In 2023 we implemented role-based access controls in Intruder, initially splitting users between Admin and Read-only users. While this was beneficial in allowing you to have users with minimal permissions on the platform, we understand that this was too limiting for your requirements for managing your targets.
As part of a larger release focused on building capabilities to support your attack surface, we've added a new role to Intruder called the 'Scan user'. This user can run and edit scans, and add & edit authentications or APIs. The user cannot do advanced administrative tasks such as adding or deleting targets, editing integrations, or changing your billing. You can learn more about user roles in Intruder on our Help Centre.
If there is another type of role that will help improve your experience with Intruder, please do let us know by submitting a request.