Tool Matrix
Overview
Section titled “Overview”The Tool Permission Matrix governs exactly which tools the agent may run, organized by attack phase. It’s the fine-grained control that complements the Rules of Engagement: RoE sets the boundary, the matrix decides which instruments are allowed inside it.
Key benefits
Section titled “Key benefits”| Benefit | Capability | Business value |
|---|---|---|
| Precision | Per-phase tool enablement | Allow only the tools appropriate to each stage |
| Safety | Disabled tools simply cannot run | Hard stop on anything you didn’t authorize |
| Transparency | A clear matrix of what’s allowed | Everyone sees the agent’s permitted toolset |
How it works
Section titled “How it works”The matrix categorizes a large toolset by attack phase (for example recon vs execution). For each phase you enable or disable tools; at runtime the executor refuses to run any tool that isn’t enabled for the current phase. The agent draws on this matrix as it plans and executes, so its actions stay within both the RoE and the allowed tools.
Implementation / workflow
Section titled “Implementation / workflow”- Open Autopilot → Tool Permission Matrix.
- Review the tools available per phase and enable only what the engagement needs.
- Start the agent — it can only use enabled tools at each phase.
Best practices
Section titled “Best practices”- Start restrictive; enable additional tools only as the engagement requires.
- Keep high-impact tools disabled unless the phase and RoE clearly call for them.