Comments (8)
CSpanias
commented on August 27, 2024
1
If you go further down on 0xdf's walkthrough (link directly above), it seems that is something to do with the -c all method. If you change that it works as expected.
@NeffIsBack the same goes when executing it through NetExec!
from bloodhound.py.
imhasin
commented on August 27, 2024
I have a similar issue running bloodhound collection using netexec. Here's the issue I opened there. Pennyw0rth/NetExec#243 (comment)
from bloodhound.py.
NeffIsBack
commented on August 27, 2024
I am running into a similar issue (besides the weird "Could not find Global Catalog in this domain" that i need to fix somehow):
EDIT: Now that i am looking at the error again it might be different though. Gonna try to get to the root cause later
from bloodhound.py.
NeffIsBack
commented on August 27, 2024
Oh your stacktrace is different from the one you posted on NetExec:
Pennyw0rth/NetExec#243 (comment)
Pennyw0rth/NetExec#243 (comment)
The ones there have the exact same stacktrace as mine
from bloodhound.py.
dirkjanm
commented on August 27, 2024
The issue from the first post is triggered because likely both signing and channel binding are enforced, which is currently not supported by BloodHound.py. As a result, the authentication fails, and a stacktrace is triggered further in the code.
from bloodhound.py.
NeffIsBack
commented on August 27, 2024
Hi, the combination of signing and channel binding isn't supported with NTLM auth in netexec as well (turned them on for sake of demonstration):
I also checked the settings and these are currently on negioate signing and don't enforce binding:
from bloodhound.py.
NeffIsBack
commented on August 27, 2024
Also user enumeration looks like its working:
from bloodhound.py.
imhasin
commented on August 27, 2024
This is a link to a writeup on the same box in the same step using bloodhound-python. It works for some reason.
oxdf@hacky$ bloodhound-python -d rebound.htb -c all -u oorend -p '1GR8t@$$4u' -ns 10.10.11.231 --zip
INFO: Found AD domain: rebound.htb
INFO: Getting TGT for user
INFO: Connecting to LDAP server: dc01.rebound.htb
WARNING: LDAP Authentication is refused because LDAP signing is enabled. Trying to connect over LDAPS instead...
INFO: Found 1 domains
INFO: Found 1 domains in the forest
INFO: Found 2 computers
INFO: Connecting to LDAP server: dc01.rebound.htb
WARNING: LDAP Authentication is refused because LDAP signing is enabled. Trying to connect over LDAPS instead...
INFO: Found 16 users
INFO: Found 53 groups
INFO: Found 2 gpos
INFO: Found 2 ous
INFO: Found 19 containers
INFO: Found 0 trusts
INFO: Starting computer enumeration with 10 workers
INFO: Querying computer: gmsa.rebound.htb
INFO: Querying computer: dc01.rebound.htb
INFO: Skipping enumeration for gmsa.rebound.htb since it could not be resolved.
INFO: Done in 00M 22S
INFO: Compressing output into 20240317211834_bloodhound.zip
And this is a video walkthrough of using netexec bloodhound module. It also works fine there.
from bloodhound.py.
Related Issues (20)
- AttributeError: Module Collections HOT 1
- NTLM needs domain\username and a password when -no-pass is set
- null displayName not handled HOT 2
- None containerdn is not handled HOT 3
- Retrieving trust forest data HOT 1
- LDAP Anonymous Bind support HOT 1
- No retrieval of `CanRDP` or `AdminTo` information
- Attributes going through ensure_string aren't ensured as strings if they are multi-valued
- [bug] Function `get_entry_property()` is not expecting a `None` entry, leading to TypeError: 'NoneType' object is not subscriptable
- Kerberos ticket ccache authentication not working
- WriteSPN does not retrieve right data
- Resolver error
- bloodhound-python while running this i got some errors HOT 1
- I was able to run bloodhound-python the first time but now I get this error every single time HOT 2
- UnicodeDecodeError: 'utf-8' codec can't decode byte 0xff in position 8: invalid start byte When specifying Cache file to use HOT 1
- DNS operation timed out. HOT 1
- BloodhoundCE
- entry['attributes'][prop] TypeError: 'NoneType' object is not subscriptable
- Bloodhound CE (Potential Issue with domain trusts)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from bloodhound.py.