Install BloodHound on Ubuntu

By September 21, 2017Network Defense, Red Teaming

This post is intended as a quick reference guide to install Bloodhound on an Ubuntu system.

This is heavily based on with a few tweaks.

Install Ubuntu

Install Ubuntu as you normally would. In this case Xubuntu 16.04 was installed in VMWare

Optional – Install VM Tools

sudo apt-get update
sudo apt-get upgrade 
sudo apt-get install open-vm-tools open-vm-tools-desktop 

Install Neo4j

sudo apt-get install wget curl git

wget -O - | sudo apt-key add -
echo 'deb stable/' | sudo tee /etc/apt/sources.list.d/neo4j.list
echo "deb jessie-backports main" | sudo tee -a /etc/apt/sources.list.d/jessie-backports.list

sudo apt-get update
sudo apt-get install openjdk-8-jdk openjdk-8-jre
sudo apt-get install neo4j
echo "dbms.active_database=graph.db" >> /etc/neo4j/neo4j.conf
echo "dbms.connector.http.address=" >> /etc/neo4j/neo4j.conf
echo "dbms.connector.bolt.address=" >> /etc/neo4j/neo4j.conf
echo "dbms.allow_format_migration=true" >> /etc/neo4j/neo4j.conf

Get Bloodhound DB for neo4j

git clone
cd BloodHound
mkdir /var/lib/neo4j/data/databases/graph.db
cd BloodHound/
cp -R BloodHoundExampleDB.graphdb/* /var/lib/neo4j/data/databases/graph.db
neo4j start

Verify neo4j is running on 7474 and 7687

netstat -lantp 

Change neo4j password

Logon to http://localhost:7474 with neo4j:neo4j and change the password

Get Bloodhound binary

Download the appropriate binary from

Run Bloodhound


Supply the user “neo4j” and your newly created password. Happy hunting!


About Joe Vest

Joe Vest has worked in the information technology industry for over 17 years with a focus on red teaming, penetration testing and application security. Joe is an author of the SANS Red Team Operations and Threat Emulation course (SEC-564). As a former technical lead for a DoD red team, he has extensive knowledge of cyber threats and their tools, tactics and techniques, including threat emulation and threat detection. Joe is the co-founder of the security consulting company MINIS LLC (Merged with SpecterOps in 2017). As a leading security professional, he has achieved numerous security certifications: OSCP, CISSP-ISSMP, CISA, GPEN, GCIH, GWAPT, CEH, Security+