BloodHound Legacy
Where it all started: Six Degrees of Domain Admin
BloodHound CE
Map Active Directory and Azure Attack Paths
BloodHound Enterprise
Continuously Monitor, Prioritize, and Eliminate Attack Paths in Active Directory
Compare Features
Data collection
BloodHound Legacy
BloodHound CE
BloodHound Enterprise
Active Directory (AD)
Domain-joined Windows systems
EntraID (AzureAD)
Azure Resource Manager (AzureRM)
Microsoft Graph API
Current data statistics
User Rights Assignments (URA)
URA provides improved accuracy in attack paths at the Windows system level
Historical data quality and trends
Data Collector Management
Scheduled data collection
Signed Data Collection Service
data ingestion
BloodHound Legacy
BloodHound CE
BloodHound Enterprise
Ingest data via UI
Ingest data via API
Data reconciliation
Automatically update changes identified during data collection such as removal of group membership, role assignment, etc.
data Analysis
BloodHound Legacy
BloodHound CE
BloodHound Enterprise
Map Attack Paths between objects
Cypher search support
Entity (“node”) context panels
Attack Path (“edge”) context panels
Save your own custom queries
Export displayed graph
Pre-built Cypher queries
AD Only
Automatically classify Tier Zero assets
Default nodes only
Identify Tier Zero Attack Paths
Attack Path Exposure Measurement
Attack Path remediation guidance
Risk trend analysis and reporting
Architecture and Security
BloodHound Legacy
BloodHound CE
BloodHound Enterprise
Multi-user support with RBAC
2FA support
SAMLv2.0 support
Three-tier application with REST APIs
Fully-managed SaaS application
Support
BloodHound Legacy
BloodHound CE
BloodHound Enterprise
Access to BloodHound Slack Community
24/7/365 Enterprise Support
Assigned Technical Account Manager