I think Silverfort is actually a really good product. Silverfort helps identify blind spots in your identity and access management, covering areas that traditional systems don't, such as command line tools. It checks your Active Directory authentication and continues only if the check is okay, plus it works with older protocols such as NTLM, which is a significant advantage. The product is fairly new, but it's great; it's lightweight and agent-based, acting as a bridge between your Active Directory and any other application, with no impact on the applications. Silverfort is one of the few vendors that offers a free POC, and usually the customer ends up taking it, as they've lost very few deals in this manner. It's complementary to other tools you may have, whether they are TAM solutions such as Delinea or Xerox. Silverfort also has a lightweight adapter for domain controllers, and it finds gaps in security. Its capabilities are expanding regularly, with new features voted on every few months. For companies with large Active Directory implementations and zero staff, Silverfort provides instant results in identifying risks and blind spots. It also includes built-in virtual features, and while I don't know the exact pricing, it's not expensively priced, making it an attractive option.
