Free · No signup · 7-day expiry

Free Active Directory & Entra ID Security Audit in 2 minutes

Run an anonymous, browser-based audit across 498 detectors covering Active Directory and Microsoft Entra ID. No credit card, no tenant changes.

498 detectors · 340 AD + 158 Entra ID · No credit card · Read-only collector · GDPR compliant · Results expire in 7 days

Security detectors: 498
Active Directory: 340
Entra ID: 158
Time to first finding: < 2 min

Beta

Anonymous trial · Results expire in 7 days

Run a free AD or Entra ID audit

No signup. Deploy one binary, get findings in under 2 minutes.

Start

Provider

Credentials

Enroll

Connection

Audit

Results

Let's get started

EmailOptional — receive a PDF report when the audit completes

I own this environment or have explicit authority to audit it.

Your acceptance is logged with a timestamp and clause version (v1-2026-04-16). See our privacy notice for details.

Live audit

Deploy a 20 MB binary on a jumphost

Connects to your AD (LDAP/LDAPS) or Entra ID (Graph API) in read-only, collects findings in 60-120 seconds.

Import PingCastle XML

Already ran PingCastle? Skip the collector.

Drop your ad_hc_*.xml file. Optionally add the HTML report for affected entity lists.

Pick the XML report above.

What your trial report includes

Everything a PingCastle or Purple Knight report gives you — plus Entra ID coverage, MITRE mapping and remediation previews, rendered in your browser.

Global score out of 100
Weighted score based on critical and high-severity findings across AD and Entra ID, comparable to your peers.
Ranked findings
Every detected weakness, sorted by severity and exploitability, with affected users / computers / groups.
MITRE ATT&CK mapping
Each finding mapped to tactics and techniques so you can brief a SOC or red team in plain language.
Remediation snippets
Copy-ready PowerShell / Graph scripts for the top findings so you can fix the obvious ones before the meeting.
PDF export
Executive-ready PDF with severity breakdown, top findings and compliance mapping — no watermark.
Compliance mapping
ANSSI, NIS2, HDS, ISO 27001 mappings on every finding so you can feed audit files without re-keying.

How EtcSec Trial compares

One-shot AD + Entra ID audits — what the market looks like today

Feature	EtcSec Trial	PingCastle	Purple Knight	Semperis DSP
Active Directory support	Yes	Yes	Yes	Yes
Entra ID support	Yes	No	Yes	Partial
Agent-less	Yes	Yes	Yes	No
Browser-native (no install)	Yes	No	No	No
Time to report	< 2 min	5–15 min	10–30 min	15–60 min
License	Free	Free	Free (download)	Commercial
Signup required	No	No	Form	Contact sales

Frequently asked questions

Is EtcSec really free?

Yes. The trial is fully free — no credit card, no signup, no hidden limits on the audit itself. If you want to keep the report past 7 days you can create a free EtcSec account.

Do you store my AD credentials?

Credentials are encrypted in memory during the audit and wiped immediately after. They are never written to disk. The collector is read-only and open source — you can audit what it does.

How is this different from PingCastle?

PingCastle is a free AD-only scanner you download and run locally. EtcSec Trial runs in the browser, covers Entra ID as well, produces a ranked report with MITRE ATT&CK mapping and compliance annotations, and needs no install. You can also import an existing PingCastle XML/HTML into the trial if you already ran one.

What Entra ID permissions are needed?

A read-only Microsoft Graph application with Directory.Read.All and UserAuthenticationMethod.Read.All. No password-reset, no write scopes, no Conditional Access changes.

Can I export the PDF?

Yes — PDF export is available on trial reports. Sign up for a free account to keep exports past 7 days and track your score over time.

How long do the trial results live?

7 days. After that, all trial data is auto-purged and the share link stops working. To keep your findings, create a free account during the 7-day window using the 'Save this report' button on the report page.

Run a free AD or Entra ID audit

Let's get started

Global score out of 100

Ranked findings

MITRE ATT&CK mapping

Remediation snippets

PDF export

Compliance mapping