#1 Active Directory security assessment community tool
Active Directory, Azure AD (now called Entra ID), and Okta vulnerabilities can give attackers virtually unrestricted access to your organization’s network and resources. Semperis built Purple Knight—a free AD, Azure AD, and Okta security assessment tool—to help you discover indicators of exposure (IoEs) and indicators of compromise (IoCs) in your hybrid AD environment. Download Purple Knight and dramatically reduce your AD attack surface today.
10,000+
downloads (and counting)
150+
IoEs and IoCs
45%
AD attack surface reduction
Forest Druid
Stop chasing AD attack paths. Focus on your Tier 0 perimeter.
Avoid common Active Directory attacks
AD, Azure AD (now called Entra ID), and Okta security audit
Indicators of Exposure and Indicators of Compromise
Community-driven AD threat intelligence
MITRE ATTACK correlation
Discover the power of Purple Knight!
Uncover potential threats in your environments with a comprehensive analysis of your security score. This video will guide you through Purple Knight’s innovative features, showcasing how the free security assessment tool can fortify your data security and resilience against cyber threats.
Uncover your AD, Azure AD (now called Entra ID), and Okta security vulnerabilities in minutes.
With an Active Directory security audit, spot threats before attackers do
Find AD, Azure AD, and Okta security gaps with Purple Knight. Perform a comprehensive set of tests against the most common and effective attack vectors to find risky configurations and security vulnerabilities.
Identify and prioritize Active Directory security gaps for remediation.
Gain visibility into your hybrid AD security posture with the Purple Knight report. See your AD, Azure AD, and Okta security audit scores in five categories, plus get prescriptive guidance from identity security experts to help you prioritize remediation efforts.
Fix AD, Azure AD (now Entra ID), and Okta security threats that attackers can exploit.
Use Purple Knight's prioritized, expert guidance to systematically address AD, Azure AD, and Okta misconfigurations and unpatched vulnerabilities—for example, admin accounts with old passwords and enabled admin accounts that are inactive.
Validate hybrid AD security posture over time.
Run Purple Knight’s AD security audit periodically to guard against misconfigurations that can accumulate over time and degrade hybrid AD environment security if left unchecked.
Do you know your AD security vulnerabilities?
Purple Knight users report an initial security score of 68%—a barely passing grade.The guidance provided with the assessment can systematically close AD security gaps, reducing the attack surface by up to 45%. Learn how these Purple Knight users hardened security posture of their AD environments.
150+
security indicators
Purple Knight scans for known vulnerabilities and emerging threats discovered by our team of expert threat researchers
Indicators of exposure (IOEs)
Scan your hybrid Active Directory environment to uncover risky configurations that attackers can easily exploit.
Indicators of compromise (IOCs)
Shine a light on evidence of compromise, which can signal an in-progress cyberattack in your Active Directory environment.