Latest and greatest NodeZero updates and innovation

When you’re on the hook for keeping your organization safe, you need the security tools you rely on to innovate as fast as threat landscapes change.

Let’s dive straight into the latest product updates available for NodeZero customers now—and be sure to join our Product team April 22 to see everything live in action.

Expanded Tripwires threat detection

Custom Tripwires drops

By default, NodeZero Tripwires automatically adds precision early alerting on hosts with a weakness NodeZero has proven to have critical downstream impact.

Now, you can also direct Tripwires to place decoys onto specific assets—whether they’re crown jewel assets or assets with weaknesses that fall below the “critical” threshold. Layer your business context onto NodeZero’s attacker’s perspective and keep bad actors at bay. Available with Pro, Elite, or as a Tripwires add-on.

Tripwires for AWS

When you run a NodeZero AWS Pentest, you can now have Tripwires automatically place decoy files within S3 buckets and Windows/Linux hosts to detect and alert to intrusions. Get peace of mind during that uncomfortable window between discovering a weakness and implementing a fix. Available with Pro, Elite, or as a Tripwires add-on.

Tripwires dashboard

Tripwires users have a fresh new home base for all things threat detection. The new dashboard highlights any alerts and summarizes opportunities to drop additional tripwires, helping teams add alerting where it matters most.

Strengthened external penetration testing

New external exploits

A whopping 24 new external attack capabilities launched across January, February, and March. These enhance asset discovery, expand third-party risk coverage, and provide more comprehensive testing for your internet-facing assets.

As your perimeter continuously changes with new cloud services, APIs, and domains, NodeZero’s external pentesting—included with all plans—gives you visibility across your external attack surface.

Remediation insights: slice and dice your MTTR trends

NodeZero Insights™ unifies your test data so you can continuously track and optimize your security performance. The latest view is Mean Time to Remediation (MTTR) trends over time. You can filter this data by timeframe, impact severity, and weaknesses.

What’s in the news matters. Now you can also filter your MTTR trend data—as well as open weakness datapoints—against CISA KEVs.

Understand where you may want to improve your MTTR, and quickly answer executive questions about high-priority vulnerabilities. Available with Elite or Insights add-on.

Things just keep getting better

Optimization is just as important as innovation. Here are a few more enhancements the NodeZero team has shipped to continue to equip our users to protect their organizations.

• More power for password cracking: Additional computational power for Active Directory Password Audits has increased cracking success rates, delivering 9% median uplift (and as much as 90% in more challenging cases). More cracking means more critical risk uncovered and resolved.
• Runner UX improvements: Runners streamline pentest deployment and let NodeZero customers schedule one-time and recurring tests—a beautiful bit of tech. Now, users can view the NodeZero host IP address to streamline whitelisting and have additional troubleshooting options.
• Exposure explainability: Context is king for risk assessment. With this release, we’ve enhanced descriptions and references for >80 of the top weaknesses NodeZero exploits. Customers can even more confidently understand—and explain—every vulnerability, missing control, weak credential, or misconfiguration NodeZero discovers in their network.

See NodeZero’s latest in action