11-jdk
export PATH=$PATH:$JAVA_HOME/bin
sudo apt-get update
sudo apt-get install apt-transport-https

Install Neo4J

wget -O - | sudo apt-key add -
echo 'deb stable 4.4' > /etc/apt/sources.list.d/neo4j.list
└─$ sudo ./neo4j console
firefox http://localhost:7474/

Neo4J Configuration File

Reset Neo4J Password

Linux Installation BloodHound

apt install bloudhound
└─$ bloodhound --no-sandbox

Configure Bloodhound

sudo nano /etc/hosts
sudo nano /etc/resolv.conf
.\SharpHound.exe -c all -d active.htb --searchforest
.\SharpHound.exe -c all,GPOLocalGroup

Only collect from the DC, doesn’t query the computers (more stealthy)

Data Collection

Windows – SharpHound

.\SharpHound.exe --CollectionMethod DCOnly
.\SharpHound.exe -c all --LdapUsername <UserName> --LdapPassword <Password> --JSONFolder <PathToFile>
.\SharpHound.exe -c all --LdapUsername <UserName> --LdapPassword <Password> --domaincontroller -d active.htb
.\SharpHound.exe -c all,GPOLocalGroup --outputdirectory C:\Windows\Temp --randomizefilenames --prettyjson --nosavecache --encryptzip --collectallproperties --throttle 10000 --jitter 23

Windows – Powershell

Invoke-BloodHound -SearchForest -CSVFolder C:\Users\Public
Invoke-BloodHound -CollectionMethod All  -LDAPUser <UserName> -LDAPPass <Password> -OutputDirectory <PathToFile>

Windows – RustHound

Cloud Azure

Leave a Reply Cancel reply

Back to Top