Risky Bulletin Sponsored: SpecterOps on identities at rest and identities in transit
Sep 21, 2025
In this lively conversation, Jared Atkinson, CTO of SpecterOps and creator of BloodHound, dives into the fascinating world of identity security. He unpacks the crucial difference between 'identities at rest' and 'identities in transit,' explaining how they require different management strategies. Jared also shares insights on BloodHound's capabilities for mapping out attack paths and the implications of hybrid cloud attack visibility. Don't miss his take on prioritizing remediation strategies for privileged assets!
AI Snips
Chapters
Transcript
Episode notes
Open Graph Enables Fast Platform Integration
- BloodHound Open Graph makes adding new platforms and attack paths fast by using an open JSON schema.
- Jared says they built a 1Password integration in about two and a half hours to show the speed gains.
Community Quickly Built Useful Extensions
- Jared recounts community-built OpenGraph extensions for Ansible Tower and vCenter within 24 hours of release.
- He explains vCenter access can create novel attack paths into Active Directory when VMs host domain controllers.
Platforms Create Chained Security Dependencies
- Different platforms form security dependencies that create chained attack surfaces across systems like Intra and GitHub.
- Jared calls this the 'clean source principle' to describe how compromise of one provider cascades downstream.