Attacking Active Directory

Attacking Active Directory - Bloodhound

Рет қаралды 56,345

Күн бұрын

Пікірлер

@InfiniteLogins 4 жыл бұрын

I use Bloodhound on every internal assessment, but I never knew about the ability to run collectors remotely with Python. Thanks for sharing!

@c0nd4 4 жыл бұрын

Awesome! Thank you for the support!

@archersterling4044 3 жыл бұрын

Supposedly sharphound.exe is a more stable and reliable collector?

@zunicalmir Жыл бұрын

Its amazing how u explain it, its easy to soak with just one run...thank you

@b-rent4733 2 жыл бұрын

Thanks Conda! This was key to using bloodhound without having local access to the domain.

@karthikeyanrajasekar7119 3 жыл бұрын

Please make more of these videos on Active Directory. Absolutely loved this one !

@c0nd4 3 жыл бұрын

I do plan on it 🙂

@ns-yz1hj 3 жыл бұрын

Keep the AD videos coming man. Finding good AD guides is hard. Love your videos!

@c0nd4 3 жыл бұрын

Thank you!

@colinrogers9927 Жыл бұрын

This is a great explanation. Good work

@c0nd4 Жыл бұрын

Thank you!

@WizardKing24 3 жыл бұрын

Wow, very great video! I learned a lot, for example I didn't know that you can collect the data with Python. Thanks for all the tips in Bloodhound and the BadBlood you mentioned in another comment, I'll definitely check it out too! Thanks a lot!

@c0nd4 3 жыл бұрын

Glad you enjoyed the video!

@nilangaperera9649 3 жыл бұрын

Thanks heaps, for making this great video demonstration.

@c0nd4 3 жыл бұрын

Appreciate the support 👍

@balanceandjustice777 3 жыл бұрын

Great video! Thank you so much!!

@Jesse_Johnson 10 ай бұрын

I am getting this job. Thank you.

@behnamahmadi6482 3 жыл бұрын

thank u so much for this awesome tutorial video.

@c0nd4 3 жыл бұрын

No problem! Glad you enjoyed it

@MrMrabaunza 3 жыл бұрын

awesome video...it was very informative. subbed.

@c0nd4 3 жыл бұрын

Thank you 😁

@sargondinkha8492 2 жыл бұрын

Great tutorial!

@c0nd4 2 жыл бұрын

Thank you!

@pcap_pirate960 2 жыл бұрын

Great explanation!

@quanghuyang2822 Жыл бұрын

Hi, I'm new to the world of security administration, and I was hoping to get some guidance from someone with your expertise. Do you have any advice on mapping out a career path in this area?

@Arummekarlayung0706 4 жыл бұрын

very clear explanation :)

@c0nd4 4 жыл бұрын

Thank you!

@ca7986 3 жыл бұрын

You are amazing dude 👌

@c0nd4 3 жыл бұрын

Thanks, I appreciate the support!

@shift3y 3 жыл бұрын

Can the initial bloodhound query to AD be detected ? This would appear as a large LDAP query, is that right?

@c0nd4 3 жыл бұрын

Oh yeah, Bloodhound can be very noisy and is typically caught. They have some stealth settings but effectiveness will vary.

@shift3y 3 жыл бұрын

@@c0nd4 Thanks! Great channel, subscribed!

@c0nd4 3 жыл бұрын

Appreciate it 😃

@danell12345 3 жыл бұрын

Good job - one quick question I had was how did you create your user and group infrastructure? Did you do this manually adding random users assinging them to groups/roles or some kind of script? Obvs this is a testing environment.

@c0nd4 3 жыл бұрын

I used BadBlood which you can find here. github.com/davidprowe/BadBlood I then assigned a few group permissions manually to showcase some more complex attack paths with Bloodhound

@danell12345 3 жыл бұрын

@@c0nd4 will check it out - TY!

@archersterling4044 3 жыл бұрын

Hey bro how did you automate the domain configurations? I need to build a lab environment for work related research.

@chiranjeevinaidu3660 3 жыл бұрын

Hello I wanted to ask if we can make bloodhound portable for windows 10 for better use

@iakashx 4 жыл бұрын

Hi. Is this allowd for OSCP exam.?? And thank you for this video. Happy Thanksgiving 🤗

@c0nd4 4 жыл бұрын

Hey! Bloodhound should be allowed on the exam, but I'm not sure if you would need it. Glad you enjoyed the video, and Happy Thanksgiving!

@pentestsky 4 жыл бұрын

@@c0nd4 no bloodhound in oscp

@KaliLinuxIn 4 жыл бұрын

Kuch Bhi.....

@archersterling4044 3 жыл бұрын

@@c0nd4 OSCP literally has no environment where bloodhound should be relevant.

@8080VB 3 жыл бұрын

I dont understand , how did you generated the loot.zip file?

@sul3y 4 жыл бұрын

Thank you

@LeonCheater13 3 жыл бұрын

Hi nice video :) How to archive the GenericAll permission like you did? How to I need to configure my "Account managers" group to have GenericAll over Domain Admins? Thanks in advance

@c0nd4 3 жыл бұрын

The term AD uses for this is "Delegating control". Knowing the terminology helps find good resources on Google 😃 This article should help you do what you need. Good luck! www.beyondtrust.com/docs/ad-bridge/how-to/delegate-domain-join-privileges/how-to-delegate-control.htm

@LeonCheater13 3 жыл бұрын

@@c0nd4 Wow thank you very much :)

@jakeedmondson5288 3 жыл бұрын

I was able to get everything installed properly but when trying to run bloodhound-python I just receive an error. I may have not been in the proper directory which I don't see in your tutorial. Any help is appreciated. Thanks.

@c0nd4 3 жыл бұрын

What's the error? Can't really offer help without knowing the error

@jakeedmondson5288 3 жыл бұрын

@@c0nd4 When opening a terminal window I am not sure where to go from there. I see from your video you are in a Bloodhound directory. Did you just create that or was that created from the install? I only see the Bloodhound folder under lib. I am almost certain everything installed properly though.