Up and running in minutes.
No agents to install, no consoles to wire up. Register, describe the goal in plain English, and run one command on a host inside the network you want tested. The adversary does the rest.
Get started →the steps
1 · register Create an account and your first campaign.
2 · set a goal Describe the objective in plain English — “take Domain Admin”, “read the CEO’s inbox”, “find PII on the finance subnet”. The campaign is built around that goal.
3 · deploy Run the command below on a Linux host inside the target network. The campaign starts the moment the adversary connects.
4 · watch it work The adversary chains real attacks toward the goal — web app to host, host to network, network to domain controller — and proves every step with captured data. The dashboard fills in real time.
5 · unlock Discovered host count sets the price. Subscribe to reveal the full attack path, techniques, and proof, and to download the report. See pricing →
the command
one host When you create a campaign we hand you this command with your campaign token already filled in. Run it once, on any Linux host with Docker that can reach the network you want tested.
docker run -e AUTOATTACK_API_URL=https://agent.autoattack.ai -e AUTOATTACK_CAMPAIGN_TOKEN=YOUR_CAMPAIGN_TOKEN --stop-timeout 120 -d --rm --network host --cap-drop ALL --cap-add NET_RAW --cap-add NET_BIND_SERVICE --cap-add NET_ADMIN --cap-add SYS_TIME --read-only --tmpfs /tmp --tmpfs /run:exec autoattack/agent:latest
what you need
a linux host Any Linux machine inside the target network with Docker installed. The container is ephemeral and read-only — it lives only for the campaign and removes itself when done.
a foothold Network reach to what you want tested. The adversary starts where you place it and works outward, exactly as an intruder on that segment would.
nothing else No credentials, no agents on every host, no tuning.