Deploy in One Command — Audit in Under 5 Minutes

How EtcSec Works

Enterprise-grade security analysis in minutes. The collector runs on your infrastructure. Standalone mode available for full data locality.

435
Vulnerability Types
<5min
Analysis Time
Self-Hosted Collector
2
Platforms Covered

Three Simple Steps

1

Deploy the Collector

Run our lightweight Docker collector on your network. It connects securely to your identity provider via LDAP (AD), Graph API (Azure), or Admin SDK (Google Workspace).

2

Run the Audit

Connect to your collector from our web interface. The audit engine analyzes named detections for Active Directory and Entra ID with live progress tracking.

3

Get Actionable Report

Receive a prioritized list of vulnerabilities with remediation scripts and compliance mapping. Export as PDF for stakeholders or JSON for integration.

Security & Privacy First

The collector runs on your infrastructure — you control the deployment. In standalone mode, all data stays local. In SaaS mode, data is securely transmitted to the dashboard for analysis.

Self-Hosted Collector
Runs on your infrastructure
No Cloud Dependency
Works in air-gapped environments
Read-Only Access
Collector never modifies data

Comprehensive Security Coverage

Active Directory

On-premises identity

Critical44 checks
High103 checks
Medium97 checks
Low19 checks
  • Password security (empty, plaintext, weak)
  • Kerberos attacks (AS-REP, Kerberoasting)
  • Delegation vulnerabilities
  • Privileged account review
  • ADCS certificate risks (ESC1-6)

Azure AD / Entra ID

Microsoft cloud identity

Critical22 checks
High60 checks
Medium53 checks
Low9 checks
  • Conditional Access policy gaps
  • MFA enforcement audit
  • PIM configuration review
  • Guest user analysis
  • App permissions review
  • Risky users & sign-ins
COMING SOON

Intune

Mobile device management

Total Checks15-20 checks
  • Device compliance policies
  • App protection policies
  • Encryption enforcement
  • Jailbroken device detection
  • Mobile threat defense
COMING SOON

Exchange Online

Email security audit

Total Checks10-15 checks
  • Mailbox delegation review
  • External forwarding rules
  • DLP policy analysis
  • Anti-spam settings
  • Retention policies

Aligned with industry frameworks

NISTGDPRMITRE ATT&CKCISANSSI
Identity Security Resources

Explore the identity security pages that support this topic

Explore detailed pages for Active Directory, Entra ID, ETC Collector deployment, and side-by-side product comparisons.

Active Directory security audit

Review the landing page focused on Tier 0, Kerberos, delegation, ADCS, and remediation priorities.

Open page
Microsoft Entra ID security audit

See the Entra ID page covering Conditional Access, MFA, PIM, app permissions, and guest exposure.

Open page
PingCastle alternative

Compare PingCastle with ETC Collector for recurring AD audits and standalone collection workflows.

Open page
Purple Knight alternative

Compare Purple Knight with ETC Collector for AD plus Entra ID reviews and recurring follow-up.

Open page
ETC Collector

Review ETC Collector, its local deployment modes, and how teams run standalone or recurring audits.

Open page

Standalone mode available • No credit card required • Results in minutes

← Back to home
Free Active Directory & Entra ID Security Audit | EtcSec