Releases: BloodHoundAD/BloodHound
BloodHound 3.0.5
This release fixes compatiblity with Neo4j 4.1 and fixes several bugs
- Updated search query to be significantly faster
- Fixed some prebuilt queries and renamed others
- Populate raw query when using the back button
- Update most of the packages used by BloodHound
- Remove docs folder from builds
3.0.4
- Significantly decrease node lookup times by applying objectid index to all node labels
- Fix effective inbound GPO count
BloodHound 3.0.3
This release adds a new modal for displaying errors in graph queries.
Bugfixes:
Fix domain queries when data is incomplete
Fix foreign admins query
Fix PSRemote ingestion
Fixes an inconsistency in the output format
Fixes GPO collection of groups thanks to @sploutchy
BloodHound 3.0.2
This release fixes unknown nodes not being properly updated during ingestion. As a result, cross domain logic should be functional again.
You will need to clear your database and re-import data after using this release. Re-doing data collection will not be required,
BloodHound 3.0.1
This release fixes some bugs with the 3.0.0 release, and reverts timestamps back to integers in the database.
BloodHound 3.0
This is a major feature release for BloodHound, introducing several new features, optimizations, and bugfixes.
OLD DATABASES WILL NOT BE COMPATIBLE WITH BLOODHOUND 3.0
Changelog
New Edges
Added the following new attack paths/edges
- ReadGMSAPassword - The ability to read the password of a Group Managed Service Account
- HasSIDHistory - The ability to authenticate automatically as another user from a domain migration
- CanPSRemote - The ability to start a PSremote session with the remote computer (membership in the Remote Management Users group) (Thanks to @RiccardoAncarani for the original PR)
- ACL Control for OUs
User Interface
- Security Fixes (Thanks to @moloch, @6661620a)
- Reworked node displays to support collapsing data
- Added a confirmation dialog for drawing large graphs
- Prevented expensive queries from running automatically, now requires user input
- Improved Dark Mode support
SharpHound
- Complete rewrite, targetting .Net 4.5.
- Options have completely changed, use SharpHound.exe --help
- Performance and accuracy improvements across the board
- Database index changed from name to objectid (SID/GUID)
BloodHound 2.2.1
This is a bugfix release fixing a code injection vulnerability issue in BloodHound.
Thanks to @6661620a for the report
JSON export is also fixed.
BloodHound 2.2.0 - The SQLAdmin Update
This release adds the new SQLAdmin edge, thanks to help from Scott Sutherland (@_nullbind). The edge indicates the possibility of SA privileges on a mssql instance, enumerated from ServicePrincipalNames. Help text has been added for the new edge.
The release also contains several bug fixes for different LDAP enumeration issues, and speed improvements in SharpHound collection and ingestion.
The sample database has also been updated to a modern version which include all the new edges in a realistic environment.
BloodHound 2.1.0 - The Fix Stuff Update
This release fixes a large number of bugs, as well as adds the AddAllowedToAct and AllowedToAct edges to exploit the Resource Based Constrained Delegation attack. For more details, see the blog post on the SpecterOps Blog here
BloodHound 2.0.5
This is a bugfix release.
Fixed bugs with GPLink ingestion as well as some Ace filtering.