Risky Bulletin Sponsored: Seeing into the seams
Jan 18, 2026
Justin Kohler, Chief Product Officer at SpecterOps, dives into the intricacies of attack path management. He highlights how systems that seem secure individually can create dangerous vulnerabilities when combined. Kohler explains the power of Bloodhound's OpenGraph in modeling multiple platforms like AWS and GitHub. He also shares a compelling case study on an AWS compromise via GitHub and discusses how their tool can automate vulnerability detection. With a focus on accessibility, he underscores their mission to make attack path analysis more user-friendly for all organizations.
AI Snips
Chapters
Books
Transcript
Episode notes
Attack Paths Span Many Identity Domains
- Attack-path problems exist across any platform that assigns identity and privilege, not just Active Directory.
- Bloodhound's OpenGraph extends visibility to many platforms so you can see chained identity relationships.
Model All Identity Planes Together
- Use OpenGraph extensions to model the control, management, and data planes across platforms.
- Combine platform graphs to reveal chained identities and prioritize remediation.
Correct Configs Can Still Chain Into Risk
- Individual platforms can be configured correctly yet create dangerous chains when combined.
- Visibility across platforms is required to detect those multi-domain escalation paths.
