> ## Documentation Index
> Fetch the complete documentation index at: https://specterops-bp-2735-release-notes.mintlify.site/llms.txt
> Use this file to discover all available pages before exploring further.

# GPLink

> A linked GPO applies its settings to objects in the linked container.

<img noZoom src="https://mintcdn.com/specterops-bp-2735-release-notes/2djt2Sp9UeFPjBFr/assets/enterprise-AND-community-edition-pill-tag.svg?fit=max&auto=format&n=2djt2Sp9UeFPjBFr&q=85&s=a791748158fde5ff3b3b82b51497ab39" alt="Applies to BloodHound Enterprise and CE" width="482" height="45" data-path="assets/enterprise-AND-community-edition-pill-tag.svg" />

The GPLink relationship connects a Group Policy Object ([GPO](/resources/nodes/gpo)) to an AD domain or organizational unit ([OU](/resources/nodes/ou)) it is linked to.

The [GPO](/resources/nodes/gpo)'s settings apply to AD accounts (users and computers) within that domain or [OU](/resources/nodes/ou).

The Enforced property on the edge indicates whether the [GPO](/resources/nodes/gpo) link is enforced, meaning it still applies if an [OU](/resources/nodes/ou) has blocked GPO inheritance.

## Abuse Info

Control over the [GPO](/resources/nodes/gpo) can be abused to compromise the AD accounts the GPO applies to by modifying the GPO policy settings.

Refer to [A Red Teamer's Guide to GPOs and OUs](https://wald0.com/?p=179) for details about the abuse technique, and check out the following tools for practical exploitation:

* **Windows**: [SharpGPOAbuse](https://github.com/FSecureLABS/SharpGPOAbuse)
* **Linux**: [pyGPOAbuse](https://github.com/Hackndo/pyGPOAbuse)

## Opsec Considerations

There is no opsec information for this edge.

## Edge Schema

Source: [GPO](/resources/nodes/gpo)\
Destination: [Domain](/resources/nodes/domain), [OU](/resources/nodes/ou)\
Traversable: **Yes**

## References

* [A Red Teamer's Guide to GPOs and OUs](https://wald0.com/?p=179)
* [GitHub: SharpGPOAbuse](https://github.com/FSecureLABS/SharpGPOAbuse)
* [GitHub: pyGPOAbuse](https://github.com/Hackndo/pyGPOAbuse)
