Questions, answered.
What it does to your network, what it costs, what you get before and after you subscribe, and how fast it reaches the goal.
Deploy →Is it safe to run AutoAttack inside my network?
Yes. The adversary throttles credential attempts to your domain's real lockout policy, installs nothing, changes no settings, runs no payload that trips antivirus, and writes nothing to your hosts' disks. Each campaign runs in an ephemeral container that is destroyed when the engagement ends.
How is pricing calculated?
Pricing is graduated per discovered host, billed annually: $49 per host for 1–100 hosts, $34 for 101–500, $19 for 501–2,500, and $9 for 2,501–10,000. There is no minimum and no feature gating — every plan gets every feature. Above 10,000 hosts, contact sales.
What is redacted before I subscribe?
You can register, deploy, and run a full campaign for free. Results populate your dashboard redacted: hostnames are obfuscated and the techniques, attack chain, and proof are hidden. Subscribing unlocks the full chain and the downloadable report.
What counts as a finding?
A finding is a confirmed attack achievement with proof — a step the adversary actually completed, captured as it ran. Open ports, versions, and reachable services are assets, not findings. If it cannot be proven, it is not reported.
How do I deploy it?
Register, create a campaign, and run the provided Docker command with your campaign token. The agent phones home, the campaign starts, and findings stream into your dashboard. There is no software to install on your hosts.
How fast does AutoAttack reach Domain Admin?
On the hardened GOAD benchmark it reached Domain Admin across all three domains in a 0:51 median over ten runs. On vanilla black-box GOAD it reached all three in 2 minutes 37 seconds. The benchmark page has the full head-to-head against NodeZero and Nessus.
Where is my data stored?
Campaign data, findings, and account information are hosted within the European Economic Area (France), encrypted in transit with TLS, and isolated per account. The security page covers data handling, sub-processors, and disclosure.