-
Notifications
You must be signed in to change notification settings - Fork 373
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Integration of Bloodhound Community Edition #300
Comments
Valid point. We should move to the new Community Edition. You agree @fastlorenzo? On a high level this should not be too hard I believe: just use the new docker container from them and test. Feel free to add a PR if you see the time. |
@MarcOverIP agreed indeed, in the past I've made a small container that was taking SharpHound's JSON/ZIP files as input from a mount and was ingesting them directly into Neo4j. |
I'll have a look into it and prepare a PR for the RedELK part first. I think it might make sense to integrate the full stack e.G not only the Neo4J db but also the new WebApp with another postgresql db. That would spawn three new dockers and it would be required to expose the Bloodhound WebApp via nginx. The app should be able to handle auth itself. Looging at https://github.com/SpecterOps/BloodHound/blob/main/examples/docker-compose/README.md this should be fairly simple to integrate. |
I a have it mostly done, there is however one issue with the reverse proxy support of the Bloodhound Community Edition as it wan'ts to be served from the root directory e.G I have opened an issue SpecterOps/BloodHound#94 , maybe there is a way to change the root url altogether. |
Any help we can provide you on this? |
It seems that the app is working now, I'll do some cleanup and than open a PR so someone can test it. |
Current status:
The include for the bloodhound server is commented out when limited is present.
The Postgres password is missing in the creds file, it is porperly set in the |
The Postgres password issue was resolved and PR #304 was opened. |
Hi are there, this is more of a question/feature request.
Are there plan's already to integrate the bloodHound Community Edition with RedELK?
It seems that SpecterOps has deprecated the original BloodHound Repo.
Are there any dependencies from RedELK to the BloodHound version that could prevent "just plugging in" the Community Edition?
The text was updated successfully, but these errors were encountered: