What!

Bloodhound and GoFetch

(security tools)

by Tony Zafiropoulos

Bloodhound is a single page Javascript web application, built on top of Linkurious, compiled with Electron, with a Neo4jdatabase fed by a PowerShell ingestor.

Bloodhound uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment. Attackers can use Bloodhound to easily identify highly complex attack paths that would otherwise be impossible to quickly identify. Defenders can use Bloodhound to identify and eliminate those same attack paths. Both blue and red teams can use Bloodhound to easily gain a deeper understanding of privilege relationships in an Active Directory environment.

GoFetch is a tool to automatically exercise an attack plan generated by the Bloodhound application.

We cannot actually used these tools as we may compromise the active directory environment.

Autobiography/Biography:

Tony Zafiropoulos Systems Engineer, CISA Certified.

Monthly Meetings

The regular Graybar meeting room is open and available from 6:30 PM to 9:00 PM. At 6:45 PM we start with introductions, announcements, current events of interest, and a general CALL FOR HELP segment. Then we will go into the presentation of our main topic sometime around or after 7:00 PM.

Where!

Graybar Electric Co, Inc.
11885 Lackland Road
Maryland Heights MO 63146
Google Maps

When!

Thursday January 18th, 2018

from 6:30PM till 9:00PM Central Time

Next scheduled meeting dates

  • 2018
    • 2018-01-18 Bloodhound and GoFetch (Security Tools) by Tony Zafiropoulos, Systems Engineer, CISA Certified
    • 2018-02-15 TOPIC To Be Determined Offer to talk!
    • 2018-03-15 TOPIC To Be Determined Offer to talk!

Possible Future Topics

  • Gaming on Linux
  • Red Hat Enterprise Linux (RHEL 7.x)
  • CentOS (compatible rebuild of RHEL)
  • iSCSI
  • NoSQL
  • UEFI and efibootmgr
  • BIOS, biosdecode and dmidecode
  • CPU architecures, /proc/cpuinfo, and procinfo
  • Your suggestions?

A SLUUG Special Interest Group

STLLUG is also loosely affiliated with the St. Louis Unix Users Group (SLUUG), as one of its Special Interest Groups. Under SLUUG care web page support is provided. Membership dues, fees or other charges are NOT required. These meetings are free, public and open to all.

SLUUG Sponsored meetings in the STL Metro Area

Contact the LUG if you have a presentation you would like to have considered for selection.

This site hosted by the Saint Louis Unix Users Group