apiVersion: apps/v1 kind: Deployment metadata: name: bloodhound spec: replicas: 1 selector: matchLabels: app: bloodhound template: metadata: labels: app: bloodhound spec: containers: - name: graph-db image: docker.io/library/neo4j:4.4 resources: {} env: - name: NEO4J_AUTH valueFrom: configMapKeyRef: name: bloodhound-config key: NEO4J_AUTH - name: NEO4J_dbms_allow_upgrade value: "true" - name: app-db ports: - containerPort: 5432 image: docker.io/library/postgres:13.2 imagePullPolicy: Always resources: {} env: - name: POSTGRES_USER valueFrom: configMapKeyRef: name: bloodhound-config key: POSTGRES_USER - name: POSTGRES_PASSWORD valueFrom: configMapKeyRef: name: bloodhound-config key: POSTGRES_PASSWORD - name: POSTGRES_DATABASE value: bloodhound - name: bloodhound image: docker.io/specterops/bloodhound imagePullPolicy: Always resources: {} ports: - containerPort: 8080 env: - name: bhe_disable_cypher_qc value: "false" envFrom: - configMapRef: name: bloodhound-config volumes: - name: bloodhound-config configMap: name: bloodhound-config --- apiVersion: v1 kind: Service metadata: name: bloodhound-svc spec: selector: app: bloodhound ports: - protocol: TCP port: 8080 targetPort: 8080 type: ClusterIP #### # # Uncommented following if you just need neo4j service # # Warning: change your neo4j user and password in configmap! #apiVersion: v1 #kind: Service #metadata: # name: bloodhound-neo4j #spec: # selector: # app: bloodhound # ports: # - protocol: TCP # port: 7687 # targetPort: 7687 # nodePort: 47687 # type: nodePort