The traditional approach to exposure management involves detailed, per-asset vulnerability enumeration, which is then correlated with criticality, impact, and likelihood of exploitation. This approach misses an entire class of vulnerabilities that BloodHound users know too well; the relationship between entities and attributes is vitally important. Two systems may appear perfectly secure on their own, only to open a path to attackers when combined.
This session explores how to uncover unusual attack paths and hidden exposures through network analysis at scale, highlighting vulnerabilities that aren’t visible at the individual asset level, demonstrated using BloodHound OpenGraph and Cypher queries.
Get the latest news and expert insights delivered in your inbox.