October 2, 2017
What safety limits can you put on a self-serve account?
We can put limiters in that can ensure that even if someone can log in, we can restrict things like:
Restrict which targets (IP’s, domains, URL’s) they can test
Restrict WHEN a target can be tested (date window, time of day)
Restrict testing to production systems unless a specific permission is given BUT allow testing to RedWolf test systems (this allows tests to be experimented with but does not allow them to test anything in production)
etc…. (we can implement pretty much any business rule)
When you first start self-service testing you will be limited to 5 Gigabit/sec for volumetric attacks. This limit can be manually removed after you run several successful self-serve tests.