Announcements

SharpHound Hardening Guidelines

We commonly receive questions about how to properly secure the server and service account utilized for SharpHound, particularly in environments that opt for privileged collection support. As a result, our team has researched, tested, and published recommendations on configuring the SharpHound server and service account to mitigate the most common risks to the configuration. You can find those recommendations in our documentation here.

Summary

  • BloodHound Enterprise
    • New and Improved Features - Object type filters are now available in the modify Tier Zero view.
    • Bug Fixes - “Unknown error” when attempting to Explore an Attack Path
  • SharpHound Enterprise (v1.0.25 GA, v2.0.7 Early Access)
    • SharpHound v2.0.7 - fixes a critical collection issue in v2.0.6 and clarifies an error message displayed during local group collection.
  • AzureHound Enterprise (v1.2.3)
    • New and Improved Features - AzureHound will now log when ingest uploads fail to aid in troubleshooting.
    • Bug Fixes - AzureHound failing to check in to the keepalive endpoint during collection.

BloodHound Enterprise

  • Improved Functionality
    • The Tier Zero pane search window now supports the ability to filter for objects by type! Prepend your search term with an object type to improve your search accuracy. Complete documentation on this functionality is here.
  • Bug Fixes
    • In specific circumstances, clicking “Explore” on an Attack Path would result in an unknown error; this has been resolved.
    • Fixed a typo in the Entity Panel.

SharpHound Enterprise (v1.0.25 GA, v2.0.7 Early Access)

Minimum version of SharpHound Service to support all current functionality: v2.0.7
  • Bug Fixes
    • Fixes a critical collection issue in v2.0.6 (all customers running v2.0.6 should upgrade to 2.0.7 ASAP, our team will follow up with you directly)
    • Clarifies an error message displayed during local group collection
NOTE: Upgrading to SharpHound v2+ must occur concurrently on all services and requires enabling the “User Rights Assignment Collection” experimental feature at the same time. Please contact your TAM or respond to this email for assistance.

AzureHound Enterprise (v1.2.3 GA)

Minimum version of AzureHound Service to support all current functionality: v1.2.3
  • New and Improved Features
    • AzureHound will now log when ingest uploads fail to aid in troubleshooting.
  • Bug Fixes
    • AzureHound failed to check in to the keepalive endpoint during collection.