During our first unit this year, we set up Active Directory environments and used Bloodhound to perform reconnaissance to determine things like:
- What users are present within the environment
- What computers/endpoints are present within the environment
- What permissions do users have that can potentially be exploited
Bloodhound, however, is a pain to install natively
- We had to install a
neo4j database
- We had to make sure it was running in the background
- We had to install and configure Bloodhound, which could also be problematic
Solution: Use the Docker Image
- In this last lab, you will:
- Install Bloodhound using a
docker-compose.yml
- Perform reconnaissance on the
icsi.cyber Active Directory Network.
Follow these directions to install and run Bloodhound using Docker.
- The checkpoint for this lab is in the directions below.
Bloodhound Community Edition: Docker Setup