Home About Us Contact
 
 
CORE SECURITY
Home
G F I SOFTWARE
CORE SECURITY
ESET NOD32 ANTI VIRUS
PANDA
Citrix XenServer
STORAGECRAFT
SYMANTEC
SuperAntiSpyware
NetCrunch 5
2X Thin Client
RecordTS
NEVER GET SPAM AGAIN
Kerio Mail Server
V M W A R E
Citrix WANScaler
SonicWall Solutions
 

Works with GFI LANguard Network Security Scanner

 

alt tag

 

Success Stories:
Continental Airlines

" CORE IMPACT saved us hundreds of thousands of dollars by helping us make the right decisions."

André Gold
Information Security Director
Continental Airlines

 

Industry Articles
  Core Impact Overview (90Kb)

Product Information
Core Impact Datasheet
(162Kb)

Core Impact - Payment Card Industry Datasheet
(157Kb)

White Papers

Automation Penetration Testing Products - Justificaton and ROI

Automation Penetration Testing: Can IT afford not to?
(171Kb)
 
 

The First Comprehensive Assessment of Your Security Risks

CORE IMPACT is the most comprehensive product for assessing your organization's ability to detect, prevent and respond to information security threats. By safely replicating real-world attacks against network servers and workstations, end-user systems, and web applications, IMPACT helps you find and fix security issues before data incidents occur.

See Your Security from an Attackers Viewpoint

CORE IMPACT is the only product that allows you to see your network, end-user and web application security as an attacker would. With IMPACT, you can:

  • pinpoint exploitable OS and services vulnerabilities in network servers and workstations
  • measure end-user response to phishing, spear phishing, spam and other email threats
  • test web application security and demonstrate the consequences of web-based attacks
  • distinguish real threats from false positives to speed and simplify remediation efforts
  • configure and test the effectiveness of IPS, IDS, firewalls and other defensive infrastructure
  • confirm the security of system upgrades, modifications and patches
  • establish and maintain an audit trail of your vulnerability management practices
IMPACT gives you the information you need to effectively secure customer records, financial data and intellectual property. This helps to protect your organization's reputation, maintain network stability and productivity, and ensure compliance with industry and government regulations.
Integrate Testing Across Enterprise Systems and Applications

IMPACT enables you to safely assess an organizations security posture against the top three attack methods that jeopardize
data today:

  • penetration of network defenses via exploits designed to compromise vulnerabilities in server operating systems and services, as well as client applications that run on
    desktop systems
  • deception of employees, contractors and other end users via email-based social engineering attacks, such as phishing and spear phishing
  • manipulation of web applications to access backend data via SQL injection and remote file inclusion techniques

The products unified interface provides a consistent methodology for replicating data breach attempts that spread among these attack vectors. For instance, IMPACT can replicate an attack that initially compromises a web server or end-user workstation and then propagates to backend network systems. Only IMPACT allows you to test information security in such an integrated, comprehensive, in-depth and seamless fashion.

Pinpoint security exposures with a proven testing methodology

With CORE IMPACT, you don have to be a security expert to identify risks and determine how to improve your information security. CORE Impacts Rapid Penetration Test (RPT) provides a methodology that makes it easy for you to bring comprehensive security assurance to your organization. The RPT provides a simple and intuitive interface that automates network, end-user and web application testing, allowing you to quickly evaluate your security posture. You can leverage the RPT to frequently, accurately and cost-effectively test:  

  • Server and desktop operating systems and critical
    OS services
  • Endpoint applications (e.g., web browsers, email readers, instant messaging, media players, business applications, productivity tools, etc.)
  • Endpoint security solutions (e.g., antivirus, anti-phishing, anti-malware, host-based intrusion detection and prevention systems, etc.)
  • End-user awareness of phishing, spam and other social engineering attacks
  • Web applications (e.g., e-commerce, online banking, customer self-service applications, ERP solutions, etc.)
  • IDS, IPS, firewalls and other network security solutions
  • Vulnerability scanner results and remediation
    system effectiveness
  • Security policies and compliance processes for various regulations (e.g., PCI, GLBA, SOX, HIPAA, etc.)
Focus your resources and gain confidence in your security posture

By enabling you to validate network vulnerabilities, end-user threat response, and web application exposures on a regular basis, CORE IMPACT gives you confidence that your security infrastructure and policies are performing as required. Rather than simply identifying potential threats, you methodically and safely launch real-world
attacks that:

  • positively distinguish critical network vulnerabilities from
    false positives
  • identify exactly where your organization is at risk from social engineering threats, such as phishing, spear phishing
    and spam
  • validate security exposures in web applications and determine where application code should be improved
  • combine network, client-side and web application tests to replicate multistaged attacks

As a result you can intelligently plan, prioritize and execute remediation efforts and policy adjustments ensuring cost-effective use of security and development resources while improving your overall security posture.

Back Next
 

Main | News | Catalogs | Download | Email | G F I | StorageCraft | NOD32 | RecordTS | OFF SITE BACK UP | High Availability | About | Partners | Contact

Copyright 2003 COOLCAT, INC. TEL: FL904.687.1245 * NY 606-706-7001 * DC (202)-558-5254  All rights reserved