Horizon3.ai Brings NodeZero Cloud Pentesting to AWS, Azure, Transforming Cloud Security

Horizon3.ai, a leading provider of autonomous security solutions, has introduced NodeZero Cloud Pentesting to identify complex vulnerabilities across AWS and Azure environments, ensuring comprehensive cloud security for organizations of all sizes. NodeZero Cloud Pentesting lets organizations identify and resolve complex exploitable vulnerabilities and hidden attack paths in their cloud environments, and makes NodeZero the most comprehensive autonomous penetration testing solution available, enabling both public and private sectors to thoroughly assess and secure their cloud environments across AWS and Azure.

As organizations expand their digital presence in the cloud, managing security and addressing the unique requirements of each cloud environment becomes increasingly complex for already overburdened security teams. At the same time, threat attackers are launching more frequent and more sophisticated attacks, leaving many organizations struggling to identify and remediate vulnerabilities in both cloud environments and on-premises systems.

NodeZero Cloud Pentesting offers unparalleled testing capabilities for both cloud and hybrid environments. It identifies and chains together exploitable vulnerabilities, security weaknesses, and software misconfigurations, ensuring continuous validation of security programs and compliance initiatives. The solution can also pivot to on-premises networks, to emulate the true behavior of an attacker. This allows organizations to prioritize the remediation of complex attack paths that could be exploited by attackers, significantly reducing cyber risk.

Key features include:

Internal Pentests: Provides a holistic view of how attackers can chain together exploitable vulnerabilities across the entire digital infrastructure, identifying complex attack paths and pivoting between on-premises and cloud environments.

External Pentests: Similar to the internal tests but launched from Horizon3.ai’s cloud infrastructure, this pentest uncovers externally exposed weaknesses and validates the security of public-facing systems.

AWS Pentests: Utilizing AWS CloudFormation to gain a privileged perspective, identifying exploitable vulnerabilities, weak controls, insecure IAM policies, and overexposed assets.

Azure Entra ID Pentests: Targets Microsoft Entra ID from a privileged perspective, testing susceptibility to Azure-native attacks, and validating the security of applications and services using Microsoft Entra identities.

“To empower organizations to better secure their entire digital ecosystem, NodeZero Cloud Pentesting features the most advanced cloud-focused attack content ever developed,” states Snehal Antani, CEO and Co-founder of Horizon3.ai. “By emphasizing identity as a cornerstone of cloud security, NodeZero provides deeper insights into exploitable risks in AWS and Azure environments than any other penetration testing solution available today. Organizations can schedule and launch on-premises and cloud-focused penetration tests at their convenience, and we encourage them to compare our solution against any other cyber risk assessment approach they currently use.”

Horizon3.ai notes that NodeZero Cloud Pentesting includes safe and effective purpose-built exploits, advanced remote access tools, and an array of attacks designed to leverage lateral movement and privilege escalation, and leverages the data from more than 65,000 autonomous penetration tests performed and tens of thousands of on-premises and cloud terrains fully mapped.

“With NodeZero’s find, fix, and verify capabilities, no other pentesting solution matches the power, efficacy, and effectiveness that NodeZero delivers,” Antani said.

To see NodeZero Cloud Pentesting in action at BlackHat, please visit booth 3045 at Black Hat USA 2024, or request a demo.