How does ADscan reduce AD pentest time from 5 days to 2?

ADscan automates enumeration (saves 1-2 days), provides semi-guided exploitation paths (saves 1-2 days), and generates MITRE-mapped reports automatically (saves 0.5-1 day). The operator confirms all actions while ADscan handles the grunt work.

What is the difference between a POV and the Design Partner program?

POV is a 14-day lab evaluation to validate fit. Design Partner is a 90-day collaboration with direct support, early features and limited discounted pricing in exchange for an anonymous/public case.

ADscan20 seats left

ES Contact Start Free POV

⚡ Design Partner Program · 10 seats14-day free POV

Reduce AD pentests from 5 days to ~2. Same coverage, better reports.

Automated enumeration, semi‑guided exploitation (always confirmed), and a MITRE‑mapped, client‑ready report.

✓No credit card required✓Instant access✓Full features

Start 14-day POV→▶Watch 3‑min demo

Estimate based on pentester benchmarks and early POVs; confirm in your 14-day POV.

Or apply as Design Partner→

Proof

See it in action

Pays itself in <1 engagement

Demo: Forest (HTB) domain compromise (~3 min)

Asciinema — deterministic replay recorded in an offline lab. Real‑world timing varies by environment.

3:00 Forest (HTB)Word ready

Open on Asciinema

Preview PDF Download .DOCX

Start 14-day POV→

Choose your path

Start with a free POV or join our Design Partner program

RECOMMENDED

Limited slots

🚀

POV (14 days)

✓Free for 14 days — no card
✓Response within 24 hours
✓Full features + Word report export
✓Setup assistance included

Get Free 14-Day Access

No commitment • Cancel anytime

🤝

Design Partner

10 slots left

✓90‑day program, direct support
✓2 guided POVs (onboarding & review)
✓Early access to new features
✓Up to 30% discount year 1

Secure Your Partnership

Exclusive program • Limited partners only

How it works

See how ADscan integrates into your workflow

🔧

Integrations

Works with Kali/Ubuntu; exports to JSON; report templates for Word.

🛡️

Safeguards

Read‑only defaults, gated exploits, full action logs, offline mode.

📋

Report pipeline

JSON evidence → mapped to MITRE → client‑ready Word.

See sample report in Proof ↑

Why teams pick ADscan

Quantifiable benefits that impact your bottom line

⚡

Automated enumeration

Prioritized findings and attack paths surfaced in hours, not days. Save 2-4 days per engagement.

🎯

Semi‑guided exploitation

Pentester‑confirmed actions. You choose the vector; we remove grunt work. Reduce manual effort by 60%.

📊

Kill chain + MITRE

Evidence auto‑packaged into a client‑ready Word report. Professional deliverables in minutes.

💰

Immediate ROI

Reclaim 2–4 days/engagement in many labs. Calculate your savings below.

*Illustrative. Validate in your POV.

POV: 14‑day path to proof

Your structured path to proving ADscan's value

Day 0

Setup (Kali/Ubuntu), scope, safeguards.

Days 1–3

Full enumeration; critical paths identified.

Days 4–10

Semi‑guided exploitation & escalation (pentester confirmed).

Days 11–14

MITRE‑mapped report + debrief with TL.

ROI Calculator

Estimate time saved and incremental margin. Numbers are illustrative; validate in your POV.

Open full‑page calculator

AD pentests/year

Project price (€/project)

Days / pentest

Per engagement

€1,500

Extra margin

Days saved

Per year

€15,000

Extra margin with ADscan

Saved days

Break‑even (booked only)

0.66 engagements

Quick ROI

Numbers are illustrative; validate in your POV.

Pays itself in <1 engagement

View full breakdown

🛡️

Risk‑reversal that makes sense

If the POV doesn't save ≥1 day and surface ≥2 exploitable paths, we extend a second assisted POV at no cost.

Pricing & licensing

Flexible options to fit your team's needs

LITE

Free

Limited version

✓Basic scanning features
✓Limited report templates
✓Community support
✓GitHub download

Download Free

POPULAR

PRO (named seat)

€997/yr

or €129/mo

✓1 device activation
✓All updates & report templates
✓Community support
✓Activate from CLI

Start 14-day POV (Free)

ENTERPRISE (team)

Custom pricing based on team size

✓Tiered volume discounts on named seats
✓SSO/SCIM, offline licensing & 7‑day grace
✓On‑prem license server option
✓Priority support & custom report templates
✓PO billing

Security & Compliance

Enterprise-grade security and compliance built-in

🔒 Enterprise Security🛡️ GDPR Compliant🐧 Linux-First

🔒No data exfiltration; logs local by default + action log for audit

🛡️Safe-mode (read-only) and rate-limits for sensitive environments

🔐Telemetry opt-out from CLI (set telemetry off); DNT respected

💾Offline mode & on-prem license server (7-day grace)

🐧Linux first (Kali/Ubuntu/Parrot); Docker/Windows on near-term roadmap

FAQ

Common questions about ADscan

How does ADscan reduce AD pentests from 5 days to 2?+

ADscan automates enumeration (saves 1-2 days), provides semi-guided exploitation paths (saves 1-2 days), and automatically generates MITRE-mapped reports (saves 0.5-1 day). The pentester confirms all actions while ADscan handles the heavy lifting.

What's the difference between ADscan and PingCastle/Purple Knight?+

PingCastle and Purple Knight are excellent risk assessment tools for IT teams. ADscan goes further by executing semi-guided exploitation, building complete attack chains, and generating MITRE-mapped evidence ready for consulting deliverables.

How does ADscan differ from Pentera?+

Pentera is an automated GUI-based platform designed for IT teams to run simulations. ADscan is a CLI tool built for pentesters who need granular control over attack vectors, reproducible evidence, and detailed technical reports for client deliverables.

Does ADscan work in air-gapped environments?+

Yes. ADscan supports offline licensing and includes an optional on-premises license server for completely air-gapped deployments. All tools and wordlists are included locally.

What operating systems does ADscan support?+

Currently Linux (Kali, Ubuntu, Debian, Parrot). Docker and Windows support is on the short-term roadmap. Design Partners get early access to new platform versions.

Can ADscan integrate with existing pentest workflows?+

Yes. ADscan exports to JSON for integration with other tools, generates Word reports using your templates, and works alongside BloodHound, NetExec, and other standard AD pentest tools.

How much does ADscan cost for consulting companies?+

PRO seats start at €997/year. Enterprise team packs (5/10/25 seats) include volume discounts, SSO, and priority support. POV Pass available at €249 per 14-day engagement for project testing.

What does the 14-day POV include?+

Full ADscan PRO features, setup assistance, Word report generation, and a debrief session with your team lead. No credit card required. Run in your non-production lab environment.

Start POV Design Partner