Core Security Technologies

From Wikipedia, the free encyclopedia
Core Security by HelpSystems
IndustryComputer Security
Vulnerability Management
Security Consulting Services
Founded1996
Headquarters6455 City West Parkway
Eden Prairie, MN
Key people
John Racine, Identity Governance Solutions
Brian Wenngatz, General Manager
ProductsPenetration testing, vulnerability management, identity governance & administration
ParentHelpSystems
TA Associates
Websitehttp://www.coresecurity.com

Core Security by HelpSystems is an American computer and network security company provides cyber threat prevention and identity access management software products and services, including penetration testing, network traffic analysis, threat detection, privileged access management, and identity governance The company’s research arm, CoreLabs, identifies new IT security vulnerabilities, publishes public vulnerability advisories, and works with vendors to assist in eliminating the exposures they find.[1]

In February 2019, HelpSystems acquired the Core Security products from SecureAuth.[2] HelpSystems is a global enterprise software company working in the areas automation and cybersecurity.

History[]

In 1996, Core Security was founded in Buenos Aires, Argentina. One year later, the CoreLabs Research group was established and published their first advisory.

Core conducted its first penetration test for a U.S. company in 1998. In the same year, Core Security was recognized as an "Endeavor Entrepreneur" by the Endeavor Foundation, a foundation that supports entrepreneurial projects in emerging markets.

In 2000, the company's first U.S. office opened in New York, NY. Two years later, Core released the first and second versions of their flagship penetration testing product, Core Impact Pro.[3]

In 2002, Morgan Stanley became a shareholder in Core, investing USD 1.5 million and retaining a seat on the board.

In 2003, the company's U.S. headquarters was relocated from New York to Boston, MA. Five years later, Mark Hatton became the CEO of Core Security.[4]

In 2009, Core adds development sites in Boston and India. One year later, Core announced the beta of its new security testing and measurement product, Core Insight.

In 2012, Core announces partnership with nCircle.[5] In the same year, Core announces partnership with NT Objectives.[6]

In 2013, Core Security is named to the 2013 Inc. 500/5000 List.[7] The firm, at the time, employed 180 people, 150 of whom are based in Buenos Aires.[8]

In 2014, Core Security Adds Intrinium to its Partner Program and extends its reach to the Pacific Northwest.[9] In the same year, Core Security announced the latest version of its Core Attack Intelligence Platform.[10] Also in 2014, Core Security won the Information Security Magazine and SearchSecurity.com 2014 Readers' Choice Awards for "Excellence in Vulnerability Management."[11]

In December 2015, Core Security was acquired by identity and access management (IAM) company Courion;[12] in May 2016, Courion rebranded itself with the Core Security name.[13]

In July 2016, Core Security Technologies acquired Damballa for $US 9 million.[14]

In 2017, Core Security merged with SecureAuth. [15]

In 2019, HelpSystems acquired the Core Security solutions from SecureAuth.[16]

On March 4th 2020, Core Security by Helpsystems acquired Cobalt Strike.

Offerings[]

Cyber threat offerings[]

Core Impact[]

Core Impact is penetration testing software that conducts advanced penetration tests using guided automation and certified exploits. This tool aims to enable environments to be safely tested using the same techniques used by unethical hackers.

Core Impact offers multi vector testing capabilities across network infrastructure, endpoints, web, and applications. The product’s attack map assists this function to reveal exploited vulnerabilities in real-time.

Cobalt Strike[]

Cobalt Strike is a threat emulation tool that provides a post-exploitation agent and covert channels created for Adversary Simulations and Red Team exercises. It provides the ability to emulate the tactics and techniques of a quiet long-term embedded threat actor in an IT network. Malleable C2 allows the changing of network indicators to look like different malware each time.

Event Manager[]

Event Manager is a multi-tenant, schedulable Security Information and Event Management (SIEM) solution that prioritizes security risks in real time, while generating audit trails specific to several compliance regulatory bodies.

Event Manager identifies, records, and prioritizes potential threats and incidents across an organization. Events are escalated automatically and notifications  can be routed to a specified security team member, with information including the type of event that occurred, where it happened, and who initiated it.

Network Insight[]

Core Network Insight is an agentless network traffic analysis solution that identifies active threats in real-time on any device within an organization’s infrastructure. Machine learning and multiple detection engines provide definitive evidence and pinpoint the specific location of an infection.

Powertech Antivirus[]

Powertech Antivirus is the only commercially available server-level antivirus solution tnat provides native scanning for IBM Power OS Systems, including IBM i, AIX, Linux on Power, and LinuxOne. Powertech Antivirus keeps up-to-date by automatically downloading the latest virus definitions and enhancements.

Security Auditor[]

Security Auditor centralizes security administration across cloud, on premise, or hybrid environments. Agentless technology enforces security policy adherence and mitigation of the risks of security misconfiguration.

Security Auditor automatically protects new systems as they come online and continuously monitors those systems, identifying any configuration settings that don’t match set requirements. Notifications are sent for policy exceptions and allow for changes from a web-based console.

Identity offerings[]

Access Assurance Suite[]

Access Assurance Suite is an identity and access management (IAM) software solution that is offers  capabilities like streamlining the provisioning process, reviewing access requests, managing compliance, and enforcing password management. The suite consists of four modules: Core Access, Core Provisioning, Core Compliance, and Core Password & Secure Reset.

Visual Identity Suite[]

The Visual Identity Suite (VIS) leverages a visual-first approach of user privileges and access certifications.  A graphical interface displays common user entitlements for assigning appropriate access levels  and identifying outliers.

Core Access Insight[]

Access Insight offers a continuous view and analysis of the relationship between identities, access rights, policies, and resources that occur across an environment. This solution applies analytics to  identity and access data in an organization, for identifying identity-related access risks, as well as driving provisioning and governance controls to manage that risk.

Core Password & Secure Reset[]

Core Password & Secure Reset is an integrated solution for automated password management and secure password reset.

Core Privileged Access Manager (BoKS)[]

Core Privileged Access Manager (BoKS) consolidates multi-vendor Linux and UNIX server environments into one centrally managed security domain. BoKS aims to simplify the process of enforcing security policies, and controlling access to critical systems and information by providing full control over accounts, access, and privilege.

Research and advisories[]

According to its website, Core Security's research department, Core Labs, conducts research in system vulnerabilities, cyber attack planning and simulation, source code auditing and cryptography. Core Labs publishes security advisories, technical papers, project information and shared software tools for public use, with its researchers participating in IT security research conferences including the Black Hat Briefings.[17][18]

See also[]

References[]

  1. ^ "Inc. Magazine Unveils Its Annual Exclusive List of America's Fastest-Growing Private Companies - the Inc.500|5000". CORE Security. Archived from the original on 2014-02-25. Retrieved 2014-02-21.
  2. ^ "HelpSystems Picks Up SecureAuth's Core Security Portfolio". Channelnomics. 7 February 2019.
  3. ^ "Technologies announces first comprehensive penetration testing tool". CORE Security. 2002-03-04. Archived from the original on 2014-02-25. Retrieved 2014-02-21.
  4. ^ "Technologies Appoints New CEO & Relocates Corporate Headquarters to Boston". CORE Security. 2003-05-30. Archived from the original on 2014-02-25. Retrieved 2014-02-21.
  5. ^ "Tripwire, Inc – IT Security Software to improve data security and regulatory compliance". Ncircle.com. Archived from the original on 2013-06-06. Retrieved 2014-02-21.
  6. ^ "Core Security & NT OBJECTives Partner to Deliver First-of-its-Kind Comprehensive View of Web Application Security Posture". CORE Security. 2012-04-18. Archived from the original on 2014-02-25. Retrieved 2014-02-21.
  7. ^ "Named to the 2013 Inc. 500/5000 List". CORE Security. 2013-08-21. Archived from the original on 2014-07-19. Retrieved 2014-07-15.
  8. ^ http://www.redesist.ie.ufrj.br/lalics/papers/08_PostInvestment_Trajectories_of_Latin_American_Young_TechnologyBased_Firms__An_Exploratory_Study_ab.pdf p.8
  9. ^ Core Security. "Core Security Press Releases Archived 2014-08-26 at the Wayback Machine." January 30, 2014. July 29, 2014.
  10. ^ "Prioritizing vulnerabilities to close gaps where it matters". net-security.org. Retrieved 2014-08-07.
  11. ^ "Wins 2014 Readers' Choice Award for Excellence in Vulnerability Management". CORE Security. 2014-11-25. Archived from the original on 2015-04-13. Retrieved 2015-01-12.
  12. ^ "Courion Acquires Attack Intelligence Solutions Provider Core Security". Courion. 2015-12-09. Retrieved 2016-06-01.
  13. ^ "Courion has Rebranded as the New Core Security". Core Security. 2016-05-25. Archived from the original on 2016-09-25. Retrieved 2016-06-01.
  14. ^ "Atlanta's Damballa sold for nearly $9 million - Atlanta Business Chronicle". Retrieved 30 September 2016.
  15. ^ "SecureAuth Acquired for $225 Million, to Merge With Core Security - SecurityWeek". Retrieved 19 April 2019.
  16. ^ "HelpSystems Picks Up SecureAuth's Core Security Portfolio". Channelnomics.
  17. ^ "Core Advisories". CORE Security. Retrieved 2014-02-21.
  18. ^ Gregg Keizer (2010-05-06). "Security firm reveals Microsoft's 'silent' patches". Computerworld. Retrieved 2014-02-21.

External links[]

Retrieved from ""