BloodHoundAD / BloodHound

Six Degrees of Domain Admin

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Unzipping problem

x00Phillip opened this issue · comments

I am asking for a little help. I am currently trying to upload a zip file to Bloodhound. I got a message unzipping file x.zip but it is still empty. I don't even get the box with json files, just nothing. Any idea why?

My coworker and I are having the same issue on different machines. The specific file was BloodHound-win32-x64.zip. We've tried CLI and GUI. This file BloodHound-win32-ia32.zip failed too. Our machines have Defender removed and Google Chrome AV disabled too. Zips appear corrupted.

I've found something odd. Google Chrome, File Explorer, and PowerShell's Expand-Archive cmdlets cannot open the archive. However, 7-zip can open the archive:
image

However, it cannot extract:
image

I also checked and I have 30 GB available.

Confirmed Answer: It appears my company's deep packet inspection is quarantining select files within the .zip across the wire. We only notice this lack of files when we attempt to extract it. I theorize this because my file size was 65,535 KB and his was 65,533 KB when we both downloaded it via Google Chrome GUI. I was able to confirm this by determining that other hacking/adult/etc. websites were blocked. I then dropped my company VPNs and used the public Wi-Fi and the file downloaded successfully and could be extracted. This confirmed deep packet inspection was actively neutering the file.