Skip to content

n8n Security (Workflow Engine)

Overview

n8n orchestrates the pentesting workflows. As the "brain" that commands Kali and accesses data, it is a critical security component.

Security Configuration

  • Https Only: Accessed via Nginx proxy with TLS.
  • Network Binding:
    • Web UI/API: Binds only to the internal-services network IP (10.150.0.250).
    • SSH Interface: Binds to kali-network solely for outbound SSH connections.
    • Port 5678 is NOT accessible from the Kali network.
  • Authentication: Protected by n8n's native user management and authentication mechanisms.
  • Environment: Sensitive credentials (API keys, DB passwords) are injected via environment variables and not hardcoded in workflows.