The BloodHound data collector for Microsoft Azure
Get AzureHound
Release Binaries
Download the appropriate binary for your platform from one of our Releases.
Rolling Release
The rolling release contains pre-built binaries that are automatically kept up-to-date with the main branch and can be downloaded from here.
Warning: The rolling release may be unstable.
Compiling
Prerequisites
- Go 1.18 or later
To build this project from source run the following:
go build -ldflags="-s -w -X github.com/bloodhoundad/azurehound/constants.Version=`git describe tags --exact-match 2> /dev/null || git rev-parse HEAD`"
Usage
Quickstart
Print all Azure Tenant data to stdout
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT"
Print all Azure Tenant data to file
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT" -o "mytenant.json"
Configure and start data collection service for BloodHound Enterprise
❯ azurehound configure(follow prompts)❯ azurehound startCLI
❯ azurehound --helpAzureHound vx.x.xCreated by the BloodHound Enterprise team - https://bloodhoundenterprise.ioThe official tool for collecting Azure data for BloodHound and BloodHound EnterpriseUsage: azurehound [command]Available Commands: completion Generate the autocompletion script for the specified shell configure Configure AzureHound help Help about any command list Lists Azure Objects start Start Azure data collection service for BloodHound EnterpriseFlags: -c, --config string AzureHound configuration file (default: /Users/dlees/.config/azurehound/config.json) -h, --help help for azurehound --json Output logs as json -j, --jwt string Use an acquired JWT to authenticate into Azure --log- file string Output logs to this file --proxy string Sets the proxy URL for the AzureHound service -r, --refresh-token string Use an acquired refresh token to authenticate into Azure -v, --verbosity int AzureHound verbosity level (defaults to 0) [Min: -1, Max: 2] --version version for azurehoundUse "azurehound [command] --help" for more information about a command.