Holy!!!! Pingcastle is insane and very awesome. It has so many detections for AD Auditing. I think any organization that utilizes any AD system should run it frequently. https://www.pingcastle.com/
It breaks it into 4 categories:
- Stale objects
- Privileged accounts
- Trusts
- Anomalies