Cybersecurity solutions and services provider Specter Ops Inc. today announced the release of BloodHound v8.0, the latest version of its open-source attack path management security platform.

The new release includes significant product expansions and enrichments for both the BloodHound Community Edition open-source tool and the BloodHound Enterprise platform.

BloodHound v8.0 sees the introduction of BloodHound OpenGraph, a new feature that enhances identity attack path management by exposing attack paths throughout the technology stack. OpenGraph allows both BloodHound Community and Enterprise users to ingest data from disparate systems and applications vital to the organization, such as GitHub, Snowflake Inc. and Microsoft SQL Server. That allows teams and researchers to create unique and custom threat models for their specific environment, enabling them to understand and mitigate hybrid risk to their technology landscape.

“To date, most of the innovation in attack path management has focused on Microsoft Active Directory and Entra ID, given the widespread adoption of those identity platforms,” said Chief Technology Officer Jared Atkinson. “BloodHound OpenGraph enables researchers across the BloodHound Community to quickly ingest new data sets and light up new attack paths across their environment. It’s a massive leap forward for tradecraft research, community collaboration and possibilities for APM.”

The new features do not stop with the introduction of OpenGraph, with BloodHound v8.0 delivering a broad set of enhancements aimed at expanding its usability and coverage across modern enterprise environments. The release brings greater value to both BloodHound Community and Enterprise users by supporting a wider range of systems, enabling faster integration adoption and enhancing user experience across security teams,

Leading the list of enhancements is a core security upgrade that involves the integration of Microsoft Privileged Identity Management roles. The addition allows organizations to visualize where PIM roles are in use and whether they are properly configured, helping confirm that no hidden attack paths remain. When combined with least privilege principles, just-in-time access and multifactor authentication, the integration reduces the identity attack surface within enterprise networks.

BloodHound v8.0 is also gaining integrations with Cisco Systems Inc.’s Duo and ServiceNow Inc. Duo integration brings two-factor authentication and flexible access controls to BloodHound Enterprise environments, while the ServiceNow integration enables teams to automatically generate and track remediation tickets tied to vulnerabilities detected by BloodHound.

The new release additionally sees the introduction of Privilege Zones Analysis, a new feature that lets users define and assess access across multiple tiers of their infrastructure, allowing for a sharper focus on high-value business applications and systems under regulatory scrutiny, such as Payment Card Industry Data Security Standard and Health Insurance Portability and Accountability Act-covered servers.

To support the broader security and identity community, BloodHound 8.0 adds several usability enhancements, including Kali Linux support for penetration testers and community analysts.

The release comes ahead of the Black Hat USA 2025 conference where SpecterOps will be demonstrating OpenGraph and the future of identity attack path management.

Image: SpecterOps