The attack path management tool Forest Druid, which powers Microsoft Entra, focuses on Tier 0 assets. This means it can identify and close attack paths much more quickly.
Semperis expands its community-powered attack path management tool Forest Druid to support Microsoft Entra ID (formerly Azure Active Directory). This saves cybersecurity teams valuable time identifying and closing risky attack paths in hybrid identity systems.
The new announcement underscores Semperis' strategy to help organizations protect both on-prem Active Directory (AD) and newer, cloud-based identity systems. Semperis recently announced that it will support Okta's solutions with its free and popular vulnerability assessment tool Purple Knight, which has been downloaded by more than 20.000 companies.
Control tier-0 asset attack paths
Unlike traditional AD attack path management tools, which require security professionals to examine a variety of possible attack paths, Forest Druid accelerates analysis by focusing on “Tier 0 assets” – accounts, groups and other assets that have direct or indirect administrative control over an AD or Entra ID environment. This prevents attackers from gaining control of the entire network by accessing Tier 0 assets.
New enhancements to Forest Druid include settings to control data collection from on-prem and cloud identity systems, as well as new controls to improve the Defense Perimeter Relationship Graph. This is a map of all objects with privileged relationships to Tier 0 assets.
“Since its launch in fall 2022, Forest Druid has helped thousands of cybersecurity professionals more quickly identify attack paths and remove disproportionate privileges in Active Directory,” said Darren Mar-Elia, VP of Products at Semperis. “By expanding Forest Druid to support Entra ID, security teams can now detect risky access to Tier-0 assets even in hybrid identity environments – which have become a popular target for cyber attackers. These recent enhancements in Forest Druid and Purple Knight address our customer community’s concerns about emerging attacks on Entra and Okta, as well as traditional AD environments.”
Save time and resources when identifying attack paths
“Cybersecurity professionals are often under time pressure to close security vulnerabilities before they are exploited by attackers,” said Ran Harel, associate vice president of security products at Semperis. “As more companies use cloud identity systems like Entra ID and Okta – often in conjunction with on-premises AD – the attack surface is expanding. This provides more opportunities for malicious actors to penetrate the environment and install malware. Forest Druid helps security managers visually display risky access options to privileged accounts. By identifying the true Tier-0 perimeter and prioritizing sensitive accounts, cybersecurity teams save valuable time and resources protecting the identity system.”
More at Semperis.com
About Semperis
For security teams tasked with defending hybrid and multi-cloud environments, Semperis ensures the integrity and availability of critical enterprise directory services at every step in the cyber kill chain, reducing recovery time by 90%. Purpose-built to secure hybrid Active Directory environments, Semperis' patented technology protects over 50 million identities from cyberattacks, data breaches and operational failures.