BloodHound is a popular open-source tool used by both attackers and defenders for Active Directory analysis and escalation. The tool is designed to bring a graphical interface to AD structure, and how objects link together with permissions and attack vectors. Since attackers oftentimes use this tool to escalate in the network, an IT team can use the same tool to understand and negate the same escalation paths. This presentation is geared to teach about effective operations and analysis techniques just past the basic "Path to DA" button. "Attackers think in Graphs"