NodeZero^® Runner¶

The NodeZero^® Runner automates internal penetration testing, enabling you to schedule and manage recurring pentests remotely from the Portal. By deploying a Runner on your NodeZero Host, you can eliminate manual script execution and ensure consistent security assessments across your network.

What Is a Runner¶

A NodeZero Runner is a component of your NodeZero Host that automates the deployment of the NodeZero Docker container, for pentests internal to your physical or virtual infrastructure. It syncs with the Horizon3.ai API to identify new pentest assignments, and launches NodeZero to execute them.

This eliminates the need for manual intervention. The Runner acts as a bridge between your internal (or virtual) network and the Horizon3.ai Portal, enabling automated security testing.

Where a Runner Applies¶

You can use a Runner to automate pentests that simulate attacks that originate within your physical network or your cloud infrastructure. These include the following tests:

• Internal
• Kubernetes
• Azure Entra ID
• AD Password Audit
• Segmentation
• Phishing
• Insider Threat

Runners are neither compatible nor required with external pentests or other tests that simulate attacks from an outsider's perspective. To launch these tests, NodeZero deploys automatically in the Horizon3.ai cloud. You can schedule these tests via the NodeZero Portal, CLI, or API.

When to Use a Runner¶

Deploy a NodeZero Runner in these scenarios:

• Automate Testing: You want to streamline pentest deployment without manually running scripts on your NodeZero Host.
• Schedule Recurring Tests: You need to perform regular pentests to maintain continuous security monitoring.
• Scale Across Networks: You aim to test multiple network segments or perspectives by running multiple Runners.