Identifying exposures at scale with BloodHound OpenGraph

The traditional approach to exposure management involves detailed, per-asset vulnerability enumeration, which is then correlated with criticality, impact, and likelihood of exploitation. This approach misses an entire class of vulnerabilities that BloodHound users know too well; the relationship between entities and attributes is vitally important. Two systems may appear perfectly secure on their own, only to open a path to attackers when combined.

This session explores how to uncover unusual attack paths and hidden exposures through network analysis at scale, highlighting vulnerabilities that aren’t visible at the individual asset level, demonstrated using BloodHound OpenGraph and Cypher queries.

Meet Our Speakers

HD Moore

Founder & CEO, runZero

Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.


Related Resources

Talks
Detecting Forbidden White Labeled and Counterfeit Devices (SecTor 2025)
Learn how to tell if your expensive router (bought cheap!) really is the real thing, and whether your network really is free from forbidden devices.
Talks
Turbo Tactical Exploitation: 22 Tips for Tricky Targets
This rapid-fire session delivers 22 practical tips to help you find juicy targets faster, pivot cleaner, and avoid wasting time on noise.
Talks
The once and future rules of cybersecurity (SecTor keynote)
In this session, HD revisits the rules we lived by in the 2000s, reveal which ones still matter, which ones failed us, and what new rules we'll...
Talks
Vulnerability haruspicy: using woo to confirm your biases (NorthSec 25)
This talk digs into the strengths, weaknesses, and absurdities of CVSS, EPSS, and SSVC, comparing them to the reality of how security teams...

See Results in Minutes

See & secure your total attack surface. Even the unknowns & unmanageable.