SharpHound2
SharpHound2 copied to clipboard
BloodHoundAD
The Old BloodHound C# Ingestor (Deprecated)
Bumps [Newtonsoft.Json](https://github.com/JamesNK/Newtonsoft.Json) from 11.0.2 to 13.0.1. Release notes Sourced from Newtonsoft.Json's releases. 13.0.1 New feature - Add JsonSelectSettings with configuration for a regex timeout Change - Remove portable assemblies from...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [SharpZipLib](https://github.com/icsharpcode/SharpZipLib) from 0.86.0 to 1.3.3. Release notes Sourced from SharpZipLib's releases. v1.3.3 Another minor release, containing security fixes and smaller bugfixes. Fixes: 🐛 specialized tar extract traversal by nils...
I seem to run in a loop if I use sharphound (any version, any syntax). Doesn't really matter which syntax I use, I always get the LDAPMessage when I sniff...
No issue, just a general use question - what is the max duration that can be applied for loop interval flag? Curious if I can use 168:00:00 to have SharpHound...
For ACE applied to a set of objects, a guid filter is applied. Here: https://github.com/BloodHoundAD/SharpHound/blob/9d71fb7e3033a7da07cf2ba6daaebd11c09bbd7b/Sharphound2/Enumeration/ACLHelpers.cs#L30-L34 I've found some GUID missing: inetorg: 4828cc14-1437-45bc-9b07-ad6f015e5f28 OU: bf967aa5-0de6-11d0-a285-00aa003049e2 MSA: ce206244-5827-4a86-ba1c-1c0c386c1b64 gMSA: 7b8b558a-93a5-4af7-adca-c017e67f1057 That means...
Several well-known SIDs are converted to `MappedPrincipal` objects, see: https://github.com/BloodHoundAD/SharpHound/blob/9d71fb7e3033a7da07cf2ba6daaebd11c09bbd7b/Sharphound2/Enumeration/MappedPrincipal.cs This is nice as it allows to perform queries using common names, like "Anonymous" without caring about the local AD...
`PS > Invoke-BloodHound -CollectionMethod Group,Trusts,ACL,ObjectProps,Container,GPOLocalGroup -Domain domain.com -Verbose` ``` Initializing BloodHound at 4:30 PM on 1/8/2020 Found usable Domain Controller for domain.com : abc.domain.com Resolved Collection Methods to Group, GPOLocalGroup,...
Hello. Sharphound does not validate before each action whether the network connection is up or not. As soon as the connection drops, bloodhound thinks the task finished, saving and closing...
Metadata
Owner
Metadata
The Old BloodHound C# Ingestor (Deprecated)