Detect Patient Zero.
Attackers leverage Active Directory just like the old Yellow Pages. On the breached endpoint, simple queries with functions like ADSIsearcher provide them with every user account, server, and application service in the Active Directory.
AD|Protect infinitely obfuscates this data on every endpoint with no agent using Native Language Processing ML algorithm to learn and continuously adjust to the real topology of the environment. The result appears completely natural, including any attributes that the attacker could query. Items like credentials stored on each endpoint are also covered in the process.
This process is non-disruptive to the business and user base. With no friction, end users are unaware of AD|Protect, and there is no performance impact. The admin and applications are also unaffected.