Version: Purple Knight 4.2 Community
IMPORTANT: The security indicators are assigned a more granular severity level to better align with the updated Security Posture scoring algorithm previously introduced in Purple Knight.
For more information about Purple Knight scoring method, check out “Purple Knight Scoring Improves Understanding of Identity System Vulnerabilities.”
.zip
249 MB
Jun 2025
5499D07BF45C85D0DB2D740595F3F1E5A065321BB7B10672EC8E4D6E97D78C36
Purple Knight is a standalone utility that queries the Active Directory and Entra ID environment and performs a set of tests against many aspects of Active Directory’s security posture, including AD delegation, account security, AD infrastructure security, Group Policy security, and Kerberos security. Purple Knight does not require any elevated or administrator permissions.
It is designed to give a quick snapshot of your hybrid Active Directory environment as an attacker would see it. Purple Knight does not make changes to Active Directory. Need help? Use the “Contact us” form to submit your question. Thank you for joining the Purple Knight community!
Purple Knight users report an average initial security score of 61%—a barely passing grade. But users who apply the prioritized guidance provided with the assessment can systematically close AD security gaps, reducing the attack surface by up to 45%.
