• This recent enhancement bolsters organizations’ defense against emerging threats targeting on-premises Active Directory and cloud identity systems.
  • Forest Druid underwent various improvements, featuring additional settings to manage data collection from on-premises and cloud identity systems.

Semperis Ltd., a startup specializing in enterprise identity protection and cyber resilience, has recently expanded its community-driven attack path management tool, Forest Druid, to offer support for Microsoft Entra ID, formerly recognized as Azure AD.

The extra assistance, which follows the company’s August addition of support for Okta Inc. to its Purple Knight tool, is meant to help cybersecurity teams quickly identify and close dangerous attack paths across hybrid identity systems. The inclusion of Entra ID support in Forest Druid, according to Semperis, highlights the company’s commitment to assisting businesses in addressing new Active Directory and cloud identity system threats.

Unlike traditional AD attack path management tools, which force defenders to consider all feasible attack paths carefully, Forest Druid differs. Instead, Forest Druid speeds up attack path analysis by concentrating on Tier 0 assets, such as accounts, groups, and other assets with direct or indirect administrative control over an AD or Entra ID environment. Tier 0 assets give attackers access to the entire network and complete control.

Associate Vice President of security products at Semperis, Ran Harel, said, “As more organizations are embracing cloud identity systems such as Entra ID and Okta — often using them in conjunction with on-prem AD — the attack surface expands, giving malicious actors more opportunities to breach the environment and deploy malware. Forest Druid helps defenders visually map risky access to privileged accounts. By identifying the true Tier 0 perimeter and prioritizing sensitive accounts for remediation, cybersecurity teams save valuable time and resources in safeguarding the identity system.”

Along with Entra ID support, Forest Druid has undergone several upgrades. These improvements include new settings to regulate data collection from on-premises and cloud identity systems and new controls to enhance the defense perimeter relationship graph, a map of objects with privileged connections to Tier 0 assets.

The most recent USD 200 million in funding was raised by the venture capital-backed startup Semperis in May 2022. Atrium Health Strategic Fund LLC, Ten Eleven Ventures LLC, Paladin Capital Group LLC, Kohlberg Kravis Roberts and Co. LP, and Tech Pioneers Fund LP are a few of the company’s investors.