Add Automated Query Importer #22
Conversation
|
Heya @fin3ss3g0d, thanks for the contribution :) There is a script to automatically import all the queries from this repo available in the BloodHoundOperator @ https://github.com/SadProcessor/BloodHoundOperator/blob/main/BloodHoundOperator.ps1. I'll check if/how we want to include an importer in this repo + have it use the schema and typer CLI (you can find this in the same utils/ directory) |
|
The problem is it's not bundled in this repo and isn't officially supported/developed by SpecterOps. It also adds an extra step for users cloning this repo that I bet would rather have a nice, simple, cross-OS compatible version with its sole purpose being importing the queries you are providing with your JSON format right in this very repo they can use to get working with the queries in BloodHound as fast as possible. |
Allow users to import by platform category
|
@d3vzer0 what are your requirements for this importer script and what would need to be different in order to merge it? |
|
@fin3ss3g0d If we're planning on including other scripts in this repo I would rewrite the script and add it as an additional command to match how we use Typer, similar to our existing CLI command(s) here: https://github.com/SpecterOps/BloodHoundQueryLibrary/blob/main/utilities/python/convert.py + add a unit test to mimmick the BloodHound API (we also use this to test the Cypher syntax). You don't have to rewrite this yourself, I can make the changes as well :) |
This repository is great, but as it stands people have a difficult time practically using the included queries inside of BloodHound Community Edition. This repository expects external tools to automate importing the queries into BloodHound CE. Why not include a simple Python script that will automate importing all of these queries into BloodHound CE? Users can then point and shoot the queries easier inside of their browsers versus copying and pasting ones they want to try one by one.