Skip to content

Releases: BloodHoundAD/BloodHound

BloodHound 3.0.5

22 Jul 13:20
Compare
Choose a tag to compare

This release fixes compatiblity with Neo4j 4.1 and fixes several bugs

  • Updated search query to be significantly faster
  • Fixed some prebuilt queries and renamed others
  • Populate raw query when using the back button
  • Update most of the packages used by BloodHound
  • Remove docs folder from builds

3.0.4

13 Apr 23:04
Compare
Choose a tag to compare
  • Significantly decrease node lookup times by applying objectid index to all node labels
  • Fix effective inbound GPO count

BloodHound 3.0.3

10 Mar 19:33
Compare
Choose a tag to compare

This release adds a new modal for displaying errors in graph queries.

Bugfixes:
Fix domain queries when data is incomplete
Fix foreign admins query
Fix PSRemote ingestion
Fixes an inconsistency in the output format

Fixes GPO collection of groups thanks to @sploutchy

BloodHound 3.0.2

24 Feb 19:37
Compare
Choose a tag to compare

This release fixes unknown nodes not being properly updated during ingestion. As a result, cross domain logic should be functional again.

You will need to clear your database and re-import data after using this release. Re-doing data collection will not be required,

BloodHound 3.0.1

19 Feb 19:08
Compare
Choose a tag to compare

This release fixes some bugs with the 3.0.0 release, and reverts timestamps back to integers in the database.

BloodHound 3.0

11 Feb 20:02
Compare
Choose a tag to compare

This is a major feature release for BloodHound, introducing several new features, optimizations, and bugfixes.

OLD DATABASES WILL NOT BE COMPATIBLE WITH BLOODHOUND 3.0

Changelog

New Edges

Added the following new attack paths/edges

  • ReadGMSAPassword - The ability to read the password of a Group Managed Service Account
  • HasSIDHistory - The ability to authenticate automatically as another user from a domain migration
  • CanPSRemote - The ability to start a PSremote session with the remote computer (membership in the Remote Management Users group) (Thanks to @RiccardoAncarani for the original PR)
  • ACL Control for OUs

User Interface

  • Security Fixes (Thanks to @moloch, @6661620a)
  • Reworked node displays to support collapsing data
  • Added a confirmation dialog for drawing large graphs
  • Prevented expensive queries from running automatically, now requires user input
  • Improved Dark Mode support

SharpHound

  • Complete rewrite, targetting .Net 4.5.
  • Options have completely changed, use SharpHound.exe --help
  • Performance and accuracy improvements across the board
  • Database index changed from name to objectid (SID/GUID)

BloodHound 2.2.1

29 Aug 15:13
Compare
Choose a tag to compare

This is a bugfix release fixing a code injection vulnerability issue in BloodHound.

Thanks to @6661620a for the report

JSON export is also fixed.

BloodHound 2.2.0 - The SQLAdmin Update

03 Jul 19:26
Compare
Choose a tag to compare

This release adds the new SQLAdmin edge, thanks to help from Scott Sutherland (@_nullbind). The edge indicates the possibility of SA privileges on a mssql instance, enumerated from ServicePrincipalNames. Help text has been added for the new edge.

The release also contains several bug fixes for different LDAP enumeration issues, and speed improvements in SharpHound collection and ingestion.

The sample database has also been updated to a modern version which include all the new edges in a realistic environment.

BloodHound 2.1.0 - The Fix Stuff Update

12 Mar 15:58
Compare
Choose a tag to compare

This release fixes a large number of bugs, as well as adds the AddAllowedToAct and AllowedToAct edges to exploit the Resource Based Constrained Delegation attack. For more details, see the blog post on the SpecterOps Blog here

BloodHound 2.0.5

15 Jan 20:37
Compare
Choose a tag to compare

This is a bugfix release.

Fixed bugs with GPLink ingestion as well as some Ace filtering.