Python Authors: Pat Romanski, AppDynamics Blog, Matt Davis, Donald Meyer, Liz McMillan

Related Topics: Cloud Security

News Feed Item

Core Security Extends IMPACT Product Line to Address Universal Demand for Comprehensive Security Testing

To Proactively Expose Vulnerabilities, Measure Operational Risk and Assure Security Effectiveness, Core Security Now Offers IMPACT Pro and IMPACT Essential

Core Security Technologies today announced a major milestone in its corporate and product strategy, positioning its proactive vulnerability management solutions to best serve the growing demand for security testing across the full range of organizational models and enterprise computing environments. To give users the greatest breadth and depth of testing options, Core Security has diversified its product line by introducing CORE IMPACT Essential. As part of this extension of its software solutions, Core is also announcing version 7.6 of its flagship product henceforth to be known as CORE IMPACT Pro, which will be delivered in September.

Collectively, the two products will now support a comprehensive set of enterprises and computing environments, delivering on the need for organizations to proactively expose vulnerabilities, measure operational risk and gain visibility into the efficacy of security mechanisms throughout their infrastructure.

Its clear that organizations have embraced security testing as a critical process for measuring the effectiveness of their security infrastructure and improving their ability to manage risk, said Mark Hatton, CEO, Core Security Technologies. Our ability to continue to adapt our solutions to the diverse needs of the marketplace and help companies stay ahead of threats in a proactive manner remains the strength of our company and our dedicated CoreLabs researchers.

Charles Kolodgy, research director for secure content and threat management products at analyst firm IDC, anticipates that companies of all sizes and architectures are going to be actively assessing their overall security posture and proactive testing is one of the most effective methods to do so. He said, Organizations need to be more aggressive about isolating their most significant risks and prioritizing their efforts around those problems, and testing allows you to do this quickly. CORE IMPACT Essential provides all organizations with a tool to assist them in effectively managing their vulnerabilities.

One Size Does Not Fit All: Introducing CORE IMPACT Essential

With threats increasingly being tailored specifically to exploit the range of defensive mechanisms, the need for proactive security testing has likewise expanded to include every example of organizational structure.

While the CORE IMPACT Pro solution provides a fully comprehensive, customizable package of testing capabilities to address an organizations entire IT and networking infrastructure across the broadest range of assets, CORE IMPACT Essential offers a strategic combination of simplified testing capabilities and automation designed to meet a targeted subset of testing needs.

CORE IMPACT Essential is the perfect security testing product to address the requirements of:

  • Large enterprises seeking to extend testing capabilities to branch offices.
  • Distributed enterprises with remote operations.
  • Smaller enterprises seeking to maximize vulnerability scanner results.
  • Computing environments with limited onsite IT expertise.
  • Organizations seeking to extend departmental testing capabilities.

As a long time CORE IMPACT customer were excited to bring Essential onboard to augment our implementation of Pro and expand our use of proactive security testing to branch offices statewide, said Robert Maley, chief information security officer, Commonwealth of Pennsylvania. As with many organizations today, we have a broad range of IT assets distributed across a number of locations, and the combination of the two products will allow us to administer tests quickly and easily throughout all our different operations. Until now weve had to rely on the use of network scanners in many distributed locations, but they simply do not provide the same level of specific, actionable information that allows us to isolate and address pressing areas of risk that need to be addressed immediately.

Maintaining Leadership: Introducing CORE IMPACT Pro v7.6

Along with adding CORE IMPACT Essential to its product line, Core Security is proud to announce the latest version of its flagship security testing software, CORE IMPACT Pro v7.6. Continuing in its predecessors footsteps as the most powerful, comprehensive security testing and vulnerability assessment package on the market today, and leveraging the industrys only commercial-grade capability to analyze and measure exploitable risks across a broad range of platforms and potential threat vectors, v7.6 offers enhancements including:

  • IPv6 network support for organizations required to meet the June 30, 2008 deadline to have an IPv6-capable backbone.
  • A new Module Wizard that guides users through the process of creating templates for launching their own customized exploit modules.
  • Added support for the use of Pros open Python debugging tools to make the creation of complex custom modules easier and more efficient.

Other significant enhancements in v7.6 address the products web application testing capabilities including:

  • Detection of additional critical vulnerabilities that make possible the take-over of underlying server operating systems.
  • Improved management and presentation of discovered vulnerabilities for more efficient and thorough testing.
  • Improved cookie handling for easier testing of web applications that involve user authentication.

CORE IMPACT Essential is available immediately and CORE IMPACT Pro v7.6 will be available in September.

About Core Security Technologies

Core Security Technologies is the leader in comprehensive security testing software solutions that IT executives rely on to expose vulnerabilities, measure operational risk and assure security effectiveness. The companys CORE IMPACT product family offers a comprehensive approach to assessing the security of network systems, endpoint systems, email users and web applications against complex threats. All CORE IMPACT security testing solutions are backed by trusted vulnerability research and leading-edge threat expertise from the companys Security Consulting Services, CoreLabs and Engineering groups. Based in Boston, MA and Buenos Aires, Argentina, Core Security Technologies can be reached at 617-399-6980 or on the Web at http://www.coresecurity.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

IoT & Smart Cities Stories
According to Forrester Research, every business will become either a digital predator or digital prey by 2020. To avoid demise, organizations must rapidly create new sources of value in their end-to-end customer experiences. True digital predators also must break down information and process silos and extend digital transformation initiatives to empower employees with the digital resources needed to win, serve, and retain customers.
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, provided an overview of the evolution of the Internet and the Database and the future of their combination – the Blockchain. Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settl...
Contextual Analytics of various threat data provides a deeper understanding of a given threat and enables identification of unknown threat vectors. In his session at @ThingsExpo, David Dufour, Head of Security Architecture, IoT, Webroot, Inc., discussed how through the use of Big Data analytics and deep data correlation across different threat types, it is possible to gain a better understanding of where, how and to what level of danger a malicious actor poses to an organization, and to determin...
@CloudEXPO and @ExpoDX, two of the most influential technology events in the world, have hosted hundreds of sponsors and exhibitors since our launch 10 years ago. @CloudEXPO and @ExpoDX New York and Silicon Valley provide a full year of face-to-face marketing opportunities for your company. Each sponsorship and exhibit package comes with pre and post-show marketing programs. By sponsoring and exhibiting in New York and Silicon Valley, you reach a full complement of decision makers and buyers in ...
There are many examples of disruption in consumer space – Uber disrupting the cab industry, Airbnb disrupting the hospitality industry and so on; but have you wondered who is disrupting support and operations? AISERA helps make businesses and customers successful by offering consumer-like user experience for support and operations. We have built the world’s first AI-driven IT / HR / Cloud / Customer Support and Operations solution.
LogRocket helps product teams develop better experiences for users by recording videos of user sessions with logs and network data. It identifies UX problems and reveals the root cause of every bug. LogRocket presents impactful errors on a website, and how to reproduce it. With LogRocket, users can replay problems.
Data Theorem is a leading provider of modern application security. Its core mission is to analyze and secure any modern application anytime, anywhere. The Data Theorem Analyzer Engine continuously scans APIs and mobile applications in search of security flaws and data privacy gaps. Data Theorem products help organizations build safer applications that maximize data security and brand protection. The company has detected more than 300 million application eavesdropping incidents and currently secu...
Rafay enables developers to automate the distribution, operations, cross-region scaling and lifecycle management of containerized microservices across public and private clouds, and service provider networks. Rafay's platform is built around foundational elements that together deliver an optimal abstraction layer across disparate infrastructure, making it easy for developers to scale and operate applications across any number of locations or regions. Consumed as a service, Rafay's platform elimi...
Two weeks ago (November 3-5), I attended the Cloud Expo Silicon Valley as a speaker, where I presented on the security and privacy due diligence requirements for cloud solutions. Cloud security is a topical issue for every CIO, CISO, and technology buyer. Decision-makers are always looking for insights on how to mitigate the security risks of implementing and using cloud solutions. Based on the presentation topics covered at the conference, as well as the general discussions heard between sessio...
Growth hacking is common for startups to make unheard-of progress in building their business. Career Hacks can help Geek Girls and those who support them (yes, that's you too, Dad!) to excel in this typically male-dominated world. Get ready to learn the facts: Is there a bias against women in the tech / developer communities? Why are women 50% of the workforce, but hold only 24% of the STEM or IT positions? Some beginnings of what to do about it! In her Day 2 Keynote at 17th Cloud Expo, Sandy Ca...