Semperis’ Forest Druid ushers in the next generation of attack path management—and it’s not about attack paths
Semperis, a pioneer of identity-driven cyber resilience for enterprises, today announced the availability of Forest Druid, a first-of-its-kind Tier 0 attack path discovery tool for Active Directory environments. Forest Druid takes an inside-out approach to attack path management, which saves time and resources by prioritizing the most sensitive assets first. Forest Druid discovers vulnerable Tier 0 assets—that otherwise go unseen and unprotected—and allows for speedy remediation. Forest Druid is the latest of several free tools released by Semperis, the most popular to date being Purple Knight, a hybrid Active Directory cybersecurity assessment tool used by more than 10,000 enterprises.
“Defenders know you can’t protect what you can’t see,” said Semperis CEO Mickey Bresman. “Semperis’ incident response support is in high demand, so we see firsthand the alarming pattern of attacks exploiting unknown and unsecured Tier 0 assets in Active Directory. Forest Druid visualizes Tier 0 assets in Active Directory and shines a spotlight on all the lingering ownership relationships to these entities, helping to dramatically reduce unnecessary privileges, which are responsible for most of the attack paths leading to your most sensitive assets. The Tier 0 discovery capabilities in Forest Druid, combined with Purple Knight’s comprehensive assessment of indicators of exposure and compromise, form an extremely powerful resource for defenders.”
In a typical organization’s Active Directory, there are countless attack paths an adversary can take to arrive at domain dominance. The problem is clear—excessive privileges. However, sifting through every group and user relationship is an impossible task for defenders. Instead of focusing on the most common attack paths, Forest Druid enables organizations to define a privileged perimeter and cut down on risky relationships at the source—the Tier 0 assets and surrounding entities attackers can exploit to gain more permissions.
“Traditional attack path tools, which analyze the most common paths to domain dominance from the outside-in, work well for attackers but aren’t as practical for defenders,” said Semperis Senior Director of Security Products, Ran Harel. “Forest Druid’s ability to defend from the inside-out, starting with defining the privileged perimeter, is optimal for defenders. After all, the most common attack paths aren’t always the most dangerous ones. It’s all about effectively securing Tier 0 critical assets, and the attack paths are secondary.”
Forest Druid is initially being distributed through an approved network of partners, who have all rigorously tested the tool and can help organizations understand the implications of their unique results. Organizations who prefer not to work with a partner can submit an early access request form and the Semperis team will be in touch.
For more information about Forest Druid’s Tier 0 attack path discovery capabilities, check out the resources below.
- Visit the Forest Druid webpage: https://www.purple-knight.com/forest-druid/
- Request access to Forest Druid: https://www.purple-knight.com/forest-druid/request-form/
- Watch the introduction of Forest Druid at Black Hat USA 2022: https://wi.st/3AGQZV7
- Download the Forest Druid overview: https://www.semperis.com/datasheet-forest-druid/
If you have any questions, feel free to reach out to pk-community@semperis.com.
Visit AITechPark for cutting-edge Tech Trends around AI, ML, Cybersecurity, along with AITech News, and timely updates from industry professionals!