Post Compromise Enumeration

POWERVIEW

PowerSploit/Recon/PowerView.ps1 at master · PowerShellMafia/PowerSploitGitHub

SharpHound

BloodHound-Legacy/Collectors/SharpHound.ps1 at master · SpecterOps/BloodHound-LegacyGitHub

PS>
Import-Module C:\Enterprise-Share\sharphound.ps1
Invoke-BloodHound -CollectionMethod All

ie. a zip will be created that we can import in Bloodhound in below format:
20211217084021_BloodHound.zip

BLOODHOUND

https://bloodhound.readthedocs.io/en/latest/installation/linux.htmlbloodhound.readthedocs.io

sudo apt-get install neo4j
sudo neo4j console

This would run the neo4j service. INFO Bolt enabled on localhost:7687 INFO Remote interface available at http://localhost:7474/

Default Credentials: neo4j/neo4j

If there is password error while logging in,

Stop neo4j if its running
edit /etc/neo4j/neo4j.conf, and uncomment dbms.security.auth_enabled=false
connect to the database and run
ALTER USER neo4j SET PASSWORD 'mynewpass'; :exit
Stop neo4j
comment out the dbms.security.auth_enabled=false
start neo4j

apt install bloodhound

setup neo4j console and open it in browser to access. We can run invoke-bloodhound to collect data and import it in neo4j localhost to get idea about AD.

BloodHound-Legacy/Collectors/SharpHound.ps1 at master · SpecterOps/BloodHound-LegacyGitHub

PreviousAttack Vectors NextPost Compromise Attacks

Last updated 3 years ago

hashtagPOWERVIEW

hashtagSharpHound

hashtagBLOODHOUND

POWERVIEW

SharpHound

BLOODHOUND