EtcSecBeta

Free · No signup · 7-day expiry

Free Active Directory & Entra ID Security Audit in 2 minutes

Run an anonymous, browser-based audit across 498 detectors covering Active Directory and Microsoft Entra ID. No credit card, no tenant changes.

  • 498Security detectors
  • 340Active Directory
  • 158Entra ID
  • < 2 minTime to first finding
1
Start
2
Provider
3
Credentials
4
Enroll
5
Connection
6
Audit
7
Results

Let's get started

Live audit
Deploy a 20 MB binary on a jumphost

Connects to your AD (LDAP/LDAPS) or Entra ID (Graph API) in read-only, collects findings in 60-120 seconds.

Import PingCastle XML
Already ran PingCastle? Skip the collector.

Drop your ad_hc_*.xml file. Optionally add the HTML report for affected entity lists.

Pick the XML report above.

What your trial report includes

Everything a PingCastle or Purple Knight report gives you — plus Entra ID coverage, MITRE mapping and remediation previews, rendered in your browser.

  • Global score out of 100

    Weighted score based on critical and high-severity findings across AD and Entra ID, comparable to your peers.

  • Ranked findings

    Every detected weakness, sorted by severity and exploitability, with affected users / computers / groups.

  • MITRE ATT&CK mapping

    Each finding mapped to tactics and techniques so you can brief a SOC or red team in plain language.

  • Remediation snippets

    Copy-ready PowerShell / Graph scripts for the top findings so you can fix the obvious ones before the meeting.

  • PDF export

    Executive-ready PDF with severity breakdown, top findings and compliance mapping — no watermark.

  • Compliance mapping

    ANSSI, NIS2, HDS, ISO 27001 mappings on every finding so you can feed audit files without re-keying.

How EtcSec Trial compares

One-shot AD + Entra ID audits — what the market looks like today

FeatureEtcSec TrialPingCastlePurple KnightSemperis DSP
Active Directory supportYesYesYesYes
Entra ID supportYesNoYesPartial
Agent-lessYesYesYesNo
Browser-native (no install)YesNoNoNo
Time to report< 2 min5–15 min10–30 min15–60 min
LicenseFreeFreeFree (download)Commercial
Signup requiredNoNoFormContact sales

Frequently asked questions

Is EtcSec really free?

Yes. The trial is fully free — no credit card, no signup, no hidden limits on the audit itself. If you want to keep the report past 7 days you can create a free EtcSec account.

Do you store my AD credentials?

Credentials are encrypted in memory during the audit and wiped immediately after. They are never written to disk. The collector is read-only and open source — you can audit what it does.

How is this different from PingCastle?

PingCastle is a free AD-only scanner you download and run locally. EtcSec Trial runs in the browser, covers Entra ID as well, produces a ranked report with MITRE ATT&CK mapping and compliance annotations, and needs no install. You can also import an existing PingCastle XML/HTML into the trial if you already ran one.

What Entra ID permissions are needed?

A read-only Microsoft Graph application with Directory.Read.All and UserAuthenticationMethod.Read.All. No password-reset, no write scopes, no Conditional Access changes.

Can I export the PDF?

Yes — PDF export is available on trial reports. Sign up for a free account to keep exports past 7 days and track your score over time.

How long do the trial results live?

7 days. After that, all trial data is auto-purged and the share link stops working. To keep your findings, create a free account during the 7-day window using the 'Save this report' button on the report page.

AltStyle によって変換されたページ (->オリジナル) /