NodeX · Internal Attack Capability

The adversary
moves inside the perimeter.

NodeX puts SpartanX, The Ultimate Adversary™, inside your environment. One paired node enumerates Active Directory and Entra ID, walks machine identities, probes internal APIs and east-west segmentation, and exercises the orchestration layer of your own AI agents, with every finding exploit-validated.

  • Active Directory + Entra ID
  • Machine identities
  • Internal APIs
  • East-west segmentation
  • AI agent orchestration
Why now

Inside-the-perimeter testing is now what regulators expect.

PCI DSS v4.0.1, the NYDFS cybersecurity rule, and the GLBA Safeguards Rule now expect testing from inside the perimeter, not just at the edge, with continuous validation and tracked remediation. NodeX is how you run it continuously, scoped and audit-logged, across a segmented network. If you operate in the EU, DORA sets the same expectation. NodeX supports these mandates; it does not make you compliant on its own.

Step 01 · Create the node

Place nodes to match your network segmentation.

It starts in the portal. Create a node, name it, and define the segments it can reach; a single node can cover one segment or many. How many you deploy comes down to your segmentation. There is no cap, and the platform hands you a one-time pairing token to bind each node to your tenant.

  • One node can provide visibility into multiple network segments.
  • Add more nodes as your segmentation isolates more of the environment.
  • No cap on nodes: deploy across sites, business units, and isolated segments.
  • Get a one-time pairing token that binds each node to your tenant.
Step 02 · Pair the node

Import the VM, paste the code, you're paired.

Import the hardened NodeX virtual machine, boot it, set a new password, and paste the pairing token. That is the whole install. No site-to-site VPNs, no network bridging, no inbound firewall rules. The node needs nothing but outbound internet to pair and maintain its encrypted command-and-control channel.

  • Import the hardened VM anywhere inside your perimeter.
  • No bridged networks, no open inbound ports, no exposed services.
  • Outbound internet only, for pairing and encrypted command and control.
  • Native images for AWS and GCP, plus custom images (.OVA, AMD and ARM).
Step 03 · Connected

Online, healthy, and ready for engagements.

The moment pairing completes, the node reports in. From the portal you see live connection status, the running NodeX version, a heartbeat, and the exact segments it covers. Assign an engagement and the swarm goes to work, entirely inside your perimeter.

  • Live connection status and last-seen heartbeat at a glance.
  • Version tracking, so you always know a node is up to date.
  • See the segments each node covers before you scope an engagement.
Launch the engagement

Pick a node, point it at the targets that matter.

Launching an internal engagement is the same wizard you already know. Choose which connector node runs the attack, then hand it a target list, from assets the platform already discovered, or new targets it validates on the spot.

Existing assets

Pick the connector node, then assign targets from what the platform already knows. Each node carries its own target list, so every network gets exactly the scope you intend.

New targets

Type in fresh targets and the platform validates reachability against the node's segments first, so you never launch against an address the node cannot see.

Watch it run

A plan per asset. The swarm, live, inside your network.

The instant an engagement starts, the platform builds an independent assessment plan for every selected asset and runs them in parallel. Open any plan to watch the swarm work in real time, the recon, the commands, the reasoning, the exploitation, inside your perimeter with nothing hidden.

  • One plan per asset. Generated the moment the engagement launches.
  • Running in parallel. Coverage scales with your environment, not your headcount.
  • Live agent swarm. Open any plan and watch every command, decision, and exploit.
Under your control

Inside your walls, still fully governed.

  • Scoped and approved by you
  • Non-destructive by default
  • Every finding exploit-validated and audit-logged
  • Production-safe
  • Role-based access and single sign-on
  • The human stays in command

Ready to bring the adversary inside?

Deploy NodeX in your own environment and run continuous, exploit-validated red teaming across your internal attack surface, no consultants, no scheduling, no network surgery.