Running a Rapid Response Test¶

In many cases, Rapid Response Activity Cards will provide a button to run a Rapid Response test. This is a targeted test during which NodeZero will check for that vulnerability, and will attempt to exploit it as a benign assessment of its severity. NodeZero will not look for, nor report on, any other vulnerabilities during a Rapid Response test. To get started, simply click on the Test Now button in the upper right corner of the activity card.

Once you've clicked the Test Now button, you'll be brought to the Rapid Response Test page. This page is used to configure your Rapid Response test.

The first control you'll see is the Rapid Response Test drop-down. It will be populated with the name of the test from the card where you clicked the Test Now button. To run a different Rapid Response test, select that test from the drop-down. Details from the activity card will be displayed below the selected test.

Next, you'll need to select the test type: Internal or External pentest.

Next, add the scope you'd like to test. This could be a single IP or a block of IPs. Optionally, you can provide IP(s) to exclude from the test. For External tests, you can add individual public IPs and subdomains to the scope.

If you selected an Internal test type, you'll have the option to select a Runner. Runners must be preconfigured before they will be available in this drop-down.

The final step is to click on the Run Pentest button. If you're running an Internal test without a Runner, you'll need to copy and paste the curl one-liner onto your Docker host. External tests are launched automatically from Horizon3 AI's cloud and require no further action.