# www.horizon3.ai > AI-optimized mirror of www.horizon3.ai containing 50 pages totalling 38,740 words of clean markdown content, structured data, and semantic HTML. Original source: https://www.horizon3.ai/. Last updated: 2026-04-27T00:49:19.777Z. Each page is available as HTML (with JSON-LD structured data) and Markdown (text-only, ideal for LLMs and RAG). ## Homepage - [Security you can prove.](/site-root.html): Horizon3.ai uses real-world attacks to safely show what attackers can actually do in your environment—so you can fix and prove what matters., (846 words) ## Articles & Blog Posts - [Vulnerability Management Hub](/vulnerability-management-hub/index.html): NodeZero® filters scanner noise to show only exploitable risks. The Vulnerability Management Hub unifies validation, triage, and fix verification in one view., (995 words) - [Phishing Impact Testing with NodeZero®](/nodezero/phishing-impact-testing/index.html): Phishing Impact Test with NodeZero, (1,829 words) - [category/attack-research/index.html](/category/attack-research/index.html) (1 words) - [downloads/research/annual-insights-report-the-state-of-cybersecurity-in-2025.html](/downloads/research/annual-insights-report-the-state-of-cybersecurity-in-2025.html) (1 words) - [nodezero/internal-pentesting/index.html](/nodezero/internal-pentesting/index.html) (1 words) - [events/index.html](/events/index.html) (1 words) - [resource-center/index.html](/resource-center/index.html) (1 words) - [nodezero/nodezero-tripwires/index.html](/nodezero/nodezero-tripwires/index.html) (1 words) - [Team of Motivated “Learn-it-alls”](/about-us/index.html): Founded in 2019 by veterans in tech and military, Horizon3.ai’s mission is to find and fix attack vectors before attackers can exploit them., (1,704 words) - [Rapid Response Testing for CVEs and KEVs That Matter](/use-case/rapid-response-testing/index.html): NodeZero’s Rapid Response service offers users early intelligence on emerging cyber threats, enabling swift identification, verification, and mitigation of N-day and zero-day vulnerabilities before they become widely exploited. (907 words) - [NodeZero Solves GOAD — **In 14 Minutes**](/nodezero-vs-goad/index.html): NodeZero conquered GOAD in under 14 min. See how autonomous pentesting exploits real AD misconfigurations from unauthenticated access to full forest takeover. (561 words) - [Rapid Response with NodeZero®](/nodezero/rapid-response/index.html): Accelerate threat detection and response with NodeZero, enabling automated actions and quick recovery from cyber incidents., (2,192 words) - [Why Our Platform Wins](/why-our-platform-wins/index.html): Over 3,000 orgs trust NodeZero® for real-world pentests that prove security works—no hype, no slides, just results in live environments. (1,140 words) - [Vulnerability Disclosure Policy](/vulnerability-disclosure-policy/index.html): Learn how Horizon3.ai responsibly manages vulnerability disclosure, coordinates with researchers, and protects users through transparent, secure reporting practices. (1,246 words) - [Critical Vulnerabilities in SimpleHelp Remote Support Software](/attack-research/disclosures/critical-vulnerabilities-in-simplehelp-remote-support-software.html): SimpleHelp remote support software is susceptible to critical vulnerabilities that could allow full takeover of SimpleHelp servers. Users of SimpleHelp should upgrade to the latest version ASAP. (1,086 words) - [Horizon3.ai Raises $100M to Cement Leadership in Autonomous Security](/intelligence/blogs/horizon3-ai-raises-100m/index.html): Rewriting Cybersecurity Rules. Led by veterans and ethical hackers, Horizon3.ai’s NodeZero platform is transforming how organizations defend against threats. (1,310 words) - [Securing Financial Services: From Promises to Proof with NodeZero®](/intelligence/blogs/securing-financial-services-from-promises-to-proof-with-nodezero.html): Secure financial services with continuous penetration testing and real-time insights from NodeZero®️. (985 words) - [Audit Your Password Exposure with NodeZero®](/nodezero/ad-password-audit/index.html): Enhance Active Directory security with NodeZero’s AD Password Audit, identifying weak passwords and enforcing stronger policies to protect your organization. (1,015 words) - [AI in Horizon3.ai](/ai-in-horizon3-ai/index.html): Discover how Horizon3.ai’s purpose-built AI drives real attacks, real insights, and real outcomes—safely and explainably—with NodeZero. (840 words) - [Continuous Threat Exposure Management](/nodezero-ctem/index.html): The NodeZero® Offensive Security Platform makes CTEM practical by running live attacks in production, proving which exposures matter, and verifying that defenses and remediations actually work., (1,109 words) - [The NodeZero® Platform](/nodezero/index.html): NodeZero provides continuous autonomous penetration testing. With it cybersecurity teams can find and fix attack vectors before attackers can exploit them. (837 words) - [Threat Detection and Response with NodeZero Tripwires™](/use-case/threat-detection-response/index.html): NodeZero Tripwires delivers a novel & strategic approach to threat detection & automated deception technology with autonomous deployed decoys (614 words) - [Blogs](/category/intelligence/blogs/index.html): Stay informed with the latest blog posts covering a wide range of cybersecurity topics, from emerging threats and trends to expert advice and best practices. (540 words) - [Threat Actor Intelligence](/threat-actor-intelligence/index.html): NodeZero® maps real attack techniques to known threat groups, helping you prioritize remediation based on adversary behavior — not just CVEs or passive intel., (1,144 words) - [Threat Informed Perspectives](/threat-informed-perspectives/index.html): See your environment through an attacker’s eyes with Threat Informed Perspectives and Pentesting Campaigns—continuous validation, measurable progress, and verified fixes., (1,261 words) - [Attackers Don’t Think in CVEs. Neither Should You.](/rbvm/index.html): See risk through the attacker’s lens. Horizon3.ai’s RBVM fuses exploit intelligence, GenAI, and business context so you can focus on what truly matters., (1,024 words) - [Third-Party Risk Management](/use-case/third-party-risk-management/index.html): Third-party vendors are a top attack path. NodeZero® safely validates supplier security with autonomous penetration tests, cutting inherited risk across your supply chain. (635 words) - [MSSP Community Call](/mssp-community-call/index.html): Join the bi-weekly MSSP Community Call to learn best practices, real-world use cases, and strategies for scaling profitable security services powered by NodeZero®. (287 words) - [NodeZero® Packaging](/use-case/packaging/index.html): See how packaging companies use NodeZero to validate cyber risk, uncover exploitable attack paths, and prioritize the vulnerabilities that actually threaten operations. (534 words) - [Cyber Readiness During Escalating Geopolitical Conflict](/cyber-readiness-during-escalating-geopolitical-conflict.html): Security guidance for organizations preparing for Iranian cyber activity, including threat patterns, targeted sectors, and defensive priorities. (722 words) - [Who Uses NodeZero®?](/who-uses-nodezero/index.html): Discover how various industries leverage NodeZero for automated security testing, ensuring resilience against cyber threats and meeting compliance standards. (764 words) - [Risk Based Vulnerability Management](/risk-based-vulnerability-management/index.html): See how NodeZero® transforms vulnerability management by proving real attacker-exploitable risks, mapping exploits to business impact, and driving FixOps., (1,150 words) - [Think your EDR is secure? Let's put it to the test.](/edr-healthcheck/index.html): Think your EDR is secure? Schedule an EDR Healthcheck with Horizon3.ai’s NodeZero® to uncover blind spots, validate detection, and prove real defensive performance., (950 words) - [NodeZero Active Directory (AD) Tripwires](/ad-tripwires/index.html): NodeZero AD Tripwires provide early-warning signals for Active Directory exposure, detecting dangerous changes and attacker pathways before they become breaches. (570 words) - [Contact Horizon3.ai](/contact-us/index.html): Talk to us about continuously pentesting your enterprise to help you proactively mitigate security risk before criminals exploit you., , (795 words) - [Compromising vCenter via SAML Certificates](/attack-research/attack-blogs/compromising-vcenter-via-saml-certificates/index.html): A common attack path that Horizon3 has identified across many of its customers is abusing access to the VMware vCenter Identity Provider (IdP) certificate. (935 words) - [Vulnerability Risk Intelligence](/vulnerability-risk-intelligence/index.html): Transform scanner data into attacker-validated insight. NodeZero® proves what’s truly exploitable so you can prioritize and fix real business risks. (501 words) - [Horizon3.ai Ranked 3rd Fastest-Growing Company in North America on the 2025 Deloitte Technology Fast 500™](/news/press-release/horizon3-ai-ranked-3rd-fastest-growing-company-in-north-america-on-the-2025-deloitte-technology-fast-500.html): Horizon3.ai ranked 3rd on the 2025 Deloitte Technology Fast 500™, driven by 19,939% growth and rapid global adoption of AI-powered offensive security. (681 words) - [Cloud Pentesting with NodeZero®](/nodezero/cloud-pentesting/index.html): Simplify your cloud security with visibility from various perspectives into your vulnerabilities with the NodeZero platform., (1,076 words) - [Vanguard Partner Program](/partners/index.html): Join Horizon3.ai’s Partner Program: Offer NodeZero, the autonomous pentesting platform. Drive growth with new revenue, unlimited tests, & proven results., (1,176 words) - [Secure Financial Services with an Attacker’s Perspective](/use-case/nodezero-for-financial-services/index.html): Proactive cybersecurity for financial services with NodeZero. Identify vulnerabilities, improve defenses, and ensure compliance in real time. (658 words) - [Cisco IOS XE CVE-2023-20198: Deep Dive and POC](/attack-research/attack-blogs/cisco-ios-xe-cve-2023-20198-deep-dive-and-poc/index.html): Previously, we explored the patch for CVE-2023-20273 and CVE-2023-20198 affecting Cisco IOS XE and identified some likely vectors an attacker might have used to exploit these vulnerabilities. (489 words) - [Kubernetes Pentesting with NodeZero®](/nodezero/kubernetes-pentesting/index.html): Protect your Kubernetes clusters with NodeZero™. Autonomously pentest for RBAC misconfigs, container escapes & secret exposures., (863 words) - [Horizon3.ai Reports Record 1H 2025 Results, Proving NodeZero’s Enterprise-Scale Impact](/news/press-release/horizon3-ai-reports-record-1h-2025-results-proving-nodezeros-enterprise-scale-impact-2.html): Overall adoption continues to scale rapidly, with nearly 4,000 companies worldwide now using NodeZero, a 117% increase year-over-year. (629 words) - [Real-World Testimonials](/testimonials/index.html): See how security professionals use NodeZero® to find real risks, cut through the noise, and improve their security posture with autonomous pentesting. (148 words) - [External Penetration Testing](/nodezero/external-pentesting/index.html): Run external pentests with NodeZero to assess your assets and digital risk at the perimeter. Don’t miss a single blind spot. (623 words) - [Autonomous, AI-Powered Web Application Pentesting](/web-application-pentesting/index.html): NodeZero Web App Pentesting safely emulates real attacks to trace exploit paths from web abuse and credential compromise to host takeover across apps, identity, and infrastructure., (588 words) - [CVE-2025-11250](/attack-research/vulnerabilities/cve-2025-11250/index.html): Critical authentication bypass in ManageEngine ADSelfService Plus allows unauthenticated access. Learn impact, patch guidance, and how to verify exposure. (676 words) - [Community](/community/index.html) (99 words) ## Resources - [Full Page Index](/index.html): Browse all cached pages with rich metadata - [About This Cache](/content/about.html): Methodology, technical details, and usage guidelines - [XML Sitemap](/content/sitemap.xml): Machine-readable sitemap for crawler discovery - [Robots.txt](/content/robots.txt): Crawler directives