how tobeginnerReviewed May 18, 2026
Write a good assessment goal
Tell the agent the outcome and constraints, not scanner commands.
Good goals include
- The target surface or workflow.
- The security question to answer.
- Important constraints from the rules of engagement.
- The desired output, such as validated findings or readiness evidence.
Examples
- Test authorization boundaries for the customer API.
- Review authenticated admin workflows for privilege escalation.
- Validate whether the internal subnet exposes weak services.
- Retest the resolved export authorization finding.