Skip to content

Instantly share code, notes, and snippets.

Created March 26, 2021 09:17
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
Star You must be signed in to star a gist
Save Hackndo/8b461b8b235142829e34eaa03c621a5e to your computer and use it in GitHub Desktop.
Generate a BloodHound query to set users as owned from a usernames file
import argparse
import os
import logging
import sys
parser = argparse.ArgumentParser(
description='Generate a Neo4J request to own a list of users'
parser.add_argument('users_file', action='store', help='User file containing usernames')
parser.add_argument('domain', action='store', help='Domain name (FQDN)')
args = parser.parse_args()
if not os.path.isfile(args.users_file):
logging.error("File {} doesn't exist".format(args.users_file))
if "." not in args.domain:
logging.error("Fully qualified domain name is required")
users_file = args.users_file
domain = args.domain.upper()
with open(users_file, 'r') as f:
users = " OR ".join(["\"{}@{}\"".format(user.rstrip('\n').upper(), domain) for user in f])
print("MATCH (u:User) WHERE {} SET u.owned=true RETURN u".format(users))
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment