Overview

Purple Knight is a free security assessment tool developed by Semperis to identify and mitigate vulnerabilities in Active Directory (AD), Entra ID (formerly Azure AD), and Okta environments. It scans for over 185 Indicators of Exposure (IoEs) and Indicators of Compromise (IoCs), providing organizations with a comprehensive evaluation of their hybrid identity infrastructure. The tool generates detailed reports that highlight security gaps and offer expert guidance for remediation, enabling organizations to proactively secure their identity systems before attackers can exploit weaknesses.​

Features and Capabilities

• Comprehensive Security Scanning: Detects over 185 IoEs and IoCs across AD, Entra ID, and Okta environments.
• Categorized Risk Assessment: Evaluates security across five key categories: Account Security, AD Delegation, Group Policy Security, AD Infrastructure, and Kerberos Security.
• Actionable Remediation Guidance: Provides expert, prioritized recommendations to address identified vulnerabilities, such as inactive admin accounts and outdated passwords.
• Integration with Security Frameworks: Maps findings to MITRE ATT&CK and ANSSI frameworks, aiding in contextualizing threats and aligning with industry standards.
• Periodic Security Validation: Allows for regular scans to monitor and maintain a secure hybrid AD environment over time.
• User-Friendly Interface: Features a GUI-based design that simplifies the assessment process, making it accessible for both experienced IT professionals and those with limited AD expertise.
• Community-Driven Threat Intelligence: Incorporates insights from a global community to stay updated on emerging threats and vulnerabilities.
• No Installation Required: Operates as a standalone executable, eliminating the need for complex setup procedures.
• Free to Use: Offers a no-cost solution for organizations seeking to enhance their identity security posture.