PlumHound

PlumHound - The BloodHoundAD Report Engine for Security Teams has been released as a Proof of Concept. It is designed for Blue and Purple teams to more effectively utilize BloodHoundAD within ongoing security life-cycles. By leveraging the BloodHoundAD pathfinding engine, PlumHound helps identify Active Directory security vulnerabilities that arise from business operations, procedures, policies, and legacy service operations. PlumHound functions by encapsulating BloodHoundAD's powerful graphical Neo4J backend Cypher queries into reports that are easy to consume for operational use. Analyzing the output generated by PlumHound can assist security teams in pinpointing and reinforcing common Active Directory configuration vulnerabilities and oversights. Release and Call to Action Background Sample Reports PlumHound Examples Default Task List and Default Credentials Default Task List, Specified Neo4j Server, and Quiet Output Path Analyzer (BlueHound Module) Option #1 Option #2 Busiest Path (BlueHound Module) Busiest Shortest Path to DA Busiest All Path to DA Detailed PlumHound Syntax Database Connection HTML Report Design Output and Variables TaskList Files TaskList File Syntax TaskList Sample: default.tasks Execution Modes Tasks Mode Single Query Mode Single Query with Standard Output