The test's scope defines the list of subnets NodeZero will attempt to test. Subnets are specified using IP or CIDR notation.
All cloud resources under these accounts will be treated as in scope.
These are optional fields that NodeZero will use to gather OSINT (Open Source Intelligence) to use as part of this pentest. Some advanced configurations require OSINT information, such as Azure AD Credential Pivoting.
These options allow fine-grained control over the types of services and vulnerabilities NodeZero will attempt to enumerate and exploit.
Optionally set a minimum or maximum duration to extend or limit the duration of the test.
If the minimum or maximum duration is not selected, NodeZero will autonomously complete the pentest when it determines it is ready for processing.
Configure credentials to be auto-injected into the test by a NodeZero Runner. Learn more about auto-injected credentials.
At a high level, the steps for configuring an auto-injected credential are:
- Install h3-cli and spin up a NodeZero Runner on your system (the Runner is what auto-injects the credential).
- Use h3-cli to create an auto-injected credential.
- Return here to add the auto-injected credential to your pentest configuration/template.
Use a NodeZero Runner to automatically deploy NodeZero on your Docker host. Learn more about scheduling pentests.