Software introduction

BloodHound It is a tool to visualize and analyze the relationship in the domain environment , In the form of drawings and lines , Users in the domain 、 Computer 、 Group 、Sessions、ACLs And all relevant users in the domain 、 Group 、 Computer 、 Landing information 、 The relationship between access control policies is more intuitively displayed in front of the red team personnel for more convenient analysis of the situation in the domain , More quickly upgrade your permissions in the domain . It can also enable members of the blue team to better detect the security of their own network system and ensure the security of the domain .

Neo4j Is a NOSQL Graphic database , It stores structured data on the network instead of tables ,Bloodhound Use this characteristic to make a reasonable analysis , It can more intuitively transform the data into node space ” To express relevant data .BloodHound By exporting relevant information in the domain , After collecting the data , Import it into Neo4j In the database , Perform presentation analysis .

Software use

install Neo4j Graph database