Releases: SpecterOps/BloodHound-Legacy
BloodHound 1.3 - The ACL Attack Path Update
This release expands the BloodHound attack graph schema to include Active Directory object control edges. These edges can be used to take control of other Active Directory users and groups, as well as computers if LAPS is present in the environment.
Changelog
User Interface
- Organized user, computer and group node info tabs into relevant sections.
- Added outbound and inbound explicit, group delegated, and transitive object control info and queries to user, computer and group nodes.
- Rewrote several of the base cypher queries to improve accuracy and speed.
- Fixed bug in login window
BloodHound 1.2.1
This is a minor release fixing some bugs and adding minor features
Changelog
User Interface
- Fixed bug with hierarchical layout not displaying single level graphs
- Added icons to search bar and spotlight displays
- Added save password to login page
- Fixed creation of database constraints
BloodHound 1.2
This release changes the communications channel from WebSockets to native Node Channels (thanks Neo4j devs), along with several other changes
Changelog
User Interface
- Fixed authentication issues introduced with Neo4j 3.1.0
- Updated npm packages
- The User Interface now communicates over native Node.JS channels instead of websockets with the database.
- Connections to database now use TLS
- Huge CSV ingestion speed increase
- Support for ingesting multiple CSV files by selecting multiple files
- Fixed ingestion of large CSV files, should no longer break on huge files
- Rewrite of login screen to account for new cases
- Update sessions query to significantly speed up query time
- Added support for upcoming schema expansion
- Removed noverlap from hierarchical layout, should be more usable
- Added a button to clear sessions
BloodHound 1.1 - Bolt Rework
This release replaces the backend communications protocol for the User Interface from the REST API to the Bolt API, a more efficient and stable communications protocol.
Important Information
Because the user interface no longer uses the REST API, the URL to log into the database has changed. The default is now bolt://localhost:7687. The URI for the powershell ingestor has NOT changed.
Armv7l Build
Electron now builds an armv7l version of applications. This is completely untested, but the build will be included for completeness purposes. Feedback on this build if you have the capability of testing it would be fantastic!
Changelog
User Interface
- Change processing of node folding to a background process preventing lockups during the processing stage of displaying information
- Change communication protocol to bolt
- Fix domain node calculations
- Change pre-built queries to Top 10 displays instead of single nodes
- Rewrite all queries to use parameters instead of string builders, allowing for special characters
- Rewrite CSV ingestion logic for speed increase and parameters
- Use shortestPath instead of allShortestPaths to reduce information overload in large graphs and significantly improve query time. allShortestPaths is still accessible by using the pathfinder
BloodHound 1.0.1
Changelog
User Interface
- Fix Building/Running on Linux
- Fix Prebuilt Queries on OSX/Linux (thanks @bismark-foofus)
- Add 2 new prebuilt queries (thanks @Beercow)
- Fix Get Member tooltip query (thanks @byt3bl33d3r)
- Change CSV Ingestion to Transactional Endpoint instead of Batch
- Add Progress Bar to CSV Ingestion
- Fix trusts.csv ingestion
- Add indexes/uniqueness constraints
- Updated React
- Add session count to database info tab
- Change style for TrustedBy edges
Ingestor
- Change rest API endpoint to transactional instead of batch (thanks @dschaudel)
- Fixes for null SID issues (thanks @egru and @mbrancato)
- Fix loop in ingestion (thanks @ktwombley)
- Fixes for #20, #17, #15,
The precompiled mac release for 1.0.1 will be coming later
BloodHound 1.0.0
The initial release of BloodHound!