Query GUID
e303498f-e3d4-489d-8a34-b68e187bc4e7
Query content
MATCH (n:Base)
WHERE n.userpassword IS NOT NULL
OR n.unixpassword IS NOT NULL
OR n.unicodepwd IS NOT NULL
OR n.msSFU30Password IS NOT NULL
RETURN n
Issue description
This returns users where I can clearly say based on the JSON files that those values are empty. Even if I leave out msSFU30Password, which is not present in my JSON files, all the same users are returned. Even if I check inside the Neo4j DB, those properties are empty/NULL.
After trying for a bit, all users are returns either via userpassword or unixpassword.
BloodHound version
Bloodhound:latest (9.0.2)
BloodHound DB
Neo4j
Query GUID
e303498f-e3d4-489d-8a34-b68e187bc4e7
Query content
MATCH (n:Base)
WHERE n.userpassword IS NOT NULL
OR n.unixpassword IS NOT NULL
OR n.unicodepwd IS NOT NULL
OR n.msSFU30Password IS NOT NULL
RETURN n
Issue description
This returns users where I can clearly say based on the JSON files that those values are empty. Even if I leave out
msSFU30Password, which is not present in my JSON files, all the same users are returned. Even if I check inside the Neo4j DB, those properties are empty/NULL.After trying for a bit, all users are returns either via
userpasswordorunixpassword.BloodHound version
Bloodhound:latest (9.0.2)
BloodHound DB
Neo4j