SharpHound

SharpHound is a Kali Linux tool packaged as a pre-built C# data collector designed for use with BloodHound. It facilitates the collection of Active Directory data, enabling security professionals to map and analyze domain environments. The package includes essential files located in /usr/share/sharphound, such as SharpHound.exe, its configuration, PDB, and a PowerShell script.

Use cases include Active Directory penetration testing and enumeration, as highlighted in OffSec training resources like PEN-200 and PEN-300 courses. It supports automated enumeration techniques for identifying relationships and permissions within AD environments. The tool is part of broader Active Directory skill paths for hands-on labs and in-depth training.

Installation provides immediate access to the collector without compilation, making it suitable for rapid deployment in assessment scenarios.

SharpHound operates as a C# executable that collects BloodHound-compatible data from Active Directory environments. The pre-built binaries in /usr/share/sharphound, including SharpHound.exe and SharpHound.ps1, interface with domain controllers to enumerate objects, relationships, and security descriptors using standard AD protocols like LDAP.