Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[BUG] Module "powershell/situational_awareness/network/bloodhound3" doesn't produce usable data #599

Open
h49nakxs opened this issue Aug 18, 2022 · 1 comment
Labels
enhancement New feature or request

Comments

@h49nakxs
Copy link

h49nakxs commented Aug 18, 2022

Note: Please fill out all sections (if applicable) and do not delete the below section headers, otherwise the bot will close the issue.

Empire Version

4.7.1 BC Security Fork

OS Information (Linux flavor, Python version)

  • OS: Linux host 5.18.0-kali5-amd64
  • Python: 3.10.5

Describe the bug

Module "powershell/situational_awareness/network/bloodhound3" does not produce data compatible with latest version of Bloodhound (4.2.0)

To Reproduce

Generate .json files with module "powershell/situational_awareness/network/bloodhound3" with default settings and try to upload them in Bloodhound 4.2.0. The following text error is displayed : File created from incompatible collector

Expected behavior

Data generated by the ingestor correctly uploaded to Bloodhound.

Screenshots

Additional context

I've also tested with the latest version of the SharpHound powershell script (https://github.com/BloodHoundAD/SharpHound) and it works. The JSON structure between the latest script and the version included in Empire is clearly different.

@h49nakxs h49nakxs added the bug Something isn't working label Aug 18, 2022
@Cx01N
Copy link
Member

Cx01N commented Aug 26, 2022

The Bloodhound3 is not compatible with the newest version of bloodhound, unfortunately. You can downgrade your version to 3 and the version in Empire will work.

You have a few options if you want to run it.

  1. You can always use invoke-assembly and run the executable directly in Empire without a module. This option will let you run it immediately.
  2. You can create a new module using the info from the Wiki and submit a PR.
  3. We can add it to our board and get it added in a future release (warning: we are in the middle of 5.0 dev, so it might be a while)

@Cx01N Cx01N added enhancement New feature or request and removed bug Something isn't working labels Sep 13, 2022
vinnybod added a commit that referenced this issue Apr 30, 2023
* fixed powerview issue with dynamic imports

* updated powerview to zerodaylabs version

---------

Co-authored-by: Vincent Rose <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants