
PlumHound
#Threat Defense#Vulnerability Management
A ruby script that scans for vulnerable 3rd-party web applications
PlumHound - BloodHoundAD Report Engine for Enhanced Security Analysis
PlumHound
- The BloodHoundAD Report Engine for Security Teams has been released as a Proof of Concept. It is designed for Blue and Purple teams to more effectively utilize BloodHoundAD within ongoing security life-cycles. By leveraging the BloodHoundAD pathfinding engine, PlumHound helps identify Active Directory security vulnerabilities that arise from business operations, procedures, policies, and legacy service operations. PlumHound functions by encapsulating BloodHoundAD's powerful graphical Neo4J backend Cypher queries into reports that are easy to consume for operational use.
Analyzing the output generated by PlumHound can assist security teams in pinpointing and reinforcing common Active Directory configuration vulnerabilities and oversights.
Release and Call to Action
Background
Sample Reports
PlumHound Examples
Default Task List and Default Credentials
Default Task List, Specified Neo4j Server, and Quiet Output
Path Analyzer (BlueHound Module)
Option #1
Option #2
Busiest Path (BlueHound Module)
Busiest Shortest Path to DA
Busiest All Path to DA
Detailed PlumHound Syntax
Database Connection
HTML Report Design
Output and Variables
TaskList Files
TaskList File Syntax
TaskList Sample: default.tasks
Execution Modes
Tasks Mode
Single Query Mode
Single Query with Standard Output