Install BloodHound Community Edition with Docker Compose

  • Updated

This article applies to BHCE

Purpose

This article outlines the configuration files of BloodHound Community Edition (CE) installed with Docker Compose and how to configure them.

For a more advanced walkthrough of the deployment process, read our deployment README.MD in GitHub.

NOTE: If you intend to expose the databases outside of Docker, do not follow this guide. Use the instructions in README.MD to make sure you change the default database passwords accordingly.

Prerequisites

Running the example Docker Compose project requires the following:

The simplest way to get started is to install Docker Desktop, as it will provide both prerequisites and requires no additional configuration.

Process

Optional: One-Line command for Steps 1-3

curl -L https://github.com/SpecterOps/BloodHound/raw/main/examples/docker-compose/docker-compose.yml | docker compose -f - up
  1. Download and store docker-compose.yml in the directory from which you would like to run BloodHound CE.
  2. Open a terminal interface, and from the directory you selected run docker-compose up
    • To run BloodHound CE without the need to maintain the terminal interface, use docker-compose up -d, and then docker-compose logs to see the most recent logs from the environment.
  3. Docker Compose will download the required container images and initialize them. The logs will display the randomized default password to log into your new BloodHound CE environment.
  4. Copy this password and open a web browser to http://localhost:8080.
  5. Log in with the default username admin and the password from the logs.
    • The password cannot be regenerated. If you lost the password, simply run docker compose down -v and then docker compose up to reset your databases.
  6. You will be required to change the password, thereafter you're logged into BloodHound CE!

Outcome

At the completion of this process, users will be logged into a locally hosted BloodHound CE tenant running with Docker Compose.