/ESEDHOUND

ESEDHOUND is a python script that extract datatable from the ntds.dit file to retrieve users, computers and groups. The goal is to send all the infos into Bloodhound to help incident responders for identifying AD objects.

Primary LanguagePythonGNU General Public License v3.0GPL-3.0

The ESEDHOUND project





ESEDHOUND is a python script that extract datatable from the ntds.dit file to retrieve users, computers and groups.

The goal is to send all the infos into Bloodhound to help incident responders for identifying AD objects.



Changelog


On last version (V 1.0) :
- Extract Users, Computers and Groups from ntds file



Usage



git clone https://github.com/Processus-Thief/ESEDHOUND
cd ESEDHOUND
python3 esedhound.py -ntds ntds.dit



Improvements


- Output results for BloodHound
- Extract ACLs from SD table



Based on https://github.com/libyal/libesedb
and the FUCKING OLD PYTHON2 TOOL https://github.com/csababarta/ntdsxtract