Azure Cloud Pentest¶

The NodeZero Azure Cloud Pentest is an assumed-breach, black-box assessment where NodeZero is deployed into your Azure Subscription using a managed identity, eliminating the need to provide or inject Azure credentials. This pentest is cloud-to-cloud, so no on-prem infrastructure is required.

Before getting started, make sure you are logged into the NodeZero Portal.

How to Run an Azure Cloud Pentest¶

To run an Azure Cloud Pentest, you'll need to set up a connection to your Azure tenant and subscriptions. To do so, you will also need:

• An Entra ID administrator with the role of either Global Admin or Privileged Role Admin, to grant admin consent.
• The role of either Owner or User Access Control Administrator on all subscriptions you want to authorize.

Here are the next steps needed:

• Create an Azure Connection
• Run an Azure Cloud Pentest