. .\SharpHound.ps1
Invoke-BloodHound -CollectionMethod All -Verbose
Then we can upload the JSON files to get a visual render with the GUI.
I can look for myself:
In Node Info, scroll down to 'LOCAL ADMIN RIGHTS' and expand 'Derivative Local Admin Rights' to find if student613 has derivate local admin rights on any machine!
To complete the task we go on the Web UI of bloodhound provided by the course, login with the creds and follow with this methodology:
n the Web UI, click on Cypher -> Click on the Folder Icon -> Pre-Built Searches -> Active Directory -> (Scroll down) -> Shortest paths to Domain Admins