Integrates ServiceNow Vulnerability Response with SpecterOps BloodHound to automate, correlate, and remediate Active Directory attack path risks.
KEY CAPABILITIES:
- Automated import of BloodHound Enterprise attack path findings
- Native Vulnerability Response framework integration
- Guided setup wizard for streamlined configuration
- Multi-environment support with configurable filtering
- Real-time synchronization with BloodHound API
- Graphical visualization in Vulnerability Manager Workspace
- Scheduled and on-demand data imports
BENEFITS:
- Reduce attack surface by identifying critical AD vulnerabilities
- Prioritize remediation based on exploitability
- Centralize security management within ServiceNow
- Automate vulnerability tracking and reporting
- Leverage industry-standard attack path analysis
REQUIREMENTS:
- ServiceNow Paris release or later
- Vulnerability Response plugin
- Active SpecterOps BloodHound Enterprise subscription
- Network connectivity to BloodHound API endpoints
Complete installation and configuration guide included.
Integrates ServiceNow Vulnerability Response with SpecterOps BloodHound to automate, correlate, and remediate Active Directory attack path risks. Key capabilities include:
- Automated import of BloodHound attack path findings into ServiceNow
- Vulnerability Response framework integration for standardized monitoring
- Configurable environment and attack type filtering
- Real-time synchronization with BloodHound Enterprise API
- Graphical visualization through Vulnerability Manager Workspace
Version 1.2.0 - November 2025
New Features:
- Initial release of Vulnerability Response framework integration
- Guided setup for streamlined configuration
- Support for multiple BloodHound environments
- Configurable attack path type filtering
- Scheduled and on-demand data imports
- Integration with Vulnerability Manager Workspace
Enhancements:
- Optimized API communication with BloodHound Enterprise
- Improved data coalescing and deduplication
- Enhanced error handling and logging
Requirements:
- ServiceNow Paris release or later
- Active SpecterOps BloodHound Enterprise subscription
- Vulnerability Response plugin (com.snc.vulnerability.response)
ServiceNow Instance:
- Minimum Release: Paris or later (Xanadu, Yokohama, Zurich supported)
- Required Plugin: Vulnerability Response (com.snc.vulnerability.response)
- User Roles: Administrator or equivalent permissions
External Dependencies:
- Active SpecterOps BloodHound Enterprise subscription
- BloodHound API access with valid token credentials
- Network connectivity: Outbound HTTPS (port 443) to BloodHound servers
Technical Requirements:
- Basic ServiceNow administration knowledge
- Familiarity with SpecterOps BloodHound platform
- Understanding of API integrations and security best practices