coskundeniz.com.tr

What it is

THRENIS positions itself as an enterprise Active Directory Security Assessment platform. Its core value is using 80+ dedicated analyzers to identify real attack surfaces in AD, including Kerberoasting, AS-REP Roasting, delegation issues, ACL abuse, DCSync permissions, GPO abuse, shadow credentials, and local admin paths. Beyond AD, the page also lists SMB Share Scanner, MSSQL Scanner, and Host Discovery, covering file shares, database configuration, and internal host/service discovery.

Core capabilities, management, and alerts

Based on the available text, its assessment workflow is Authenticate, Discover, Analyze, Report & Remediate. It emphasizes safe, read-only credentials and scoped execution, making it more of a non-intrusive security health check. On the management side, it provides an overall security score, Critical/High/Medium severity levels, automated risk scoring based on CVSS and exploitability, plus executive summaries, Fix-First recommendations, and step-by-step remediation guides. Example fixes include rotating service account passwords to random passwords of 25+ characters, adopting gMSA, and removing unnecessary SPNs, making the guidance fairly practical.

Pricing, deployment, and compliance

The page offers Start Free Assessment / Request Assessment and states that no credit card is required, but it does not publish subscription pricing or clarify whether billing is based on user count or per project. The deployment model is also unclear: it does not specify whether this is SaaS, an on-premises agent, or a one-off consulting-style assessment. On compliance, it only mentions compliance reporting and does not list certifications such as ISO 27001 or SOC 2. Before procurement, buyers should further confirm data storage, credential handling, report ownership, and compliance qualifications.

Pros, cons, and who it is for

Its strengths are that its AD attack-technique coverage is close to real-world offensive scenarios, and it brings AD, SMB, MSSQL, and network discovery into a single assessment view. It is well suited to mid-sized and large organizations with Windows domain environments that want to quickly identify identity security risks and lateral movement paths. Its main weakness is limited commercial transparency. It does not disclose SIEM, ticketing, EDR, or IAM integration capabilities, nor does it explain whether it supports continuous monitoring and real-time alerts. At present, it looks more like an assessment and reporting platform than a fully managed protection product.

Access from China and alternatives

The domain uses .com.tr, and the page does not provide information about China network accessibility, Chinese-language support, or local payment options. Its accessibility from China cannot be determined from the page content alone. For Chinese enterprises that cannot access it reliably or require localized delivery, alternatives to evaluate include Microsoft Defender for Identity, BloodHound Enterprise, PingCastle, Purple Knight, Tenable.ad, or AD security assessment solutions with local service teams.