IT Brief Canada - Technology news for CIOs & IT decision-makers
Canada
International Women’s Day
385 opinions Read now

Guides

#
artificial intelligence
#
digital transformation
#
disaster recovery
#
hybrid & remote work
#
internet of things

Search

Corporate it soc monitors network diagrams red attack path analysis
#
DevOps
#
PAM
#
Cloud Security

SpecterOps unveils BloodHound Scentry identity risk service

Tue, 10th Feb 2026
Author image
By Sofiah Nichole Salivio, News Editor

SpecterOps has launched BloodHound Scentry, a managed service that pairs BloodHound Enterprise with specialist support for identity attack path management and remediation.

The service is aimed at security teams that want a structured way to find and remove identity-based attack paths that can expose critical systems. It also targets organisations with existing attack path management programmes that need additional analysis and planning support.

Identity Risk

The launch comes as incident investigations continue to point to stolen or misused credentials as a common entry point. The 2024 Verizon Data Breach Investigations Report found that around 80% of breaches involve compromised credentials. That suggests attackers often rely on valid logins and established access routes rather than new malware or previously unknown software flaws.

SpecterOps also cited a 2025 survey of cybersecurity decision-makers showing that 59% of organisations are researching or have implemented an identity-based attack path management solution. It described the figures as evidence of a shift towards mapping and managing identity relationships and privileges across environments.

"The risks associated with identity security continue to grow with each new provider and technology adopted, creating unseen critical risk that can only be resolved through identity APM efforts," said Robby Winchester, Chief Services Officer at SpecterOps.

Service Scope

BloodHound Scentry is built around BloodHound Enterprise, which SpecterOps offers as a managed software-as-a-service product for identity and security teams. Scentry adds an ongoing services layer delivered by what SpecterOps calls tradecraft experts and practitioners.

The offering includes attack path remediation support, recurring expert analysis, and privilege zone design. It also supports BloodHound OpenGraph, which SpecterOps positions as a way to extend attack path coverage beyond core identity systems into other platforms, repositories, and applications. Customised reporting is included to track progress over time.

SpecterOps said Scentry can move customers from Level 0 maturity-no identity attack path management programme-to Level 3, where the programme is well defined, in as little as six months. It added that organisations can progress beyond Level 3 depending on their needs.

The remediation work begins with an assessment of the customer environment and identity model, then identifies high-value targets and prioritised actions. The output includes remediation guidance aligned with local constraints such as architecture, operational processes, and technical debt.

Monthly analysis is another pillar of the service. SpecterOps said its experts review attack paths and trends and provide findings with recommended actions. It also investigates emerging threats when a customer's environment or industry faces elevated risk.

Privilege Zones

Privilege zone design is intended to reduce exposure around the assets most important to the business. SpecterOps said BloodHound Enterprise lets security teams create privilege zones around critical systems, while Scentry specialists identify and prioritise those assets, configure the zones, and track governance and certification tasks over time.

OpenGraph support extends the service into custom development. SpecterOps said its experts help customers design and build OpenGraph extensions based on coverage needs, including for customer-specific applications.

Reporting is designed for both operational and executive audiences. According to SpecterOps, Scentry includes hygiene reports and quarterly executive packages that link remediation work to broader operational and business outcomes.

"Building a successful identity APM practice requires a team of experts who understand how identity attacks unfold, how to prioritize remediations, can quickly react to emerging threats, track the right metrics for success, and more," Winchester said. "For companies wanting a shortcut to gain identity APM expertise and resources, BloodHound Scentry can accelerate an identity APM program to better identify and protect an organization's most critical assets."

Company Background

SpecterOps is best known for BloodHound, an open-source tool that maps relationships and privilege pathways within identity systems. The software is used primarily in Microsoft Active Directory environments to identify security risks. According to the company, BloodHound has been downloaded more than 1.5 million times and is utilised in over 95% of penetration tests globally.

The firm also operates adversary-focused training programmes and has provided instruction to more than 10,000 professionals. In addition to its software and educational offerings, SpecterOps provides red team services that simulate attacker behaviour within customer environments to identify vulnerabilities.

The company plans to host a webinar on BloodHound Scentry later this month. This event coincides with the beginning of customer onboarding for the new managed service.

Related stories
Tufin unveils AI assistants & executive security hub
Wordly adds live AI translation to Microsoft Teams
Deskpro brings cloud & VPC help desks to AWS shopfront
OpenAI unveils GPT-5.4 with advanced computer use tools
Digital.ai unveils AI tool to harden mobile app builds

Top stories

Sama credential leaks raise fears over Meta glasses data
Inventec boosts AI server output with Siemens DFM tools
Hexnode debuts device-aware IdP to fuse identity & UEM
Salesforce unveils Agentforce AI tools for healthcare
Women in tech call for daily, sustained workplace backing