Gain invaluable insights into dangerous escalation paths in your Active Directory environment
ACTIVE DIRECTORY ATTACK GRAPH ANALYTICS - AND BEOYND
Proven track record for quickly getting results
After a first run of adalanche in large enterprise companies, we often get results that surprise both security teams and Active Directory architects.
Typical scenarios are hundreds of users being able to take over everything in the infrastructure by escalating to a member of the Domain Admin group. In horrifying scenarios the infrastructure is so mis-configured that all users have a path.
Adalanche key features
With a download-and-run mentality, adalanche provides a single binary approach, enabling everyone to use it without prerequisites
Intuitive graph based visualizations is the core of adalanche. It makes mapping of attack paths easy to understand – and fix
With enhanced industry standard LDAP queries, you can quickly query for vulnerable objects in your infrastructure
How does adalanche work?
Adalanche offers unparalleled insights to your Active Directory infrastructure. Our custom graph engine analyzes data from Active Directory, VMware vCenter, CyberArk and other popular enterprise tools, and outputs a visual representation of misconfigurations and weaknesses in your IT. This allows you to do risk based remediation even on big installations, and prevents hackers from abusing dangerous attack paths if your company is breached.
Is it dangerous to run adalanche?
No, it is not. Running adalanche requires nothing more than a regular user account, and works by connecting to Active Directory services and querying (reading) data from the LDAP object store, and by reading files from the SYSVOL file share (optional). This data is available to all users, and is also what attackers use to do initial reconnaissance.
Not running adalanche is a bigger risk, because you’re missing insights that attackers have no scruples in obtaining and using against you.