Skip to content

Platform overview→

Discover

AD Attack Surface MappingUsers, groups, ACLs, GPOs, ADCS, trusts

Validate

Attack Path ValidationExploits every supported path to Domain Admin
Credential & Password ExposureKerberoasting, AS-REP, spraying, cracking
ADCS / Certificate ExposureESC1-ESC15 certificate-template paths
Privilege & Delegation ExposureRBCD, delegation, ACL object-control abuse
Vulnerability ValidationKnown AD CVEs validated against you

Measure & Comply

Domain Security PostureExposure Score, hygiene, trust topology
Compliance MappingEvery finding to DORA, NIS2 and ENS

Operate

Continuous Exposure MonitoringScheduled revalidation, drift (Enterprise)
IntegrationsSIEM, webhooks, ticketing, export

Editions

Community · free open-source CLI
Enterprise · continuous CTEM platform
Compare editions

Featured

Sample reportThe deliverable your board readsProven paths to Domain Admin, mapped to DORA, NIS2 and ENS.EditionsCommunity · PRO · EnterpriseFrom the open-source CLI to the continuous platform. Compare them.

Sample reports Capabilities · 64 techniques Blog

DORA · Financial NIS2 · Healthcare & industry ENS · Public sector

Legal

Legal Notice

We are finalising this legal information. Please check back soon.

On-prem · Open source

Product Editions Security Resources

© 2026 ADscan

Legal notice Privacy Cookies Terms of use

Legal Notice — ADscan | ADscan