Self-Hosted - Your Data Stays On Your Network

Stop spending 40+ hourson manual AD audits.

Get enterprise-grade Active Directory security analysis in minutes. One-command Docker deploy. Data never leaves your network. Compliance-ready reports.

One-command deploy
No cloud dependency
ISO 27001 aligned
376
Vulnerability Types
AD • Azure • Intune • Exchange
<5min
Analysis Time
100%
On-Premises
Live Analysis
56Score
Critical80
High93
Medium56
Password Policies
12
Privileged Accounts
8
Kerberos Delegation
5
Generated in 2.3s - 7,449 users analyzed
ISO 27001
Compliant
PDF Export
Ready
95% cheaper than enterprise tools
"We discovered 47 critical vulnerabilities in our AD in under 3 minutes. Issues that would have taken our team weeks to find manually."
JM
Jean-Marc D.
IT Security Manager, 2,500+ users
376
Vulnerability Types
28+
MITRE Techniques
5min
Average Scan Time
0%
Data Sent to Cloud
10x
Cheaper vs Enterprise

Aligned with industry frameworks

ISO 27001
SOC 2
NIST
GDPR
MITRE ATT&CK

Why EtcSec?

Enterprise-grade security analysis with zero cloud dependency. Self-hosted collector runs entirely on your infrastructure.

Self-Hosted

Docker collector runs on your network. No data leaves your infrastructure.

Fast Results

Complete audit in minutes, not days. No scheduling required.

MITRE ATT&CK Mapped

28+ attack techniques mapped. Understand exactly how vulnerabilities can be exploited.

One-Click Remediation

PowerShell scripts ready to copy-paste. Fix vulnerabilities in seconds, not hours.

How It Works

Enterprise security audit in three simple steps

STEP 01

Deploy the Collector

Run our lightweight Docker collector on your network. It connects securely to your Active Directory via LDAP.

STEP 02

Run the Audit

Connect to your collector from our web interface. The audit engine analyzes 376 vulnerability patterns in real-time.

STEP 03

Get Actionable Report

Receive a prioritized list of vulnerabilities with remediation scripts and compliance mapping.

app.etcsec.com
$
Auto-replay

Air-gapped environment?

For networks without internet access, export the audit results as JSON using the collector CLI tool, then import the file on our web interface for analysis and reporting.

Security-First Design

AD CollectorSecure by Default

A lightweight Docker container with enterprise-grade security. Consumable tokens prevent theft, rate limiting blocks abuse, and localhost binding keeps your data isolated.

Consumable Tokens
Tokens limited to N uses (3-100). Once exhausted, automatically invalidated.
Short-Lived Sessions
1-hour token expiry by default, not 365 days like legacy systems.
Network Isolation
Binds to localhost only. Never exposed to internet unless configured.
One-Command Install
wget https://raw.githubusercontent.com/Fuskerrs/docker-ad-collector-n8n/main/install.sh && chmod +x install.sh && ./install.sh
Auto-detects OS, installs Docker if needed
Interactive configuration wizard
Tests LDAP connectivity automatically
Generates secure token with usage limits
376
Checks
47
Endpoints
138
MB Image
<3s
Startup
Comprehensive Coverage

376 Security Checks Across All Platforms

Comprehensive security analysis across Active Directory, Azure AD, Intune, and Exchange Online

CRITICAL

Password Security

Empty passwords, plaintext storage, weak hashing

CRITICAL

AS-REP Roasting

Offline password cracking without authentication

CRITICAL

Kerberos Delegation

Unconstrained delegation vulnerabilities

CRITICAL

Plaintext Credentials

Passwords in description fields

HIGH

Kerberoastable Accounts

Service accounts with SPNs

HIGH

Privileged Groups

Excessive domain admins

HIGH

DCSync Rights

Dangerous replication permissions

CRITICAL

Non-Compliant Devices

Mobile devices violating security policies

CRITICAL

Unencrypted Devices

Mobile devices without encryption

CRITICAL

Excessive Mailbox Delegation

Unauthorized access to mailboxes

CRITICAL

External Forwarding Rules

Automatic email forwarding to external domains

HIGH

Jailbroken Devices

Rooted or jailbroken mobile devices

HIGH

Weak Anti-Spam Settings

Insufficient email security configuration

+8 MORE

And More...

Medium, low, and informational findings

Run Your Free Audit

One-command Docker deploy - 100% on-premises - Results in minutes

Industry Standard Framework

MITRE ATT&CKCoverage Built-In

Every finding is mapped to MITRE ATT&CK techniques. Understand exactly how attackers can exploit each vulnerability and prioritize based on real-world threat intelligence.

6Credential Access techniques detected
5Persistence techniques detected
4Privilege Escalation techniques detected
3Lateral Movement techniques detected
Learn about MITRE ATT&CK

Sample Findings with ATT&CK Mapping

Kerberoastable Accounts
Credential Access
T1558.003
AS-REP Roastable Users
Credential Access
T1558.004
DCSync Permissions
Credential Access
T1003.006
Unconstrained Delegation
Credential Access
T1558.001
GPO Write Access
Persistence
T1484.001
SID Filtering Disabled
Persistence
T1134.005

Click technique IDs to view details on MITRE ATT&CK

Why Choose EtcSec?

10x More Affordable Than Enterprise Tools

Get enterprise-grade security analysis at a fraction of the cost. No hidden fees, no sales calls required.

FeatureEtcSecPurple KnightTenable ADCrowdStrike
Annual Cost (500 users)1 611€/yrFree (limited)15 000€+/yr20 000€+/yr
Deployment1 command DockerDesktop appAgent installAgent install
InterfaceModern Web UIDesktop onlyLegacy UICloud console
Azure AD / Entra ID
×
Add-on $$$
MITRE ATT&CK Mapping
×
Remediation Scripts
×
PartialPartial
Self-Hosted Option
×
×
Transparent Pricing
×
×

Your Potential Savings

15 000€+
Enterprise tools/year
1 611€
EtcSec Essentials/year
=
13 389€+
Saved per year

Choose Your Provider

Audit one or all of your identity providers. Unified dashboard for hybrid environments.

AVAILABLE

Active Directory

On-premises identity

233security checks
  • Password policy analysis
  • Kerberos security checks
  • Privileged account review
  • Delegation vulnerabilities
  • ADCS certificate risks
Start Audit
AVAILABLE

Azure AD / Entra ID

Microsoft cloud identity

143security checks
  • Conditional Access gaps
  • MFA enforcement audit
  • PIM configuration
  • Guest user analysis
  • App permissions review
Start Audit
COMING SOON

Intune

Mobile device management

15-20security checks
  • Device compliance policies
  • App protection policies
  • Encryption enforcement
  • Jailbroken device detection
  • Mobile threat defense
COMING SOON

Exchange Online

Email security audit

10-15security checks
  • Mailbox delegation review
  • External forwarding rules
  • DLP policy analysis
  • Anti-spam settings
  • Retention policies
COMING SOON

Google Workspace

Google cloud identity

40+security checks
  • OAuth app permissions
  • Admin roles analysis
  • Drive sharing audit
  • 2FA enforcement
  • User activity patterns
Simple, Transparent Pricing

Choose Your Plan

Start with our free collector. Upgrade when you need advanced features like scheduling, compliance reports, and SIEM integration.

AVAILABLE NOW

Free

0€/forever
  • Open-source collector
  • 376 security checks
  • Active Directory
  • Self-hosted
  • JSON/CSV export
  • Scheduled audits
  • Compliance reports
Download Collector

Essentials

179€/month
  • Everything in Free
  • AD + Azure AD / Entra ID
  • 2 collectors
  • 90-day audit history
  • Scheduling & email alerts
  • MITRE ATT&CK mapping
  • PDF/CSV export
  • Up to 500 users
Contact Us
POPULAR

Professional

449€/month
  • Everything in Essentials
  • + Google Workspace + Intune
  • 5 collectors
  • 1 year audit history
  • API access & webhooks
  • Trend analysis
  • 3 tenants
  • Up to 2,000 users
Contact Us

Business

899€/month
  • Everything in Professional
  • + Exchange Online
  • 15 collectors
  • 2 years audit history
  • SIEM integration
  • SSO / SAML
  • SLA 99.5%
  • 10 tenants
  • Up to 5,000 users
Contact Us
MSSP

Partner

1,499€/month
  • Everything in Business
  • Unlimited collectors
  • 3 years audit history
  • Unlimited tenants
  • White-label reports
  • Client portal
  • Revenue share program
  • Dedicated CSM
Contact Sales
FeaturesFreeEssentialsProfessionalBusinessPartner
Security checks376376376376376
Active Directory
Azure AD / Entra ID
×
Google Workspace
×
×
Microsoft Intune
×
×
Exchange Online
×
×
×
Collectors12515Unlimited
Audit frequency1/week1/day4/dayUnlimitedUnlimited
Audit history30 days90 days1 year2 years3 years
Tenants11310Unlimited
Scheduled audits
×
MITRE ATT&CK
×
API access
×
×
SIEM integration
×
×
×
SSO / SAML
×
×
×
White-label
×
×
×
×
SupportCommunityEmailChat + EmailPriority + PhoneDedicated CSM
Price0€/forever179€/mo449€/mo899€/mo1,499€/mo

Need Custom Add-ons?

Use our pricing calculator to add extra users, sites, collectors, compliance packs, and more.

Open Pricing Calculator
Free forever for basic audits

Ready to secure youridentity infrastructure?

Start with a free Active Directory audit. No credit card required. Self-hosted on your network. Results in minutes.