Bloodhound

Start backend. sudo neo4j console credentials: neo4j:neo4j1 on kali

on victim run Import-Module SharpHound.ps1

Invoke-Bloodhound -CollectionMethod All -Domain CONTROLLER.local -ZipFileName loot.zip

Unzip and drag and drop all the .json files into BloodHound

Click on Analysis (third button on the top left menu) and click on which you want to find

  • Find all Domain Admins

  • List all Kerberoastable Accounts

PreviousmeterpreterNextpowerview

Last updated