Beyond AD. Beyond Azure. Beyond Limits.
Attack Paths unleashed with BloodHound OpenGraph
Introducing BloodHound OpenGraph, an innovative new capability for BloodHound that expands attack path analysis beyond the Microsoft ecosystem. For the first time, BloodHound allows you to ingest and visualize Identity Attack Paths and relationships from any platform, repository, or application.
Community-Driven Security
SpecterOps has historically focused BloodHound coverage on AD and Azure as a result of the widespread adoption of those platforms. With BloodHound OpenGraph, we are expanding the community’s ability to quickly ingest sources from across the enterprise to increase the power of Attack Path Management.
Extensibility
Why OpenGraph?
SaaS applications and platforms like AWS, GCP, Salesforce, GitHub power the modern enterprise. While BloodHound’s powerful attack path analysis has historically focused on Microsoft-centric environments, we’ve long envisioned bringing the same comprehensive capabilities to these other critical platforms.
BloodHound OpenGraph is the first major step toward realizing that vision—creating visibility into Identity Attack Paths across your entire technology ecosystem.
Discover Attack Paths everywhere
BloodHound OpenGraph enables your operations and security teams to identify threats to your unique environment.
Model identity risk across disparate systems and applications
Visualize custom attack paths across cloud services, SaaS applications, and even internal custom tools
Harness BloodHound’s robust search and Cypher query capabilities to uncover hidden attack vectors throughout your technology stack
The graph of all graphs
Effective Identity Attack Path Management requires a flexible graph, able to scale to the unique mix of systems and applications within a modern environment.
Single purpose graphs for cloud infrastructure or endpoint security don’t scale to this level, leaving hidden pathways to critical assets. BloodHound OpenGraph is built to ingest an order of magnitude more data than legacy graphs to provide the coverage you need.
Our commitment to continuous improvement
BloodHound OpenGraph will introduce continuous expansion and depth to the platform through ongoing research by the SpecterOps team, the BloodHound community, and strategic partners.
Initially, BloodHound OpenGraph offers:
Ingestion and modeling of custom identity data
Advanced querying
Visualization of attack paths
We will continue to introduce new features to OpenGraph over time; these include custom entity panels, support for processed complex attack paths, findings support for BloodHound Enterprise, and more!
Now that you have
BloodHound OpenGraph,
show us what you can do with it!
