Horizon3.ai Launches NodeZero Kubernetes Pentesting
November 13, 2024

Horizon3.ai announced the release of NodeZero™ Kubernetes Pentesting, a new capability available to all NodeZero users.

Designed to deploy directly within Kubernetes clusters, this solution equips organizations with the unique ability to identify and exploit vulnerabilities from an attacker’s perspective, uncovering weaknesses that could jeopardize entire infrastructures.

NodeZero’s offensive approach prioritizes real-time security testing at the runtime level, revealing the “blast radius” attackers could achieve by chaining Kubernetes-specific vulnerabilities with cloud and on-premises infrastructure weaknesses.

"With Kubernetes operating as essential infrastructure, security teams must defend it as rigorously as any core system,” said Snehal Antani, CEO and Co-Founder of Horizon3.ai. “NodeZero Kubernetes Pentesting goes beyond surface checks—showing exactly how attackers can exploit weaknesses in real time. This is about putting organizations in a ‘wartime’ stance, enabling them to see the true paths of attack and proactively harden their defenses against evolving threats."

NodeZero Kubernetes Pentesting differentiates itself through advanced runtime security testing and ease of deployment, allowing organizations to achieve the continuous security assurance demanded by today’s threat landscape. Unlike traditional security tools focused on compliance or control plane analysis, NodeZero tests in real time, uncovering vulnerabilities like container escapes and RBAC misconfigurations that attackers exploit to move laterally, escalate privileges, and compromise underlying infrastructures.

The release underscores a shift in cybersecurity toward offensive-based assessments that employ adversarial techniques. Traditional compliance-driven assessments often miss critical gaps that attackers could exploit, leaving organizations exposed. With NodeZero’s use of real-world tactics, techniques, and procedures (TTPs) that mimic attacker behavior within Kubernetes environments, security teams can prioritize the most pressing threats and address exploitable vulnerabilities before they become gateways for adversaries.

Designed for any Kubernetes distribution, including EKS, GKE, and AKS, NodeZero’s pentesting capabilities provide advanced protection across both cloud and on-premises clusters. This solution underscores Horizon3.ai’s commitment to proactive, high-impact cybersecurity innovation, helping organizations navigate and secure the complexities of Kubernetes at scale.

Share this

Industry News

November 14, 2024

Solo.io is donating its open source API Gateway, Gloo Gateway, to the Cloud Native Computing Foundation (CNCF) to further its mission of building a complete omni-gateway connectivity solution.

November 14, 2024

LaunchDarkly announced a new approach to software delivery—Guarded Releases—that empowers organizations to ship with confidence and manage risk proactively.

November 14, 2024

Diagrid announced details of the upcoming release of Dapr 1.15, a Cloud Native Computing Foundation project maintained by Diagrid, Microsoft, Intel, Alibaba, and others.

November 14, 2024

Fermyon™ Technologies announced the release of Spin 3.0, enabling enterprises to quickly move toward more sophisticated production applications based on WebAssembly (Wasm).

November 13, 2024

Mirantis announced Mirantis Kubernetes Engine (MKE) 4, the latest evolution in its long-established product line that sets the standard for secure enterprise Kubernetes.

November 13, 2024

Cequence Security announced the launch of its new API Security Assessment Services.

November 13, 2024

Pulumi announced improvements including major updates to the EKS provider supporting Amazon Linux 2023 and Security Groups for pods, the release of Pulumi Kubernetes Operator 2.0 with dedicated workspace pods, Pulumi ESC integration with External Secrets Operator, and a new Kubernetes-native deployment agent for enhanced security and scalability.

November 13, 2024

Loft Labs announced the public beta of vCluster Cloud, a managed solution that simplifies and reduces the costs of Kubernetes clusters.

November 13, 2024

DevZero announced DXI (Developer Experience Index), an initiative aimed at transforming developer productivity by unifying engineering throughput and operational metrics.

November 13, 2024

Horizon3.ai announced the release of NodeZero™ Kubernetes Pentesting, a new capability available to all NodeZero users.

November 13, 2024

The CNCF Technical Oversight Committee (TOC) has voted to accept wasmCloud as a CNCF incubating project.

November 12, 2024

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the graduation of Dapr.

November 12, 2024

NetApp announced an expanded collaboration with Red Hat to offer new solutions to streamline and accelerate enterprise application development and management in virtual environments.

November 12, 2024

Akamai Technologies announced the Akamai App Platform, a ready-to-run solution that makes it easy to deploy, manage, and scale highly distributed applications.

November 12, 2024

Snyk has acquired Probely, a modern Dynamic Application Security Testing (DAST) provider based in Porto, Portugal, with coverage of API security testing and web applications.