Confidence in Every Log In, 24/7

AD Security Assessment

Find Weak Links in Your AD Before Attackers Do

A fixed-price, expert-led security assessment that identifies password policy weaknesses and Active Directory misconfigurations before attackers exploit them. You’ll also get a detailed report with clear remediation suggestions.  

First Step Towards Stronger Security

Identify Attack Paths

Uncover privilege escalation routes, lateral movement opportunities, and AD misconfigurations.

Actionable Insights

Every finding comes with a risk rating and a prioritized remediation strategy. No vague recommendations.

Focused Assessment

Not looking for a full-scale pen testing engagement? Focus on securing the ‘keys to the kingdom’ first.
Book an Assessment

Why Book an AD Security Assessment?

Hidden Active Directory misconfigurations create attack paths that persist for years undetected. The AD Security Assessment is designed to surface exactly these issues.  

Goes far beyond what free, automated tools can deliver. These tools can’t mimic how an attacker would chain many weaknesses together to get to compromised paths.  

Specops AD Security Assessment is designed as a fixed-price entry pointa focused, high-value engagement that gives you clear visibility of your identity risk without the cost or complexity of a full penetration test engagement 

You’ll get clear guidance from CREST-certified human pen testers on how to remediate the issues within your AD environment.  

The engagement length is five days per domain, which includes one day of re-testing you can claim within three months. 

Whats Included?

Password Policy Check

A structured review of your Active Directory password configuration, assessing whether your current settings provide meaningful protection against credential-based attacks. 

  • Password complexity and account lockout settings reviewed against security best practice 
  • Weak password risk indicators across the domain, including spray vulnerability testing 
  • MFA usage overview across privileged and standard accounts 

Active Directory Assessment

Expert-led manual penetration testing of your AD environment from a standard user account posture, replicating real-world adversary techniques to escalate privileges and move toward domain compromise. Includes but not limited to: 

  • Attack path mapping from standard user to Domain Admin, including privilege escalation checks, lateral movement opportunities, and toxic privilege combinations 
  • ACL/DACL abuse, delegation misconfigurations, and Group Policy Object analysis 
  • Tier 0 asset boundary and privileged group membership review to identify what an attacker could irrevocably compromise 

Deliverables

A full report and executive summary, with risk-rated findings, proof-of-concept evidence, and clear remediation guidance. 

  • Full findings report with risk-rated issues and detailed remediation steps 
  • Executive summary with actionable insights, suitable for board or audit presentation 
  • Immediate notification for any critical or high-risk vulnerabilities identified during testing
  • 5-day engagement includes one day of retesting to be used within three months
Checkmarx cybersecurity

About the Delivery Team

The Specops AD Security Assessment is delivered by Outpost24’s Certified Offensive Security Team. Outpost24 is the parent company of Specops Software and a CREST-accredited offensive security provider operating globally. Their penetration testers bring deep specialism in Active Directory attack paths and identity infrastructure, using the same techniques and tooling as real-world adversaries. 

Interested in an Assessment? Let’s Talk!

Discover your weaknesses before attackers do. Get the full picture of risk regarding your AD, so you can take the appropriate steps to protect it  

Need More Info?

Stay in the Loop with Specops

Check our latest research, blogs, and best practices to level-up your cybersecurity program.

View All Posts

This website uses cookies to ensure you get the best experience on our website. Learn more

Got It!