Early bird registration for SO-CON 2026 is now open! Register Now

Contact Us
Support
Blog

Toggle main menu visibility

Book a Demo

Platform
- BloodHound Enterprise
  
  Advance from mapping to eliminating attack paths with the enterprise platform that delivers at scale
  
  Identity Attack Path Management
  
  Privilege Zones
  
  BloodHound Feature Comparisons
  
  Integrations
  
  Interactive Demo
  
  BloodHound Community Edition
  
  Start mapping attack paths with the open-source tool that started it all
  
  GitHub
  
  OpenGraph
  
  Documentation
  
  Join the Community on Slack
  
  The CISO’s Guide to Modern Identity Security
  
  A strategic framework for security leaders navigating the shift from reactive incident response to proactive attack path management.
  Read More
Services & Tradecraft
- OFFENSIVE SERVICES
  
  Red Team
  
  Purple Team
  
  AI Red Team
  
  Penetration Testing
  
  Maturity Assessments
  
  Attack Path Assessment
  
  TRAINING & TRADECRAFT
  
  Adversary Tactics
  
  Red Team Operations
  
  Identity-Driven Offensive Tradecraft
  
  Detection
  
  Tradecraft Analysis
  
  Adversary Perspectives
  
  Active Directory
  
  Azure
  
  TRAININGS
  
  SO-CON 2026
  
  Master in-demand skills with our specialized courses at SO-CON 2026.
  Register Now
Solutions
- SOLUTIONS
  
  Privileged Access Governance & Compliance
  
  Eliminate Lateral Movement
  
  Manage Identity Risk
  
  Secure Scaling
  
  Mergers & Acquisitions
  
  INDUSTRIES
  
  Public Sector
  
  Healthcare
  
  Financial Services
  
  PARTNERS & INTEGRATIONS
  
  Partners
  
  Integrations
  
  RESOURCES
  
  Attack Path Management Maturity Model
  
  Evaluate your ability to stop identity-based attacks
  Read the Whitepaper
Community
- Our Commitment to  Open Source
  
  Committed to advancing the community through open source contributions, cutting-edge research, and knowledge sharing
  
  OPEN SOURCE TOOLS
  
  BloodHound Community Edition
  
  Mythic
  
  Ghostwriter
  
  Nemesis 2.0
  
  See All Tools
  
  Join the Conversation
  
  Learn from others and share your story on the BloodHoundGang Slack Community
  Connect with us
  
  OPEN SOURCE RESEARCH
  
  Collaborative Editing
  
  Ghostwriter now supports real-time collaborative editing for observation...
  More Info
Company
- ABOUT US
  
  Why SpecterOps
  
  News
  
  GET IN TOUCH
  
  Careers
  
  Contact Us
  
  PRESS RELEASE
  
  SpecterOps Expands the Power of Attack Path Management to Reduce Identity Risk Across the Enterprise with BloodHound OpenGraph and v8.0
  Learn More
  
  FEATURED EVENT
  
  SO-CON 2026
  
  Conference: April 13-14, 2026
  Training: April 15-18, 2026
  Register
Resources
- RESEARCH
  
  Case Studies
  
  White Papers
  
  Tools
  
  Datasheets
  
  Podcasts
  
  View All
  
  BLOG
  
  Research & Tradecraft
  
  BloodHound
  
  Industry Insights
  
  Company Updates
  
  View All
  
  EVENTS
  
  SpecterOps Events
  
  SO-CON
  
  Webinars
  
  Meetups
  
  Talks
  
  View All
  
  BLOG
  
  Fueling the Fight Against Identity Attacks
  
  When we founded SpecterOps, one of our core principles was to build a...
  Read article
  
  RESOURCES
  
  The Renaissance of NTLM Relay Attacks
  
  NTLM relay attacks have been around for a long time. While many security...
  Read the Whitepaper
Book a Demo
Contact Us

Support

Blog
Book a Demo

Platform
- BloodHound Enterprise
  
  Advance from mapping to eliminating attack paths with the enterprise platform that delivers at scale
  
  Identity Attack Path Management
  
  Privilege Zones
  
  BloodHound Feature Comparisons
  
  Integrations
  
  Interactive Demo
  
  BloodHound Community Edition
  
  Start mapping attack paths with the open-source tool that started it all
  
  GitHub
  
  OpenGraph
  
  Documentation
  
  Join the Community on Slack
  
  The CISO’s Guide to Modern Identity Security
  
  A strategic framework for security leaders navigating the shift from reactive incident response to proactive attack path management.
  Read More
Services & Tradecraft
- OFFENSIVE SERVICES
  
  Red Team
  
  Purple Team
  
  AI Red Team
  
  Penetration Testing
  
  Maturity Assessments
  
  Attack Path Assessment
  
  TRAINING & TRADECRAFT
  
  Adversary Tactics
  
  Red Team Operations
  
  Identity-Driven Offensive Tradecraft
  
  Detection
  
  Tradecraft Analysis
  
  Adversary Perspectives
  
  Active Directory
  
  Azure
  
  TRAININGS
  
  SO-CON 2026
  
  Master in-demand skills with our specialized courses at SO-CON 2026.
  Register Now
Solutions
- SOLUTIONS
  
  Privileged Access Governance & Compliance
  
  Eliminate Lateral Movement
  
  Manage Identity Risk
  
  Secure Scaling
  
  Mergers & Acquisitions
  
  INDUSTRIES
  
  Public Sector
  
  Healthcare
  
  Financial Services
  
  PARTNERS & INTEGRATIONS
  
  Partners
  
  Integrations
  
  RESOURCES
  
  Attack Path Management Maturity Model
  
  Evaluate your ability to stop identity-based attacks
  Read the Whitepaper
Community
- Our Commitment to  Open Source
  
  Committed to advancing the community through open source contributions, cutting-edge research, and knowledge sharing
  
  OPEN SOURCE TOOLS
  
  BloodHound Community Edition
  
  Mythic
  
  Ghostwriter
  
  Nemesis 2.0
  
  See All Tools
  
  Join the Conversation
  
  Learn from others and share your story on the BloodHoundGang Slack Community
  Connect with us
  
  OPEN SOURCE RESEARCH
  
  Collaborative Editing
  
  Ghostwriter now supports real-time collaborative editing for observation...
  More Info
Company
- ABOUT US
  
  Why SpecterOps
  
  News
  
  GET IN TOUCH
  
  Careers
  
  Contact Us
  
  PRESS RELEASE
  
  SpecterOps Expands the Power of Attack Path Management to Reduce Identity Risk Across the Enterprise with BloodHound OpenGraph and v8.0
  Learn More
  
  FEATURED EVENT
  
  SO-CON 2026
  
  Conference: April 13-14, 2026
  Training: April 15-18, 2026
  Register
Resources
- RESEARCH
  
  Case Studies
  
  White Papers
  
  Tools
  
  Datasheets
  
  Podcasts
  
  View All
  
  BLOG
  
  Research & Tradecraft
  
  BloodHound
  
  Industry Insights
  
  Company Updates
  
  View All
  
  EVENTS
  
  SpecterOps Events
  
  SO-CON
  
  Webinars
  
  Meetups
  
  Talks
  
  View All
  
  BLOG
  
  Fueling the Fight Against Identity Attacks
  
  When we founded SpecterOps, one of our core principles was to build a...
  Read article
  
  RESOURCES
  
  The Renaissance of NTLM Relay Attacks
  
  NTLM relay attacks have been around for a long time. While many security...
  Read the Whitepaper
Book a Demo
Contact Us

Support

Blog
Book a Demo

SpecterOps Resource Center

Filters

CATEGORY

Resources Open-source Tools

TOPICS/USE CASES

Detection

Tradecraft Analysis

Red Team Operations

Vulnerability Research

Active Directory Security Fundamentals

Security Fundamentals

Attack Path Management

TYPE

e-Books White Papers Datasheets Case Studies Reports Vulnerability Acknowledgements

Filters

CATEGORY

Resources Open-source Tools

TOPICS/USE CASES

Detection

Tradecraft Analysis

Red Team Operations

Vulnerability Research

Active Directory Security Fundamentals

Security Fundamentals

Attack Path Management

TYPE

e-Books White Papers Datasheets Case Studies Reports Vulnerability Acknowledgements

Clear All Filters

Filter

CATEGORY

Resources Open-source Tools

TOPICS/USE CASES

Detection

Tradecraft Analysis

Red Team Operations

Vulnerability Research

Active Directory Security Fundamentals

Security Fundamentals

Attack Path Management

TYPE

e-Books White Papers Datasheets Case Studies Reports Vulnerability Acknowledgements

Clear All Filters

Search Resources and Open Source Tools:

Open-source Tools

BARK

BARK is a PowerShell script built to assist the BloodHound Enterprise team with researching and continuously validating abuse primitives.

Read more

BARK

Apollo

Apollo is a Windows agent written in C# using the 4.0 .NET Framework designed to be used in SpecterOps training…

Read more

Apollo

Covenant

Covenant is a .NET command and control framework that aims to highlight the attack surface of .NET, make the use…

Read more

Covenant

JamfHound

JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object…

Read more

CuddlePhish

Weaponized multi-user browser-in-the-middle (BitM) for penetration testers.

Read more

CuddlePhish

LSA Whisperer

LSA Whisperer is a set of tools for interacting with authentication packages using their individual message protocols.

Read more

GhostPack

GhostPack is (currently) a collection various C# implementations of previous PowerShell functionality.

Read more

GhostPack

Page 3 / 3

Sign up for the latest updates

X/Twitter
This field is for validation purposes and should be left unchanged.
Sign Up For Updates From SpecterOps
Email**

Δ

By clicking submit, you're confirming that you agree to our Terms and Conditions.

Never miss an update

Phone
This field is for validation purposes and should be left unchanged.
Sign Up For Updates From SpecterOps
Email**

Δ

BloodHound Enterprise

Identity Attack Path Management

Privilege Zones

BloodHound Feature Comparison

Interactive Demo

BloodHound Community Edition

Join the Community on Slack

Services and Tradecraft

OFFENSIVE SERVICES

Penetration Testing

Maturity Assessments

Attack Path Assessment

TRAINING & TRADECRAFT

Adversary Tactics

Red Team Operations

Identity-Driven Offensive Tradecraft

Tradecraft Analysis

Adversary Perspectives

Active Directory

Privileged Access Governance and Compliance

Eliminate Lateral Movement

Manage Identity Risk

Mergers & Acquisitions

Financial Services

PARTNERS & INTEGRATIONS

Research & Tradecraft

Industry Insights

Company Updates

SpecterOps Events

BloodHound Enterprise

Identity Attack Path Management

Privilege Zones

BloodHound Feature Comparison

Interactive Demo

BloodHound Community Edition

Join the Community on Slack

OPEN SOURCE TOOLS

Our Commitment to Open Source

BloodHound Community Edition

Copyright 2025 Specter Ops, Inc. All Rights Reserved.

Terms of Service

|

Privacy Policy

|

Trust Center