# SpecterOps ## Docs - [Accept Attack Path Findings](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/accept-findings.md) - [BloodHound Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/configuration.md) - [Search with Cypher](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/explore/cypher-search.md): Start exploring BloodHound's prebuilt Cypher queries to uncover relationships and gain deeper insights into your environment. - [Supported Cypher Syntax](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/explore/cypher-supported.md): This page documents the supported openCypher Syntax that BloodHound officially supports - [Search and pathfinding](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/explore/search.md): Search for objects and visualize relationships between them in the graph. - [The BloodHound Dashboard](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/overview.md): Learn how to use the BloodHound dashboard to analyze your data and identify attack paths. - [Posture Page](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/posture-page.md): Track security posture, attack path severity, and remediation progress over time with BloodHound Enterprise's risk visualization dashboard. - [Certification](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/certification.md): Understand the certification process for Privilege Zones and how to manage member approvals. - [Default Rules](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/default-rules.md): Explore and understand the default rules in Privilege Zones. - [History](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/history.md): Review the audit log of changes made to Privilege Zones over time. - [Labels](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/labels.md): Learn how to use labels to categorize and manage objects within Privilege Zones for better organization. - [Overview](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/overview.md): Discover how Privilege Zones help you organize and segment your environment based on sensitivity and access level. - [Rules](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/rules.md): Learn how to create, manage, and optimize rules in Privilege Zones to enhance BloodHound's analysis. - [Zones](https://specterops-bp-2211-og-specific-updates.mintlify.app/analyze-data/privilege-zones/zones.md): Organize and categorize objects in your environment using Privilege Zones. - [AzureHound Community Edition](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/ce-collection/azurehound.md) - [AzureHound Community Edition Flags](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/ce-collection/azurehound-flags.md) - [Create a gMSA for Use With SharpHound Community Edition](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/ce-collection/create-gmsa-community-edition.md) - [BloodHound CE Collection](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/ce-collection/overview.md) - [SharpHound Community Edition](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/ce-collection/sharphound.md): SharpHound Community Edition (CE) is the official data collector for BloodHound CE. It is written in C# and uses native Windows API functions and LDAP namespace functions to collect data from domain controllers and domain-joined Windows systems. - [SharpHound Community Edition Flags](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/ce-collection/sharphound-flags.md) - [Ad-hoc BHE Data Collection with SharpHound CE](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/ad-hoc-collection.md): Learn how to do ad-hoc data collection for BloodHound Enterprise using SharpHound Community Edition. - [Create a Data Collection Schedule](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/collection-schedule.md): Learn how to configure a SharpHound Enterprise collector client to run data collection on a schedule. - [Create a BloodHound Enterprise Collector Client](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/create-collector.md) - [SharpHound Enterprise Cross-Trust Collection](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/cross-trust.md) - [Data Reconciliation and Retention](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/data-retention.md) - [SharpHound Collection FAQ](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/faq.md): The following are common questions about the data collection capabilities provided by the SharpHound Enterprise service. - [Least-Privileged Collection in SharpHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/least-privileged-collection.md): Learn how to collect more than AD Structure data without Domain Admin. - [Monitor Data Collection](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/monitor.md): Learn how to monitor data collection activities in BloodHound Enterprise. - [Run an On Demand Scan](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/on-demand-scan.md): Learn how to run an on demand scan with a collector client in BloodHound Enterprise. - [BloodHound Enterprise Collection](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/overview.md): Learn about attack path data collection in BloodHound Enterprise. - [Privileged Collection in SharpHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/enterprise-collection/privileged-collection.md) - [Data Collection](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/overview.md): Learn how to run attack path data collection and ingestion. - [SharpHound Data Collection and Permissions](https://specterops-bp-2211-og-specific-updates.mintlify.app/collect-data/permissions.md): Learn how to collect data. - [BloodHound Community Edition Custom Installation](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/custom-installation.md): Learn how to install and customize BloodHound Community Edition (BHCE). - [Introduction to BloodHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/introduction.md) - [BloodHound Community Edition Sample Data](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/quickstart/ce-ingest-sample-data.md) - [BloodHound Community Edition Quickstart](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/quickstart/community-edition-quickstart.md): Set up a local instance of BloodHound Community Edition and start identifying and visualizing security risks in your environment. - [BloodHound Enterprise Quickstart](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/quickstart/enterprise-quickstart.md) - [BloodHound Enterprise Security Overview](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/security-boundaries/enterprise-security-overview.md) - [Modify Tier Zero](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/security-boundaries/modifying-tier-zero.md) - [Tier Zero: Members and Modification](https://specterops-bp-2211-og-specific-updates.mintlify.app/get-started/security-boundaries/tier-zero-members.md) - [Home](https://specterops-bp-2211-og-specific-updates.mintlify.app/home.md) - [AzureHound Enterprise Azure Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-azurehound/azure-configuration.md): This section details creating and configuring an Enterprise Application for AzureHound within Microsoft Entra ID, including API permissions, roles, and authentication certificate. - [Create an AzureHound Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-azurehound/create-configuration.md): Learn how to create a configuration file for AzureHound Enterprise data collection. - [Install and Upgrade AzureHound (Windows, Docker, or Kubernetes)](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-azurehound/installation-options.md) - [Run Multiple AzureHound Enterprise Collectors on One Server With Scheduled Tasks](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-azurehound/multiple-collectors.md) - [Deploying AzureHound Enterprise](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-azurehound/overview.md) - [AzureHound Enterprise System Requirements and Deployment Process](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-azurehound/system-requirements.md) - [Create a gMSA for Use With SharpHound Enterprise](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/create-gmsa.md) - [Install and Upgrade SharpHound Enterprise](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/installation-upgrade.md) - [SharpHound Enterprise Local Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/local-configuration.md) - [Modify the Service Account Used By SharpHound Enterprise](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/modify-service-account.md) - [Deploy SharpHound Enterprise](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/overview.md): Deploy and maintain SharpHound Enterprise for continuous automatic collection of Active Directory attack path data. - [SharpHound Enterprise System Requirements and Deployment Process](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/system-requirements.md) - [SharpHound Enterprise Tenant Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/tenant-configuration.md) - [Deploy a Tiered SharpHound Enterprise Collector Strategy](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/tiered-collector-strategy.md) - [Troubleshoot Local Collection Coverage](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/install-sharphound/troubleshooting.md) - [Install Data Collectors](https://specterops-bp-2211-og-specific-updates.mintlify.app/install-data-collector/overview.md) - [BloodHound JSON Formats](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/bloodhound-api/json-formats.md) - [Work With the BloodHound API](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/bloodhound-api/working-with-api.md) - [Integrate BloodHound Enterprise with Cortex XSOAR](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/cortex-xsoar/configure.md): Learn how to integrate BloodHound Enterprise with Cortex XSOAR by Palo Alto Networks. - [BloodHound Enterprise Cortex XSOAR integration design](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/cortex-xsoar/reference.md): Technical reference and design details for the BloodHound Enterprise Cortex XSOAR integration. - [Use Cortex XSOAR with BloodHound Enterprise](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/cortex-xsoar/use.md): Learn how to use Cortex XSOAR with BloodHound Enterprise to monitor and manage attack path findings. - [API and Integrations](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/overview.md): Leverage BloodHound's REST API and third-party integrations to extend functionality and maximize your security infrastructure investments. - [Integrate the BloodHound Enterprise Splunk app](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/splunk/install.md): Learn how to install and configure the BloodHound Enterprise Splunk app to ingest BloodHound Enterprise data into Splunk. - [Troubleshoot the BloodHound Enterprise Splunk app](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/splunk/troubleshoot.md): Learn how to troubleshoot common issues with the BloodHound Enterprise Splunk app using the BHE Integration Health dashboard. - [Use the BloodHound Enterprise Splunk app](https://specterops-bp-2211-og-specific-updates.mintlify.app/integrations/splunk/use.md): Learn how to use the BloodHound Enterprise Splunk app to visualize and analyze BloodHound Enterprise data within Splunk. - [Enable/Disable Multi-Factor Authentication](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/mfa.md) - [OIDC in BloodHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/oidc.md): BloodHound supports OIDC for Single Sign On to authenticate users to your tenant environment. - [OIDC: Okta Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/oidc-okta.md): This document provides instructions for creating an application within Okta for compatibility with BloodHound Enterprise. - [Authentication and Authorization](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/overview.md): Create and administer users of BloodHound using built-in authentication or SAML. - [SAML in BloodHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/saml.md): BloodHound supports SAML 2.0 for Single Sign On to authenticate users to your tenant environment. - [SAML: ADFS Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/saml-adfs.md): This document provides instructions for creating an application within ADFS for compatibility with BloodHound Enterprise. - [SAML: Auth0 Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/saml-auth0.md): This document provides instructions for creating an application within Auth0 for compatibility with BloodHound Enterprise. - [SAML: Entra ID Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/saml-entra-id.md): This document provides instructions for creating an application within Entra ID for compatibility with BloodHound Enterprise. - [SAML: Google IDP Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/saml-google.md): This document provides instructions for creating an application within Google for compatibility with BloodHound Enterprise. - [SAML: Okta Configuration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/saml-okta.md): This document provides instructions for creating an application within Okta for compatibility with BloodHound Enterprise. - [Administer Users and Roles](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/auth/users-and-roles.md) - [BloodHound Configuration Supplement](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/bh-config.md): This page provides example configuration details for BloodHound and BloodHound Enterprise - [BloodHound Shortcuts](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/bh-shortcuts.md): List of the keyboard shortcuts available in BloodHound - [BloodHound Enterprise NIST CSF v1.1 Compliance Resource](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/compliance-framework/nist-csf-v1-1.md): The Following information is meant to provide a more detailed and in-depth view of compliance items that BloodHound Enterprise can provide coverage for. - [BloodHound Enterprise NIST CSF v2 Compliance Resource](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/compliance-framework/nist-csf-v2.md): The Following information is meant to provide a more detailed and in-depth view of compliance items that BloodHound Enterprise can provide coverage for. - [BloodHound Enterprise NIST SP 800-171 Compliance Resource](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/compliance-framework/nist-sp-800-171.md): The Following information is meant to provide a more detailed and in-depth view of compliance items that BloodHound Enterprise can assist in providing coverage for. - [BloodHound Enterprise NIST SP 800-53 Rev.8 Compliance Resource](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/compliance-framework/nist-sp-800-53.md) - [BloodHound Enterprise Compliance Framework](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/compliance-framework/overview.md) - [BloodHound Enterprise Compliance Framework Resource](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/compliance-framework/resources.md): BloodHound Enterprise aids numerous organizations in meeting their compliance requirements through our continuous monitoring of identity Attack Path exposure within their environments. We're eager to support you and your auditors in gaining a deeper understanding of the inner workings of BloodHound… - [Administration](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/overview.md): Administer a BloodHound instance and its related components: users, roles, authentication, collector status, and general security. - [SharpHound Enterprise Service Hardening](https://specterops-bp-2211-og-specific-updates.mintlify.app/manage-bloodhound/securing-bloodhound-and-collectors/sharphound-hardening.md): The BloodHound team recommends the hardening actions described on this page to protect the SharpHound service account. The hardening recommendations are focused on the remediation of the attack techniques targeting service accounts. - [OpenGraph API](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/api.md): Information on how to use the OpenGraph API - [OpenGraph Best Practices](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/best-practices.md): Dos and don'ts for OpenGraph - [OpenGraph Custom Icons](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/custom-icons.md): How to set Custom Icons for your Custom Nodes - [OpenGraph FAQ](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/faq.md): The following are common questions about OpenGraph - [OpenGraph Graph Theory](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/graph-theory.md): Attack Graph Model Design Requirements and Examples - [OpenGraph Library](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/library.md): List of the OpenGraph models available to the community - [OpenGraph Community Incentive Program](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/ocip.md): Description of the OpenGraph Community Incentive Program (OCIP) and how to participate - [OpenGraph Overview](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/overview.md): Learn about OpenGraph in BloodHound. - [OpenGraph Quickstart](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/quickstart.md): Learn how to create and test OpenGraph data in BloodHound. - [OpenGraph Requirements](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/requirements.md): Requirements for using OpenGraph - [OpenGraph Schema](https://specterops-bp-2211-og-specific-updates.mintlify.app/opengraph/schema.md): Description of the OpenGraph JSON Schema - [Get entity controllables](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-base-entities/get-entity-controllables.md): Get a list, graph, or count of the principals this node can control. - [Get entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-base-entities/get-entity-controllers.md): Get a list, graph, or count of the principals that can control this node. - [Get entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-base-entities/get-entity-info.md): Get basic info and counts for this node. - [Get User entity admin rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-admin-rights.md): Get a list, graph, or count of the systems this user has admin rights to. - [Get User entity constrained delegation rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-constrained-delegation-rights.md): Get a list, graph, or count of the systems this user has constrained delegation rights to. - [Get User entity controllables](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-controllables.md): Get a list, graph, or count of the principals this user can control. - [Get User entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-controllers.md): Get a list, graph, or count of the principals that can control this User. - [Get User entity DCOM rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-dcom-rights.md): Get a list, graph, or count of the systems this user can execute DCOM on. - [Get User entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-info.md): Get info and counts for this User node. - [Get User entity membership](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-membership.md): Get a list, graph, or count of the groups this user is a member of. - [Get User entity PowerShell remote rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-powershell-remote-rights.md): Get a list, graph, or count of the systems this user can execute PowerShell remote on. - [Get User entity RDP rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-rdp-rights.md): Get a list, graph, or count of the systems this user has RDP rights to. - [Get User entity sessions](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-sessions.md): Get a list, graph, or count of the systems this user has an active session on. - [Get User entity SQL admin rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ad-users/get-user-entity-sql-admin-rights.md): Get a list, graph, or count of the systems this user has SQL admin rights to. - [Get AIA CA entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/aia-cas/get-aia-ca-entity-controllers.md): Get a list, graph, or count of the principals that can control this AIA CA. - [Get AIA CA entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/aia-cas/get-aia-ca-entity-info.md): Get info and counts for this AIA CA node. - [Get PKI hierarchy of AIA CA entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/aia-cas/get-pki-hierarchy-of-aia-ca-entity.md): Get a list, graph, or count of the PKI hierarchy of this AIA CA. - [Get latest tier zero combo node](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/analysis/get-latest-tier-zero-combo-node.md): Get latest tier zero combo node - [Get the combo tree for an asset group](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/analysis/get-the-combo-tree-for-an-asset-group.md): Gets the combo tree for an asset group - [Get the graph for meta tree](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/analysis/get-the-graph-for-meta-tree.md): Gets meta nodes and connecting edges - [Get API Spec](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/api-info/get-api-spec.md): Returns an Open API 3.0 compatible BloodHound API spec - [Get API version](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/api-info/get-api-version.md): Returns the supported API versions. - [Create Token for User](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/api-tokens/create-token-for-user.md): Create a new token to use with request signing based authentication for a given user. - [Delete a User Token](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/api-tokens/delete-a-user-token.md): Delete a request signing token for a given user. - [List Auth Tokens](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/api-tokens/list-auth-tokens.md): Get all auth tokens. - [Certify or Revoke Certification of Objects](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/certify-or-revoke-certification-of-objects.md): Manually certify/revoke certification of objects as belonging to the Zone they're selected by - [Create an asset group](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/create-an-asset-group.md): Creates an asset group - [Create Asset Group Tag](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/create-asset-group-tag.md): Creates an asset group tag ie. a tier or label - [Create Asset Group Tag Selector](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/create-asset-group-tag-selector.md): Creates an asset group tag selector. - [Delete an asset group](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/delete-an-asset-group.md): Deletes an asset group - [Delete an asset group selector](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/delete-an-asset-group-selector.md): Deletes an asset group selector - [Delete an Asset Group Tag](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/delete-an-asset-group-tag.md): Deletes an asset group tag - [Delete Asset Group Tag Selector](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/delete-asset-group-tag-selector.md): Delete an asset group tag selector - [Get asset group by ID](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-by-id.md): Retrieve asset group by ID - [Get asset group custom member count](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-custom-member-count.md): Get asset group custom member count - [Get Asset Group Tag](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-tag.md): Retrieves an asset group tag by ID - [Get Asset Group Tag Selector](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-tag-selector.md): Retrieves an asset group tag selector by ID - [Get Asset Group Tag selectors](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-tag-selectors.md): Get a list of selectors for this group. - [Get asset group tag selectors of a specific object by member id](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-tag-selectors-of-a-specific-object-by-member-id.md): Get a list of selectors for an object by member id. - [Get Asset Group Tags](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-asset-group-tags.md): Get a list of asset groups - [Get certifications for privilege zones](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-certifications-for-privilege-zones.md): Retrieves certification status for nodes selected by a zone - [Get history records](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/get-history-records.md): Retrieves history records for actions on asset group tags - [List all asset isolation group members](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-all-asset-isolation-group-members.md): **Deprecated**: This endpoint will no longer be supported in a future release. Please use `GET /api/v2/asset-group-tags/{asset_group_tag_id}/members` or `GET /api/v2/asset-group-tags/{asset_group_tag_id}/selectors/{asset_group_tag_selector_id}/members` instead. - [List all asset isolation groups](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-all-asset-isolation-groups.md): Lists all asset isolation groups. - [List asset group collections](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-asset-group-collections.md): Returns all historical memberships if no URL params are specified. - [List asset group member count by kind](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-asset-group-member-count-by-kind.md): List counts of members of an asset isolation group by primary kind. - [List asset group tag member count by kind](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-asset-group-tag-member-count-by-kind.md): List counts of members of an asset group tag by primary kind. - [List asset group tag members by ID](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-asset-group-tag-members-by-id.md): List members of an asset group tag by ID - [List asset group tag members by selector](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-asset-group-tag-members-by-selector.md): List members of an asset group tag by selector - [List asset group tag selector member count by kind](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/list-asset-group-tag-selector-member-count-by-kind.md): List counts of members of an asset group tag selector by primary kind. - [Preview Selectors](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/preview-selectors.md): Sample preview of members selected by provided selector seeds. - [Search Asset Group Tags](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/search-asset-group-tags.md): Supports searching by name on asset group tags and selectors, and by name or object ID on members. - [Search history records](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/search-history-records.md): Retrieves history records via search string input and filtering by action, asset_group_tag_id, email, and actor - [Update an asset group](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/update-an-asset-group.md): Updates an asset group - [Update asset group selectors](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/update-asset-group-selectors.md): Updates asset group selectors - [Update asset group selectors](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/update-asset-group-selectors-1.md): DEPRECATED use PUT instead. Updates asset group selectors. - [Update Asset Group Tag](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/update-asset-group-tag.md): Updates an asset group tag by ID - [Update Asset Group Tag Selector](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/asset-isolation/update-asset-group-tag-selector.md): Update an asset group tag selector's properties - [Export attack path findings](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/export-attack-path-findings.md): Export the finding table for a given attack path - [Get all attack path findings](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/get-all-attack-path-findings.md): Fetches all attack path findings and their associated details, including documentation. - [List all attack path types](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/list-all-attack-path-types.md): Lists all possible attack path types - [List attack path sparkline values](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/list-attack-path-sparkline-values.md): List the values that represent the sparklines for individual attack paths - [List available attack paths](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/list-available-attack-paths.md): Lists available attack path types for a domain - [List domain attack paths details](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/list-domain-attack-paths-details.md): Lists detailed data about attack paths for a domain. - [List finding trends](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/list-finding-trends.md): Lists findings and their changes in between two dates for an environment - [Start analysis](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/start-analysis.md): Starts generating attack paths - [Update attack path risk](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/attack-paths/update-attack-path-risk.md): Updates an attack path as an accepted or unaccepted risk until a given time. - [List audit logs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/audit/list-audit-logs.md): Returns a list of audit logs. - [Create a New SAML Provider from Metadata](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/create-a-new-saml-provider-from-metadata.md): **Deprecated**: This endpoint will no longer be supported in a future release. Please use `POST /api/v2/sso-providers/saml` instead. - [Create a New SAML Provider from Metadata](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/create-a-new-saml-provider-from-metadata-1.md): Creates a new SAML provider with the given name and metadata XML. - [Create OIDC Provider](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/create-oidc-provider.md): Creates a new OIDC provider for SSO authentication - [Delete a SAML Provider](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/delete-a-saml-provider.md): **Deprecated**: This endpoint will no longer be supported in a future release. Please use `DELETE /api/v2/sso-providers/{sso_provider_id}` instead. - [Delete SSO Provider](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/delete-sso-provider.md): Deletes an existing SSO provider - [Get all SAML sign on endpoints](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/get-all-saml-sign-on-endpoints.md): **Deprecated**: This endpoint will no longer be supported in a future release. Please use `GET /api/v2/sso-providers` instead to list available SSO endpoints. - [Get SAML Provider](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/get-saml-provider.md): **Deprecated**: This endpoint will no longer be supported in a future release. Please use `GET /api/v2/sso-providers` to list all SAML providers instead. - [Get SAML Provider Signing Certificate](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/get-saml-provider-signing-certificate.md): Download the SAML Provider Signing Certificate. Only applies to SAML providers. - [Get self](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/get-self.md): Get the currently authenticated requester details. For Community, this will only ever be valid for users. In Enterprise, this could be either a BloodHound user or a client (collector). - [List SAML Providers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/list-saml-providers.md): **Deprecated**: This endpoint will no longer be supported in a future release. Please use `GET /api/v2/sso-providers` instead. - [List SSO Providers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/list-sso-providers.md): Lists all available SSO providers (SAML and OIDC) - [Login to BloodHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/login-to-bloodhound.md): Login to BloodHound with user credentials or a one time password. - [Logout of BloodHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/logout-of-bloodhound.md): Logout of BloodHound and delete the user session JWT. - [Update SSO Provider](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/auth/update-sso-provider.md): Updates an existing SSO provider. Updating saml provider requires a "multipart/form-data" body. Updating oidc provider requires "application/json" body. Response is respective provider - [Get Azure entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/azure-entities/get-azure-entity.md): Retrieves entity information for the given Azure object ID. If `related_entity_type` parameter is not set, this endpoint will return information about a single entity. Using the `counts` boolean parameter will further modify the response. If `related_entity_type` parameter is set, this endpoint will… - [Activates MFA for an enrolled user](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/activates-mfa-for-an-enrolled-user.md): Activates multi-factor authentication for an enrolled user - [Create a New User](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/create-a-new-user.md): Create a new BloodHound user. - [Create or Set User Secret](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/create-or-set-user-secret.md): Create or set a user's secret to use as a login password. - [Delete a User](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/delete-a-user.md): Deletes an existing BloodHound user. - [Enrolls user in multi-factor authentication](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/enrolls-user-in-multi-factor-authentication.md): Enrolls user in multi-factor authentication - [Expire User Secret](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/expire-user-secret.md): Expire a user's secret to use as a login password. - [Get a user](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/get-a-user.md): Get a BloodHound user's details. - [List Users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/list-users.md): Gets all BloodHound user details. - [List Users Minimal](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/list-users-minimal.md): Returns all BloodHound user details without any sensitive data. - [Returns MFA activation status for a user](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/returns-mfa-activation-status-for-a-user.md): Returns multi-factor authentication status for a user - [Unenroll user from multi-factor authentication](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/unenroll-user-from-multi-factor-authentication.md): Unenrolls user from multi-factor authentication - [Update a User](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/bloodhound-users/update-a-user.md): Update a BloodHound user's properties'. - [Get Cert Template entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cert-templates/get-cert-template-entity-controllers.md): Get a list, graph, or count of the principals that can control this Cert Template. - [Get Cert Template entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cert-templates/get-cert-template-entity-info.md): Get info and counts for this Cert Template node. - [Get Enterprise CAs having Cert Template entity published](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cert-templates/get-enterprise-cas-having-cert-template-entity-published.md): Get a list, graph, or count of the Enterprise CAs having this Cert Template published. - [Endpoint for data ingestion](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/client-ingest/endpoint-for-data-ingestion.md): Ingests data from collector clients - [Client Error](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/client-error.md): Endpoint for clients to log enumeration errors. - [Create Client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/create-client.md): Creates a client for collection events - [Creates a scheduled job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/creates-a-scheduled-job.md): Creates a new scheduled job - [Creates a scheduled task](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/creates-a-scheduled-task.md): Creates a new scheduled task - [Delete Client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/delete-client.md): Delete a client for processing collection events - [Get Client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/get-client.md): Gets given client for processing collection events - [List all completed jobs for a client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/list-all-completed-jobs-for-a-client.md): List all completed jobs for a client - [List all completed tasks for a client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/list-all-completed-tasks-for-a-client.md): List all completed tasks for a client - [List Clients](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/list-clients.md): Lists available clients for processing collection events. - [Regenerate the authentication token for a client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/regenerate-the-authentication-token-for-a-client.md): Regenerate the authentication token for a client - [Update Client](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/update-client.md): Update a client for processing collection events - [Update Client Values](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/clients/update-client-values.md): Endpoint for clients to update their own information at startup. - [Create File Upload Job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collection-uploads/create-file-upload-job.md): Creates a file upload job for sending collection files - [End File Upload Job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collection-uploads/end-file-upload-job.md): End a file upload job - [List accepted file upload types](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collection-uploads/list-accepted-file-upload-types.md): List accepted file types for collection file uploads - [List File Upload Jobs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collection-uploads/list-file-upload-jobs.md): Lists available file upload jobs - [Upload File To Job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collection-uploads/upload-file-to-job.md): Saves a collection file to a file upload job - [Download asset](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collectors/download-asset.md): Downloads an enterprise asset (collector or checksum) - [Get collector checksum by version](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collectors/get-collector-checksum-by-version.md): Retrieves the checksum file for a given collector with given version - [Get collector download by version](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collectors/get-collector-download-by-version.md): Retrieves the download for a given collector with given version - [Get collector manifest](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collectors/get-collector-manifest.md): Retrieves the version manifest for a given collector - [Get kennel enterprise manifest](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collectors/get-kennel-enterprise-manifest.md): Retrieves a manifest of enterprise collectors - [Get kennel manifest](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/collectors/get-kennel-manifest.md): Retrieves a manifest of community collectors - [Get computer entity admin rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-admin-rights.md): Get a list, graph, or count of the systems this computer has admin rights to. - [Get computer entity admins](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-admins.md): Get a list, graph, or count of the principals that have admin rights on this computer. - [Get computer entity constrained delegation rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-constrained-delegation-rights.md): Get a list, graph, or count of the principals that this computer has constrained delegations rights to. - [Get computer entity constrained users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-constrained-users.md): Get a list, graph, or count of the principals that have constrained delegation rights to this computer. - [Get computer entity controllables](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-controllables.md): Get a list, graph, or count of the principals this computer can control. - [Get computer entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-controllers.md): Get a list, graph, or count of the principals that can control this computer. - [Get computer entity DCOM rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-dcom-rights.md): Get a list, graph, or count of the systems this computer can execute DCOM on. - [Get computer entity DCOM users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-dcom-users.md): Get a list, graph, or count of the principals that can execute DCOM on this computer. - [Get computer entity group membership](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-group-membership.md): Get a list, graph, or count of the groups this computer is a member of. - [Get computer entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-info.md): Get info and counts for this computer node. - [Get computer entity RDP rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-rdp-rights.md): Get a list, graph, or count of the systems this computer can RDP to. - [Get computer entity RDP users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-rdp-users.md): Get a list, graph, or count of the principals that have RDP rights on this computer. - [Get computer entity remote PowerShell rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-remote-powershell-rights.md): Get a list, graph, or count of the systems this computer has remote PowerShell rights on. - [Get computer entity remote PowerShell users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-remote-powershell-users.md): Get a list, graph, or count of the principals that have remote PowerShell rights on this computer. - [Get computer entity sessions](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-sessions.md): Get a list, graph, or count of the principals with active sessions on this computer. - [Get computer entity SQL admins](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/computers/get-computer-entity-sql-admins.md): Get a list, graph, or count of the principals that have SQL admin rights on this computer. - [List application config parameters](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/config/list-application-config-parameters.md): Lists application configuration parameters for this instance - [List feature flags](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/config/list-feature-flags.md): Lists all feature flags for this instance - [Toggle a feature flag's enabled status to either enable or disable it.](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/config/toggle-a-feature-flags-enabled-status-to-either-enable-or-disable-it.md): Writes application configuration parameters for this instance - [Write application configuration parameters](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/config/write-application-configuration-parameters.md): Writes application configuration parameters for this instance - [Get container entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/containers/get-container-entity-controllers.md): Get a list, graph, or count of the principals that can control this container. - [Get container entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/containers/get-container-entity-info.md): Get basic info and counts for this container node. - [Create a saved query](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/create-a-saved-query.md): Create a new saved query - [Delete a saved query](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/delete-a-saved-query.md): Delete an existing saved query by ID - [Export a saved query](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/export-a-saved-query.md): Export an existing saved query by ID - [Export one or more saved queries](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/export-one-or-more-saved-queries.md): Export existing saved queries using the scope parameter. - [Import one or more cypher queries.](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/import-one-or-more-cypher-queries.md): Import one or more cypher queries. - [List saved queries](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/list-saved-queries.md): Get all saved queries for the current user - [Revokes permission of a saved query from users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/revokes-permission-of-a-saved-query-from-users.md): Revokes permission of a saved query from a given set of users - [Run a cypher query](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/run-a-cypher-query.md): Runs a manual cypher query directly against the database - [Share a saved query or set it to public](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/share-a-saved-query-or-set-it-to-public.md): Shares an existing saved query or makes it public - [Update a saved query](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/cypher/update-a-saved-query.md): Update an existing saved query by ID - [Get AD domain data quality stats](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/data-quality/get-ad-domain-data-quality-stats.md): Time series list of data quality stats for a given AD domain - [Get Azure tenant data quality stats](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/data-quality/get-azure-tenant-data-quality-stats.md): Time series list of data quality stats for a given Azure tenant - [Get database completeness stats](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/data-quality/get-database-completeness-stats.md): Get the percentage of local admins and sessions collected - [Get platform data quality aggregate](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/data-quality/get-platform-data-quality-aggregate.md): Time series list of aggregate data quality stats for a given platform - [Delete your BloodHound data](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/database/delete-your-bloodhound-data.md): Wipes your BloodHound data permanently. Specify the data to delete in the request body. Possible data includes collected graph data, custom high value selectors, file ingest history, and data quality history. - [Get datapipe status](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/datapipe/get-datapipe-status.md): Gets the current status of the datapipe - [Start analysis](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/datapipe/start-analysis.md): Flags the API to begin analyzing ingest data. - [Get ADCS escalations of Domain entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-adcs-escalations-of-domain-entity.md): Get a list, graph, or count of the ADCS escalations of this Domain. - [Get domain entity computers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-computers.md): Get a list or count of the computers that belong to this domain. - [Get domain entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-controllers.md): Get a list, graph, or count of the principals that can control this domain. - [Get domain entity DC Syncers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-dc-syncers.md): Get a list, graph, or count of the principals that can DC sync this domain. - [Get domain entity foregin groups](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-foregin-groups.md): Get a list, graph, or count of the groups outside of this domain that are members of groups inside this domain. - [Get domain entity foreign admins](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-foreign-admins.md): Get a list, graph, or count of the principals outside of this domain that have admin rights on principals in this domain. - [Get domain entity foreign GPO controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-foreign-gpo-controllers.md): Get a list, graph, or count of the principals outside of this domain that can control GPOs inside this domain. - [Get domain entity foreign users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-foreign-users.md): Get a list, graph, or count of the users outside of this domain that are members of groups inside this domain. - [Get domain entity GPOs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-gpos.md): Get a list or count of the GPOs in this domain. - [Get domain entity groups](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-groups.md): Get a list or count of the groups in this domain. - [Get domain entity inbound trusts](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-inbound-trusts.md): Get a list, graph, or count of the inbound trusts for this domain. - [Get domain entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-info.md): Get basic info and counts for this domain node. - [Get domain entity linked GPOs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-linked-gpos.md): Get a list, graph, or count of the GPOs linked to this domain. - [Get domain entity OUs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-ous.md): Get a list or count of the OUs in this domain. - [Get domain entity outbound trusts](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-outbound-trusts.md): Get a list, graph, or count of the outbound trusts for this domain. - [Get domain entity users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/get-domain-entity-users.md): Get a list or count of the users in this domain. - [Update the Domain entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/domains/update-the-domain-entity.md): Updates the supported properties on the Domain entity. - [Get Enterprise CA entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/enterprise-cas/get-enterprise-ca-entity-controllers.md): Get a list, graph, or count of the principals that can control this Enterprise CA. - [Get Enterprise CA entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/enterprise-cas/get-enterprise-ca-entity-info.md): Get info and counts for this Enterprise CA node. - [Get PKI hierarchy of Enterprise CA entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/enterprise-cas/get-pki-hierarchy-of-enterprise-ca-entity.md): Get a list, graph, or count of the PKI hierarchy of this Enterprise CA. - [Get published certificate templates of Enterprise CA entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/enterprise-cas/get-published-certificate-templates-of-enterprise-ca-entity.md): Get a list, graph, or count of the published certificate templates of this Enterprise CA. - [Accept EULA](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/eula/accept-eula.md): Accept BloodHound Enterprise EULA for logged in user (EULA applies to BHE customers only). - [Create Event](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/events-schedules/create-event.md): Creates a scheduled event for data collection - [Delete Event](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/events-schedules/delete-event.md): Deletes a scheduled event and associated tasks by id - [Get Event](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/events-schedules/get-event.md): Gets a scheduled job event by ID. - [List events](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/events-schedules/list-events.md): Gets all client scheduled events. - [Update Event](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/events-schedules/update-event.md): Updates a scheduled event - [Get GPO entity computer](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/gpos/get-gpo-entity-computer.md): Get a list, graph, or count of the computers affected by this GPO. - [Get GPO entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/gpos/get-gpo-entity-controllers.md): Get a list, graph, or count of the principals that can control this OU. - [Get GPO entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/gpos/get-gpo-entity-info.md): Get info and counts for this GPO node. - [Get GPO entity OUs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/gpos/get-gpo-entity-ous.md): Get a list, graph, or count of the OUs affected by this GPO. - [Get GPO entity tier-zero](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/gpos/get-gpo-entity-tier-zero.md): Get a list, graph, or count of the tier-zero principals associated with this GPO. - [Get GPO entity users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/gpos/get-gpo-entity-users.md): Get a list, graph, or count of the users affected by this GPO. - [Get ACL inheritance path](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-acl-inheritance-path.md): Returns a graph representing the path that an ACE is inherited through for a given edge. - [Get kinds](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-kinds.md): Gets kinds - [Get path composition](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-path-composition.md): Returns a graph representing the various nodes and edges that make up the complex post-processed edge. - [Get pathfinding result](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-pathfinding-result.md): DEPRECATED use GetShortestPath instead. Get the result of pathfinding between two nodes in graph format. - [Get relay targets](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-relay-targets.md): Returns a graph representing the various nodes that are valid relay targets for this edge - [Get search result](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-search-result.md): Get the result of searching a graph for a node by name - [Get the shortest path graph](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/graph/get-the-shortest-path-graph.md): A graph of the shortest path from `start_node` to `end_node`. - [Get Group entity admin rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-admin-rights.md): Get a list, graph, or count of the systems this group has admin rights to. - [Get Group entity controllables](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-controllables.md): Get a list, graph, or count of the principals this group can control. - [Get Group entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-controllers.md): Get a list, graph, or count of the principals that can control this group. - [Get Group entity DCOMRights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-dcomrights.md): Get a list, graph, or count of the systems this group can execute DCOM on. - [Get Group entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-info.md): Get info and counts for this Group node. - [Get Group entity members](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-members.md): Get a list, graph, or count of the principals that are a member of this group. - [Get Group entity memberships](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-memberships.md): Get a list, graph, or count of the groups this group is a member of. - [Get Group entity PowerShell remote rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-powershell-remote-rights.md): Get a list, graph, or count of the systems this group can execute PowerShell remote on. - [Get Group entity RDP rights](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-rdp-rights.md): Get a list, graph, or count of the systems this group can RDP to. - [Get Group entity sessions](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/groups/get-group-entity-sessions.md): Get a list, graph, or count of the active sessions for users that belong to this group. - [Cancels a scheduled job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/cancels-a-scheduled-job.md): Cancels a scheduled job - [Get client current job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/get-client-current-job.md): Gets the current job for the authenticated client. - [Get client job](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/get-client-job.md): Gets client job - [Get Job Log File](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/get-job-log-file.md): Get the log file from a SharpHound run - [Get jobs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/get-jobs.md): Gets client jobs - [List available client jobs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/list-available-client-jobs.md): Endpoint for clients to get next available jobs. - [List finished jobs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/list-finished-jobs.md): Gets all finished jobs - [Notifies the API of a job ending](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/notifies-the-api-of-a-job-ending.md): Endpoint for clients to end a job and mark the end time. - [Notifies the API of a job start](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/jobs/notifies-the-api-of-a-job-start.md): Endpoint for clients to start a new job and mark the start time. - [Get Meta entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/meta-entities/get-meta-entity-info.md): Get info and counts for this Meta node. - [Get NT Auth Store entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/nt-auth-stores/get-nt-auth-store-entity-controllers.md): Get a list, graph, or count of the principals that can control this NT Auth Store. - [Get NT Auth Store entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/nt-auth-stores/get-nt-auth-store-entity-info.md): Get info and counts for this NT Auth Store node. - [Get trusted Enterprise CAs of NT Auth Store entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/nt-auth-stores/get-trusted-enterprise-cas-of-nt-auth-store-entity.md): Get a list, graph, or count of the trusted Enterprise CAs of this NT Auth Store. - [Get OU entity computers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ous/get-ou-entity-computers.md): Get a list, graph, or count of the computers contained by this OU. - [Get OU entity GPOs](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ous/get-ou-entity-gpos.md): Get a list, graph, or count of the GPOs that affect this OU. - [Get OU entity groups](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ous/get-ou-entity-groups.md): Get a list, graph, or count of the groups contained by this OU. - [Get OU entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ous/get-ou-entity-info.md): Get info and counts for this OU node. - [Get OU entity users](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/ous/get-ou-entity-users.md): Get a list, graph, or count of the users contained by this OU. - [Use the BloodHound API](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/overview.md) - [Get Permission](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/permissions/get-permission.md): Gets an authorization permission's details. - [List Permissions](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/permissions/list-permissions.md): List all authorization permissions. - [Get Posture History](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/risk-posture/get-posture-history.md): Gets posture data count changes over a time period - [Get Posture Statistics](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/risk-posture/get-posture-statistics.md): Gets the history of database stats saved in the database - [Get Role](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/roles/get-role.md): Gets an authorization role's details. - [List Roles](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/roles/list-roles.md): List all authorization roles. - [Get PKI hierarchy of Root CA entity](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/root-cas/get-pki-hierarchy-of-root-ca-entity.md): Get a list, graph, or count of the PKI hierarchy of this Root CA. - [Get Root CA entity controllers](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/root-cas/get-root-ca-entity-controllers.md): Get a list, graph, or count of the principals that can control this Root CA. - [Get Root CA entity info](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/root-cas/get-root-ca-entity-info.md): Get info and counts for this Root CA node. - [Get available domains](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/search/get-available-domains.md): Gets available domains along with their collection status - [Search for objects](https://specterops-bp-2211-og-specific-updates.mintlify.app/reference/search/search-for-objects.md): Search for graph objects by name or object ID, filtered by type. - [Get Help and Use the BloodHound Community](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/community-support/getting-help.md) - [Community and Support](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/community-support/overview.md): Connect with the BloodHound community, seek assistance, and find resources for support and collaboration. - [Additional Training and Resources](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/community-support/training-resources.md) - [AbuseTGTDelegation](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/abuse-tgt-delegation.md): The trust from the target node domain to the source node domain has TGT delegation enabled. When a resource in the source node domain is configured with unconstrained delegation, principals from the target node domain will automatically forward their Ticket Granting Ticket (TGT) to that resource upo… - [ADCSESC1](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc1.md): This edge indicates that the principal has permission to enroll on one or more certificate templates, allowing them to specify an alternate subject name and use the certificate for authentication. They also have enrollment permission for an enterprise CA with the necessary templates published. - [ADCSESC10a](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc10a.md): This edge indicates that the principal has control over a victim principal with permission to enroll on one or more certificate templates, configured to enable certificate authentication and require the userPrincipalName (UPN) of the enrollee included in the Subject Alternative Name (SAN). - [ADCSESC10b](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc10b.md): The principal has control over a victim computer with permission to enroll on one or more certificate templates, configured to enable certificate authentication, and require the `dNSHostName` of the enrollee included in the Subject Alternative Name (SAN). - [ADCSESC13](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc13.md): The ADCSESC13 edge indicates that the principal has the privileges to perform the ADCS ESC13 abuse against the target AD group. The principal has enrollment rights on a certificate template configured with an issuance policy extension. - [ADCSESC3](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc3.md): The principal has permission to enroll on a certificate allowing them to obtain an enrollment agent certificate. - [ADCSESC4](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc4.md): The ADCSESC4 edge indicates that the principal has the privileges to perform the ADCS ESC4 abuse against the target AD domain. - [ADCSESC6a](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc6a.md): The principal has permission to enroll on one or more certificate templates allowing for authentication. - [ADCSESC6b](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc6b.md): The principal has permission to enroll on one or more certificate templates allowing for authentication. - [ADCSESC9a](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc9a.md): The principal has control over a victim principal with permission to enroll on one or more certificate templates, configured to: 1) enable certificate authentication, 2) require the `userPrincipalName` (UPN) of the enrollee included in the Subject Alternative Name (SAN), and 3) do not have the secur… - [ADCSESC9b](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/adcs-esc9b.md): The principal has control over a victim computer with permission to enroll on one or more certificate templates, configured to: 1) enable certificate authentication, 2) require the `dNSHostName`  of the enrollee included in the Subject Alternative Name (SAN), and 3) not have the security extension e… - [AddAllowedToAct](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/add-allowed-to-act.md): This edge means it's possible to modify the msDS-AllowedToActOnBehalfOfOtherIdentity property of a target. - [AddKeyCredentialLink](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/add-key-credential-link.md): The ability to write to the “msds-KeyCredentialLink” property on a user or computer. Writing to this property allows an attacker to create “Shadow Credentials” on the object and authenticate as the principal using kerberos PKINIT. - [AddMember](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/add-member.md): This edge indicates the principal has the ability to add arbitrary principals to the target security group. Because of security group delegation, the members of a security group have the same privileges as that group. - [AddSelf](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/add-self.md): This edge indicates the principal has the ability to add itself to the target security group. Because of security group delegation, the members of a security group have the same privileges as that group. - [AdminTo](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/admin-to.md): This edge indicates that principal is a local administrator on the target computer. - [AllExtendedRights](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/all-extended-rights.md): Extended rights are special rights granted on objects which allow reading of privileged attributes, as well as performing special actions. - [AllowedToAct](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/allowed-to-act.md): This edge allows an attacker to abuse resource-based constrained delegation to compromise the target. This property is a binary DACL that controls what security principals can pretend to be any domain user to the particular computer object. - [AllowedToDelegate](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/allowed-to-delegate.md): The constrained delegation primitive allows a principal to authenticate as any user to specific services (found in the msds-AllowedToDelegateTo LDAP property in the source node tab) on the target computer. - [AZAddMembers](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-add-members.md): The ability to add other principals to an Azure security group - [AZAddOwner](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-add-owner.md): This edge is created during post-processing. - [AZAddSecret](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-add-secret.md): Azure provides several systems and mechanisms for granting control of securable objects within Entra ID, including tenant-scoped admin roles, object-scoped admin roles, explicit object ownership, and API permissions. - [AZAKSContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-aks-contributor.md): The Azure Kubernetes Service Contributor role grants full control of the target Azure Kubernetes Service Managed Cluster. - [AZAppAdmin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-app-admin.md): The principal has the Application Administrator Entra ID role active and can control tenant-resident apps. - [AZAutomationContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-automation-contributor.md): The Azure Automation Contributor role grants full control of the target Azure Automation Account. This includes the ability to execute arbitrary commands on the Automation Account. - [AZAvereContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-avere-contributor.md): Any principal granted the Avere Contributor role, scoped to the affected VM, can reset the built-in administrator password on the VM. - [AZCloudAppAdmin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-cloud-app-admin.md): The principal has the Cloud Application Administrator Entra ID role active and can control tenant-resident apps. - [AZContains](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-contains.md): This indicates that the parent object contains the child object, such as a resource group containing a virtual machine, or a tenant “containing” a subscription. - [AZContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-contributor.md): The contributor role grants almost all abusable privileges in all circumstances, with some exceptions. Those exceptions are not collected by AzureHound. - [AZExecuteCommand](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-execute-command.md): Principals with the Intune Administrators role are able to execute arbitrary PowerShell scripts on devices that are joined to the Azure tenant. - [AZGetCertificates](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-get-certificates.md): The ability to read certificates from key vaults. - [AZGetKeys](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-get-keys.md): The ability to read keys from key vaults. - [AZGetSecrets](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-get-secrets.md): The ability to read secrets from key vaults. - [AZGlobalAdmin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-global-admin.md): The principal has the Global Administrator Entra ID role active against the target tenant. In other words, the principal is a Global Admin. Global Admins can do almost anything against almost every object type in the tenant, this is the highest privilege role in Azure. - [AZHasRole](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-has-role.md): The principal has an active assignment to the Entra ID role. This includes permanent assignments, and temporary assignments via Privileged Identity Management (PIM). If the principal is assigned eligibility via PIM the principal will also have an [AZRoleEligible](/resources/edges/az-role-eligible) e… - [AZKeyVaultKVContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-key-vault-contributor.md): The Key Vault Contributor role grants full control of the target Key Vault. This includes the ability to read all secrets stored on the Key Vault. - [AZLogicAppContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-logic-app-contributor.md): The Logic Contributor role grants full control of the target Logic App. This includes the ability to execute arbitrary commands on the Logic App. - [AZManagedIdentity](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-managed-identity.md): Azure resources like Virtual Machines, Logic Apps, and Automation Accounts can be assigned to either System- or User-Assigned Managed Identities. - [AZMemberOf](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-member-of.md): The given asset is a member of the group. - [AZMGAddMember](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-add-member.md): This edge is created during post-processing. - [AZMGAddOwner](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-add-owner.md): This edge is created during post-processing. - [AZMGAddSecret](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-add-secret.md): This edge is created during post-processing. - [AZMGAppRoleAssignment_ReadWrite_All](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-app-role-assignment-readwrite-all.md): This edge is created when a Service Principal has been granted the AppRoleAssignment.ReadWrite.All edge. - [AZMGApplication_ReadWrite_All](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-application-readwrite-all.md): This edge is created when a Service Principal has been granted the Application.ReadWrite.All edge. - [AZMGDirectory_ReadWrite_All](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-directory-readwrite-all.md): This edge is created when a Service Principal has been granted the Directory.ReadWrite.All edge. - [AZMGGrantAppRoles](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-grant-app-roles.md): This edge is created during post-processing. - [AZMGGrantRole](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-grant-role.md): This edge is created during post-processing. - [AZMGGroupMember_ReadWrite_All](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-group-member-readwrite-all.md): This edge is created when a Service Principal has been granted the GroupMember.ReadWrite.All edge. - [AZMGGroup_ReadWrite_All](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-group-readwrite-all.md): This edge is created when a Service Principal has been granted the Group.ReadWrite.All edge. - [AZMGRoleManagement_ReadWrite_Directory](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-role-management-readwrite-directory.md): This edge is created when a Service Principal has been granted the RoleManagement.ReadWrite.Directory edge. - [AZMGServicePrincipalEndpoint_ReadWrite_All](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-mg-service-principal-endpoint-readwrite-all.md): This edge is created when a Service Principal has been granted the ServicePrincipalEndpoint.ReadWrite.All edge. - [AZNodeResourceGroup](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-node-resource-group.md): This edge is created to link Azure Kubernetes Service Managed Clusters to the Virtual Machine Scale Sets they use to execute commands on. - [AZOwner](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-owner.md): The principal is granted the Owner role on the resource. - [AZOwns](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-owns.md): The principal is granted owner rights on the principal. - [AZPrivilegedAuthAdmin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-privileged-auth-admin.md): The principal has the Privileged Authentication Administrator Entra ID role active against the target tenant. - [AZPrivilegedRoleAdmin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-privileged-role-admin.md): The principal has the Privileged Role Administrator Entra ID role active against the target tenant. - [AZResetPassword](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-reset-password.md): The ability to change another user’s password without knowing their current password. - [AZRoleApprover](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-role-approver.md): The principal is designated as an approver in the Privileged Identity Management (PIM) policy for the Entra ID role. PIM policies may require principals with the [AZRoleEligible](/resources/edges/az-role-eligible) edge to get approval from role approvers before activation takes effect. - [AZRoleEligible](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-role-eligible.md): The principal is eligible for assignment to the Entra ID role via Privileged Identity Management (PIM). When the role is active the principal will also have an [AZHasRole](/resources/edges/az-has-role) edge to the role. - [AZRunsAs](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-runs-as.md): The Azure App runs as the Service Principal when it needs to authenticate to the tenant. - [AZScopedTo](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-scoped-to.md): Is used to distinguish whether an EntraID (AzureAD) admin role such as Application Administrator or Cloud Application Administrator is scoped to the tenant or to a particular app registration or service principal. - [AZUserAccessAdministrator](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-user-access-administrator.md): The User Access Admin role can edit roles against many other objects. - [AZVMAdminLogin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-vm-admin-login.md): When a virtual machine is configured to allow logon with Azure credentials, the VM automatically has certain principals added to its local administrators group, including any principal granted the Virtual Machine Administrator Login (or “VMAL”) admin role. - [AZVMContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-vm-contributor.md): The Virtual Machine contributor role grants almost all abusable privileges against Virtual Machines. - [AZWebsiteContributor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/az-website-contributor.md): The Website Contributor role grants full control of the target Function App or Web App. Full control of either of those types of resources allows for arbitrary command execution against the target resoruce. - [CanPSRemote](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/can-ps-remote.md): PS Session access allows you to enter an interactive session with the target computer. If authenticating as a low privilege user, a privilege escalation may allow you to gain high privileges on the system. - [CanRDP](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/can-rdp.md): Remote Desktop access allows you to enter an interactive session with the target computer. If authenticating as a low privilege user, a privilege escalation may allow you to gain high privileges on the system. - [ClaimSpecialIdentity](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/claim-special-identity.md): The ClaimSpecialIdentity edge represents the ability to obtain an access token containing a special identity (group) SID. - [CoerceAndRelayNTLMToADCS](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/coerce-and-relay-ntlm-to-adcs.md): The target computer can be coerced to authenticate via NTLM to an ADCS server, allowing an attacker to obtain a certificate for domain authentication. - [CoerceAndRelayNTLMToLDAP](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/coerce-and-relay-ntlm-to-ldap.md): The target computer can be coerced to authenticate via NTLM to an LDAP service on a domain controller that does not require LDAP signing, allowing an attacker to abuse Active Directory permissions or obtain administrative access to the target computer. - [CoerceAndRelayNTLMToLDAPS](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/coerce-and-relay-ntlm-to-ldaps.md): The target computer can be coerced to authenticate via NTLM to an LDAPS service on a domain controller that does not require LDAPS channel binding, allowing an attacker to abuse Active Directory permissions or obtain administrative access to the target computer. - [CoerceAndRelayNTLMToSMB](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/coerce-and-relay-ntlm-to-smb.md): An attacker can coerce a computer to authenticate via NTLM to an SMB service on a target computer that does not enforce SMB signing, allowing the attacker to gain administrative access to the target computer. - [CoerceToTGT](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/coerce-to-tgt.md): The computer/user account is configured with Kerberos unconstrained delegation. - [Contains](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/contains.md): GPOs linked to a container apply to all objects that are contained by the container. Additionally, ACEs set on a parent OU may inherit down to child objects. - [CrossForestTrust](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/cross-forest-trust.md): The CrossForestTrust edge represents a trust relationship between two domains/forests. In this relationship, the source node domain has a cross-forest (interforest) trust to the destination node domain, allowing principals (users and computers) from the destination domain to access resources in the… - [DCFor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/dc-for.md): This edge indicates that the computer is a domain controller for the domain. This edge is not created for read-only domain controllers. - [DCSync](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/dc-sync.md): This edge represents the combination of GetChanges and GetChangesAll. The combination of both these privileges grants a principal the ability to perform the DCSync attack. - [DelegatedEnrollmentAgent](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/delegated-enrollment-agent.md): The source principal node is delegated the privilege to enroll certificates of the destination certificate template node as an enrollment agent. - [DumpSMSAPassword](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/dump-smsa-password.md): A computer with this indicates that a Standalone Managed Service Account (sMSA) is installed on it. - [Enroll](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/enroll.md): The target node may be a Certificate Template or an Enterprise Certification Authority. - [EnrollOnBehalfOf](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/enroll-on-behalf-of.md): The certificate template "A" is configured to be used as an enrollment agent. - [EnterpriseCAFor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/enterprise-ca-for.md): The Enterprise Certification Authority node is the enrollment service LDAP object for the target Root Certification Authority node. - [ExecuteDCOM](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/execute-dcom.md): This can allow code execution under certain conditions by instantiating a COM object on a remote machine and invoking its methods. - [ExtendedByPolicy](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/extended-by-policy.md): The edge indicates that a certificate template includes an issuance policy as a certificate extension. - [ForceChangePassword](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/force-change-password.md): This edge indicates that the principal can reset the password of the target user without knowing the current password of that user. - [GenericAll](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/generic-all.md): This is also known as full control. This privilege allows the trustee to manipulate the target object however they wish. - [GenericWrite](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/generic-write.md): Generic Write access grants you the ability to write to any non-protected attribute on the target object, including "members" for a group, and "servicePrincipalNames" for a user. - [GetChanges](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/get-changes.md): The principal is granted the GetChanges right on the domain. - [GetChangesAll](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/get-changes-all.md): The principal is granted the GetChangesAll right on the domain. - [GetChangesInFilteredSet](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/get-changes-in-filtered-set.md): The principal is allowed to synchronize (DCSync) the Filtered Attribute Set (FAS), which are the attributes not replicated to RODCs. - [GoldenCert](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/golden-cert.md): The victim principal has a certificate private key that can be abused to sign "golden" certificates for authentication of any enabled principal in the AD forest of the domain. - [GPLink](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/gp-link.md): A linked GPO applies its settings to objects in the linked container. - [HasSession](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/has-session.md): When a user authenticates to a computer, they often leave credentials exposed on the system, which can be retrieved through LSASS injection, token manipulation or theft, or injecting into a user’s process. - [HasSIDHistory](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/has-sid-history.md): The given source principal has, in its SIDHistory attribute, the SID for the target principal. - [HasTrustKeys](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/has-trust-keys.md): The relationship's source node is a domain which has the trust keys for the end node trust account. - [HostsCAService](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/hosts-ca-service.md): The Enterprise Certification Authority node is the enrollment service LDAP object for CA hosted on the computer node. - [IssuedSignedBy](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/issued-signed-by.md): When Windows assesses the validity and trustworthiness of a certificate it verifies the certificate chain up to a trusted root certificate. The IssuedSignedBy edge represents a link within the certificate chain. - [LocalToComputer](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/local-to-computer.md): The LocalGroup is a local group on the Computer. - [ManageCA](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/manage-ca.md): The principal has the "Manage CA", also known as "CA Administrator", permission on the Enterprise CA. - [ManageCertificates](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/manage-certificates.md): The principal has the "Manage Certificates", also known as "CA Officer", permission on the Enterprise CA. - [MemberOf](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/member-of.md): Groups in active directory grant their members any privileges the group itself has. - [MemberOfLocalGroup](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/member-of-local-group.md): From a Principal to LocalGroup. Principal is a member of the LocalGroup. - [NTAuthStoreFor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/nt-auth-store-for.md): The NTAuthStore is the Enterprise NTAuth store (NTAuthCertificates object) for the AD forest of the domain node. - [OIDGroupLink](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/oid-group-link.md): The edge indicates that an IssuancePolicy has an OID group link to a group. - [About BloodHound Edges](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/overview.md): Edges are part of the graph construct and are represented as links/relationships that connect one node to another node. - [Owns](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/owns.md): Object owners retain the ability to modify object security descriptors, regardless of permissions on the object’s DACL - [ProtectAdminGroups](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/protect-admin-groups.md): The ProtectAdminGroups background task tattoos the AdminSDHolder security descriptor on this node. - [PublishedTo](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/published-to.md): The certificate template is published to an enterprise certification authority. - [ReadGMSAPassword](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/read-gmsa-password.md): This privilege allows you to read the password for a Group Managed Service Account (GMSA). - [ReadLAPSPassword](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/read-laps-password.md): This privilege allows a principal to read the LAPS password from a computer. - [RemoteInteractiveLogonRight](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/remote-interactive-logon-right.md): From Principal to Computer. Principal has the SeRemoteInteractiveLogonRight on the Computer. - [RootCAFor](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/root-ca-for.md): The CA is trusted as a root certification authority by the domain. - [SameForestTrust](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/same-forest-trust.md): The SameForestTrust edge represents a trust relationship between two domains within the same AD forest. - [SpoofSIDHistory](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/spoof-sid-history.md): The cross-forest trust from the target domain to the source domain has a weak SID filtering configuration (SpoofSIDHistoryBlocked = False). - [SQLAdmin](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/sql-admin.md): The user is a SQL admin on the target computer - [SyncLAPSPassword](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/sync-laps-password.md): A principal with this signifies the capability of retrieving, through a directory synchronization, the value of confidential and RODC filtered attributes, such as LAPS’ _ms-Mcs-AdmPwd_. - [SyncedToADUser](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/synced-to-ad-user.md): The Entra user is synchronized to the on-prem AD user. - [SyncedToEntraUser](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/synced-to-entra-user.md): The on-prem AD user is synchronized to the Entra ID user. - [Traversable and Non-Traversable Edge Types](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/traversable-edges.md): Details on traversable and non-traversable edge types in BloodHound - [TrustedForNTAuth](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/trusted-for-nt-auth.md): The NTAuthStore contains the certificate of the Enterprise CA. - [WriteAccountRestrictions](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-account-restrictions.md): This edge indicates the principal has the ability to modify several properties on the target principal, most notably the msDS-AllowedToActOnBehalfOfOtherIdentity attribute. - [WriteDacl](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-dacl.md): With write access to the target object’s DACL, you can grant yourself any privilege you want on the object. - [WriteGPLink](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-gp-link.md): The WriteGPLink edge indicates that the principal has the permissions to modify the gPLink attribute of the targeted OU/domain node. - [WriteOwner](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-owner.md): Object owners retain the ability to modify object security descriptors, regardless of permissions on the object’s DACL. - [WritePKIEnrollmentFlag](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-pki-enrollment-flag.md): The attacker principal has the ability to write to the msPKI-Enrollment-Flag attribute on the victim principal, which allows the attacker principal to configure "manager approval" for the certificate template and other settings. - [WritePKINameFlag](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-pki-name-flag.md): The attacker principal has the ability to write to the msPKI-Certificate-Name-Flag attribute on the victim principal, which allows the attacker principal to configure "enrollee supplies subject" for the certificate template and other settings. - [WriteSPN](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/edges/write-spn.md): The ability to write directly to the servicePrincipalNames attribute on a user object. - [BloodHound Glossary](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/glossary/overview.md) - [Legacy BloodHound](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/legacy.md) - [ADLocalGroup](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/ad-local-group.md) - [ADLocalUser](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/ad-local-user.md) - [AIACA](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/aiaca.md) - [AZApp](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-app.md) - [AZAutomationAccount](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-automation-account.md) - [AZBase](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-base.md) - [AZContainerRegistry](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-container-registry.md) - [AZDevice](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-device.md) - [AZFunctionApp](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-function-app.md) - [AZGroup](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-group.md) - [AZKeyVault](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-key-vault.md) - [AZLogicApp](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-logic-app.md) - [AZManagedCluster](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-managed-cluster.md) - [AZManagementGroup](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-management-group.md) - [AZResourceGroup](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-resource-group.md) - [AZRole](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-role.md) - [AZServicePrincipal](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-service-principal.md) - [AZSubscription](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-subscription.md) - [AZTenant](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-tenant.md) - [AZUser](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-user.md) - [AZVM](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-vm.md) - [AZVMScaleSet](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-vm-scale-set.md) - [AZWebApp](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/az-web-app.md) - [Base](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/base.md) - [CertTemplate](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/cert-template.md) - [Computer](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/computer.md) - [Container](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/container.md) - [Domain](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/domain.md) - [EnterpriseCA](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/enterprise-ca.md) - [GPO](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/gpo.md) - [Group](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/group.md) - [IssuancePolicy](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/issuance-policy.md) - [NTAuthStore](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/nt-auth-store.md) - [OU](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/ou.md) - [About BloodHound Nodes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/overview.md) - [RootCA](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/root-ca.md) - [User](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/nodes/user.md) - [Resources](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/overview.md): Access comprehensive documentation about BloodHound graph components, terminology definitions, release information, and how to get help. - [2022-10-11 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2022-10-11.md) - [2022-10-24 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2022-10-24.md) - [2022-11-03 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2022-11-03.md) - [2022-11-21 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2022-11-21.md) - [2022-12-13 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2022-12-13.md) - [2022-12-19 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2022-12-19.md) - [2023-01-18 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-01-18.md) - [2023-01-31 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-01-31.md) - [2023-02-07 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-02-07.md) - [2023-02-21 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-02-21.md) - [2023-03-06 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-03-06.md) - [2023-03-27 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-03-27.md) - [2023-04-13 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-04-13.md) - [2023-04-25 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-04-25.md) - [2023-05-16 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-05-16.md) - [2023-06-20 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-06-20.md) - [2023-08-08 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-08-08.md) - [2023-08-30 Release Notes (v5.0.7)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-08-30-v5-0-7.md) - [2023-08-31 Release Notes (v5.0.8)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-08-31-v5-0-8.md) - [2023-09-19 Release Notes (v5.0.9)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-09-19-v5-0-9.md) - [2023-10-16 Release notes (v5.1.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-10-16-v5-1-0.md) - [2023-11-06 Release (v5.2.0 - BHE Only)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-11-06-v5-2-0.md) - [2023-12-05 Release Notes (v5.3.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2023-12-05-v5-3-0.md) - [2024-01-04 Release Notes (v5.4.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-01-04-v5-4-0.md) - [2024-01-23 Release Notes (v5.5.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-01-23-v5-5-0.md) - [2024-02-14 Release Notes (v5.6.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-02-14-v5-6-0.md) - [2024-03-04 Release Notes (v5.7.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-03-04-v5-7-0.md) - [2024-03-27 Release Notes (v5.8.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-03-27-v5-8-0.md) - [2024-04-15 Release Notes (v5.8.1)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-04-15-v5-8-1.md) - [2024-05-09 Release Notes (v5.9.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-05-09-v5-9-0.md) - [2024-05-28 Release Notes (v5.10.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-05-28-v5-10-0.md) - [2024-06-17 Release Notes (v5.11.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-06-17-v5-11-0.md) - [2024-07-17 Release Notes (v5.12.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-07-17-v5-12-0.md) - [2024-08-01 Release Notes (v5.13.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-08-01-v5-13-0.md) - [2024-08-06 Release Notes (v5.13.1)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-08-06-v5-13-1.md) - [2024-08-20 Release Notes (v5.14.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-08-20-v5-14-0.md) - [2024-09-10 Release Notes (v5.15.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-09-10-v5-15-0.md) - [2024-09-30 Release Notes (v6.0.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-09-30-v6-0-0.md) - [2024-10-22 Release Notes (v6.1.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-10-22-v6-1-0.md) - [2024-11-14 Release Notes (v6.2.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-11-14-v6-2-0.md) - [2024-12-09 Release Notes (v6.3.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2024-12-09-v6-3-0.md) - [2026-01-22 Release Notes](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/2026-01-22.md): Learn about new features, enhancements, and fixed issues in BloodHound. - [Release Summary](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/summary.md): Stay informed about new features, enhancements, and fixed issues for the latest BloodHound releases. - [2025-01-14 Release Notes (v6.4.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v6-4-0.md) - [2025-02-05 Release Notes (v7.0.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-0-0.md) - [2025-03-06 Release Notes (v7.1.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-1-0.md) - [2025-03-25 Release Notes (v7.2.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-2-0.md) - [2025-04-03 Release Notes (v7.2.1)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-2-1.md) - [2025-04-22 Release Notes (v7.3.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-3-0.md) - [2025-05-27 Release Notes (v7.4.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-4-0.md) - [2025-06-02 Release Notes (v7.4.1)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-4-1.md) - [2025-06-17 Release Notes (v7.5.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-5-0.md) - [2025-07-09 Release Notes (v7.6.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v7-6-0.md) - [2025-07-29 Release Notes (v8.0.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v8-0-0.md) - [2025-08-26 Release Notes (v8.1.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v8-1-0.md) - [2025-09-23 Release Notes (v8.2.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v8-2-0.md) - [2025-10-30 Release Notes (v8.3.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v8-3-0.md) - [2025-12-02 Release Notes (v8.4.0)](https://specterops-bp-2211-og-specific-updates.mintlify.app/resources/release-notes/v8-4-0.md) ## OpenAPI Specs - [openapi](https://specterops-bp-2211-og-specific-updates.mintlify.app/openapi.json) ## Optional - [Webinars](https://specterops.io/events/?_sft_event_type=webinar&_gl=1*1xuv31d*_up*MQ..*_ga*NTYxMzY4OTkxLjE3MzMzMDkyNTk.*_ga_53SGLN9EBJ*MTczMzMwOTI1Ny4xLjAuMTczMzMwOTI1Ny4wLjAuMA..) - [Community](https://slack.specterops.io/) - [Query Library](https://queries.specterops.io/) - [OpenGraph Library](https://bloodhound.specterops.io/opengraph/library) - [Blog](https://specterops.io/blog/?_gl=1*1qw21rw*_up*MQ..*_ga*NTYxMzY4OTkxLjE3MzMzMDkyNTk.*_ga_53SGLN9EBJ*MTczMzMwOTI1Ny4xLjAuMTczMzMwOTI1Ny4wLjAuMA..) - [Release Notes](https://bloodhound.specterops.io/resources/release-notes/summary)