Wow, very great video! I learned a lot, for example I didn't know that you can collect the data with Python. Thanks for all the tips in Bloodhound and the BadBlood you mentioned in another comment, I'll definitely check it out too! Thanks a lot!
Hi, I'm new to the world of security administration, and I was hoping to get some guidance from someone with your expertise. Do you have any advice on mapping out a career path in this area?
Good job - one quick question I had was how did you create your user and group infrastructure? Did you do this manually adding random users assinging them to groups/roles or some kind of script? Obvs this is a testing environment.
I used BadBlood which you can find here. github.com/davidprowe/BadBlood I then assigned a few group permissions manually to showcase some more complex attack paths with Bloodhound
I was able to get everything installed properly but when trying to run bloodhound-python I just receive an error. I may have not been in the proper directory which I don't see in your tutorial. Any help is appreciated. Thanks.
@@c0nd4 When opening a terminal window I am not sure where to go from there. I see from your video you are in a Bloodhound directory. Did you just create that or was that created from the install? I only see the Bloodhound folder under lib. I am almost certain everything installed properly though.
Hi nice video :) How to archive the GenericAll permission like you did? How to I need to configure my "Account managers" group to have GenericAll over Domain Admins? Thanks in advance
The term AD uses for this is "Delegating control". Knowing the terminology helps find good resources on Google 😃 This article should help you do what you need. Good luck! www.beyondtrust.com/docs/ad-bridge/how-to/delegate-domain-join-privileges/how-to-delegate-control.htm
![[Live สด] การออกรางวัลสลากกินแบ่งรัฐบาล งวดวันที่ 16 พฤศจิกายน 2567](http://i.ytimg.com/vi/wPd7VFfWHIA/mqdefault.jpg)
I use Bloodhound on every internal assessment, but I never knew about the ability to run collectors remotely with Python. Thanks for sharing!
Awesome! Thank you for the support!
Supposedly sharphound.exe is a more stable and reliable collector?
Its amazing how u explain it, its easy to soak with just one run...thank you
Please make more of these videos on Active Directory. Absolutely loved this one !
I do plan on it 🙂
Thanks Conda! This was key to using bloodhound without having local access to the domain.
Keep the AD videos coming man. Finding good AD guides is hard. Love your videos!
Thank you!
This is a great explanation. Good work
Thank you!
I am getting this job. Thank you.
Thanks heaps, for making this great video demonstration.
Appreciate the support 👍
Great video! Thank you so much!!
Wow, very great video! I learned a lot, for example I didn't know that you can collect the data with Python. Thanks for all the tips in Bloodhound and the BadBlood you mentioned in another comment, I'll definitely check it out too! Thanks a lot!
Glad you enjoyed the video!
Great explanation!
thank u so much for this awesome tutorial video.
No problem! Glad you enjoyed it
Great tutorial!
Thank you!
Thank you
very clear explanation :)
Thank you!
awesome video...it was very informative. subbed.
Thank you 😁
You are amazing dude 👌
Thanks, I appreciate the support!
Hi, I'm new to the world of security administration, and I was hoping to get some guidance from someone with your expertise. Do you have any advice on mapping out a career path in this area?
Good job - one quick question I had was how did you create your user and group infrastructure? Did you do this manually adding random users assinging them to groups/roles or some kind of script? Obvs this is a testing environment.
I used BadBlood which you can find here. github.com/davidprowe/BadBlood
I then assigned a few group permissions manually to showcase some more complex attack paths with Bloodhound
@@c0nd4 will check it out - TY!
Can the initial bloodhound query to AD be detected ? This would appear as a large LDAP query, is that right?
Oh yeah, Bloodhound can be very noisy and is typically caught. They have some stealth settings but effectiveness will vary.
@@c0nd4 Thanks! Great channel, subscribed!
Appreciate it 😃
Hello
I wanted to ask if we can make bloodhound portable for windows 10 for better use
Hi. Is this allowd for OSCP exam.??
And thank you for this video.
Happy Thanksgiving 🤗
Hey! Bloodhound should be allowed on the exam, but I'm not sure if you would need it. Glad you enjoyed the video, and Happy Thanksgiving!
@@c0nd4 no bloodhound in oscp
Kuch Bhi.....
@@c0nd4 OSCP literally has no environment where bloodhound should be relevant.
Hey bro how did you automate the domain configurations?
I need to build a lab environment for work related research.
nice keep going sorry for the late view
Thank you for the constant support!
more ad videos please
I was able to get everything installed properly but when trying to run bloodhound-python I just receive an error. I may have not been in the proper directory which I don't see in your tutorial. Any help is appreciated. Thanks.
What's the error? Can't really offer help without knowing the error
@@c0nd4 When opening a terminal window I am not sure where to go from there. I see from your video you are in a Bloodhound directory. Did you just create that or was that created from the install? I only see the Bloodhound folder under lib. I am almost certain everything installed properly though.
Hi nice video :) How to archive the GenericAll permission like you did? How to I need to configure my "Account managers" group to have GenericAll over Domain Admins? Thanks in advance
The term AD uses for this is "Delegating control". Knowing the terminology helps find good resources on Google 😃 This article should help you do what you need. Good luck!
www.beyondtrust.com/docs/ad-bridge/how-to/delegate-domain-join-privileges/how-to-delegate-control.htm
@@c0nd4 Wow thank you very much :)
I dont understand , how did you generated the loot.zip file?
Puedes dejar el video con subtitulos al español ? Por favor.
its kind of ugly though.