BloodHound

BloodHound is a tool that maps relationships in Active Directory as a graph. It reveals hidden attack paths from a low-privileged user to high-value targets like Domain Admin.

What humans miss in complex permission tangles, BloodHound finds with graph theory.

BloodHound models AD as nodes (users, groups, computers, OUs, GPOs) connected by edges (relationships).

Edges represent rights such as MemberOf, AdminTo, HasSession, or GenericAll. A chain of edges is an attack path.