Active Directory Deception

Protect your corporate authentication system

For whom is Active Directory Deception suitable?

You can invest in the protection of your company’s assets in many ways. Unfortunately, there is no such thing as guaranteed lifetime security for living systems such as IT infrastructure. A breach (possibly still undiscovered) will always be found, or new vulnerabilities will emerge, for example as a result of updates. Another contributing factor is a lack of patch management or so-called phishing attacks, in which attackers use fake emails or telephone calls to obtain an employee’s access data directly.

It is less a question of company size than the willingness or need to take advantage of the latest technology. Even large IT system companies can benefit from the added credibility a CYBERTRAP partnership brings, giving them an edge in the marketplace. This is why we offer the following packages:

Ecso Label Eurobits Pfade Ev

CYBERTRAP PRO

Ideal for small- and medium-sized businesses that do not have the capacity to deploy a full deception solution.

Discover Pro

CYBERTRAP ENTERPRISE

Large companies as well as critical infrastructure, banks and government agencies that face or have already been victims of targeted hacking attacks.

Discover Enterprise

FAQs

Why are Active Directories particularly vulnerable?

For an attacker, an Active Directory is a perfect place to hide from security teams and their standardized tools. Once inside the system, hackers use specialized tools to map the entire Active Directory environment. By doing so, they can identify valuable resources, systems, and privileged user accounts to exploit to their advantage.

 

Why are Active Directories popular points of attack?

Most organizations now use an Active Directory as a standard tool to manage user and computer access to corporate resources. Every computer on the corporate network must have access to Active Directory for the network environment to function properly. Therefore, it makes a hacker’s job much easier.

 

Why do hackers find Active Directory admin accounts so interesting?

Administrators usually have extended privileges and can create and configure their own domains, retrieve data and access protected areas. By misusing existing credentials, such as an admin account, hackers can go undetected for a very long time.

 

What techniques and tools do hackers use to look for administrator accounts in an Active Directory?

Among other techniques, attackers use phishing and man-in-the-middle techniques. Tools such as the Bloodhound can be used to scan any Active Directory for administrator user accounts.

 

How is an attacker redirected into the Deception environment?

When Cybertrap Active Directory Deception is active, the hacker receives fake credentials when scanning for admin accounts. As soon as these are used, the attacker automatically ends up in a perfect replica of the corporate network (the Deception environment), and the IT administrator in charge is notified.

 

Why doesn’t the attacker realize that he is getting false credentials?

The credentials that the attacker receives are intended for actual systems with real operating systems and services, the so-called traps (decoys). Therefore, he can never determine whether these credentials are real or fake because they do not differ in any way from real credentials.

What happens next?

1

Perform a cost-benefit analysis

Deception technology can reduce Security Operation Center costs by up to 32% (or $22,747 per SOC analyst per year). Find out more with a personal consultation.

2

Schedule a Demo and Deployment session

Once you have completed our free demo session, we will arrange for deployment on the date of your choice. Our security experts will clarify any outstanding questions directly with you.

3

Lock hackers out and optimize systems

The moment an unauthorized query is performed in the Active Directory, you are live. Your company data will remain well protected, and security gaps will be detected and addressed.

Non-binding consultation

We will gladly take the time to answer your questions. After submitting the form, one of our sales representatives will contact you promptly to discuss further about Active Directory Deception.

Your contact person

Carsten Keil

Carsten Keil

“With CYBERTRAP, our goal is to beat any attackers at their own game and thus offer companies greater security with minimal effort.”

“Never interrupt your enemy while he is making a mistake.”
– Napoleon Bonaparte