• Solutions
  • Solutions Overview
    • About Our Solutions
    • Determine Exposure to Real-World Threats
    • Perform Continual, Automated Testing
    • Assess Security Across IT Layers
    • Validate Security Controls
    • Connect Security Data to Business Risk
  • Solutions by Industry
    • Government
    • Health Care
      • Respond to the HITECH ACT
      • Validate HIPAA Compliance
      • Limit Unauthorized Insider Activities
      • Maximize limited security staffing
      • Drive down Web-based Security Risks
      • Insulate Your Networks from Unauthorized Devices
      • Diminish the Impact of Social Engineering
      • Validate security investments
    • Higher Education
      • Overview
      • Assess exposure to potential data breaches
      • Insulate networks from unmanaged devices
      • Limit unauthorized insider activities
      • Drive down web-based security risks
      • Maximize limited security staffing
      • Diminish the impact of social engineering
      • Validate security investments
      • Meet compliance demands
  • Solutions for Compliance
    • Validate Security Controls
    • FISMA / NIST
      • NIST 800-137
      • NIST 800-39
      • NIST 800-53
    • GLBA
    • HIPAA
    • PCI
    • SOX
    • CAG
• Products
  • Products Overview
  • CORE INSIGHT Enterprise
    Security Intelligence Solution
    • Overview
    • How It Works
    • Dashboards
    • Demos
    • Data Sheets and White Papers
    • Comparing CORE INSIGHT to CORE IMPACT
    • How to Buy
  • CORE IMPACT Pro
    Penetration Testing Software
    • Overview
    • What It Tests
      • End Users
      • Endpoint Systems
      • Mobile Devices
      • Network Devices
      • Network Systems
      • Web Applications
      • Wireless Networks
      • IPS/IDS, Firewalls and Other Defenses
      • Vulnerabilities Identified by Scanners
    • How It Works
    • Features and Benefits
      • Overview
      • Exploits You Can Trust
      • How Our Exploits Work
      • About Our Client-Side Exploits
      • About Our Agents
    • Vulnerability Scanner Integration
    • Reporting
    • What's New
    • Security Updates
    • Demos
      • Impact
    • Data Sheets, White Papers and Other Resources
    • Intro To Penetration Testing
      • What Is Penetration Testing?
      • Comparing Security Testing Options
      • What To Look For
      • Independent Penetration Testing Resources
      • Conducting Penetration Tests
    • Comparing CORE IMPACT to CORE INSIGHT
    • Training, Certification and Support
    • How to Buy
  • Core WebVerify Web
    Application Security Testing Software
    • Overview
    • Web Application Vulnerability Coverage
    • WebVerify vs. Scanners
    • Reveal Implications of Application Vulnerabilities
  • Core CloudInspect Cloud Security Testing for AWS
  • Demos and Evaluations
  • The Research Behind Our Products
  • Why Our Products are Safe
  • How to Buy
• Services
  • Services Overview
  • Core Security Consulting
    Services
    • Overview
    • Comprehensive Penetration Testing
    • Application Penetration Testing
    • Web Services Security Assessment
    • Source Code Auditing
    • Wireless Penetration Testing
    • Leading-Edge Technology Testing
    • How to Buy
  • CORE IMPACT Professional Services
    • Overview
    • Web Application Penetration Testing Services
    • Network Penetration Testing Services
    • Client-Side Penetration Testing Services
    • Wireless Network Penetration Testing Services
    • Benefits
    • How to Buy
• CoreLabs Research
  • CoreLabs Overview
  • Research Projects
  • Advisories
  • Publications
    • Presentations and Papers
    • Journals and Magazines
    • Internet Articles
  • Open Source Projects
  • CoreLabs Extranet Site
• News & Events
  • News & Events Overview
  • Events and Webcasts
    • Webcasts
    • Conferences
    • Speaking Engagements
  • News
    • Press Releases
    • In The News
  • Vulnerability Outbreak Alerts
  • Reviews
  • Awards
• Partners
  • Partners Overview
  • Strategic Partners
    • Business Partners
    • Technology Partners
  • Training Partners
    • CICT Training and Certification
  • Using Core's Products in Your Consulting Practice
• Company
  • Company Overview
  • Management Team
  • Board of Directors
  • Customers
    • Success Stories
  • Careers
  • Contact Us
• Blog
• Customer Portal

• Products

• Products Overview

• CORE INSIGHT Enterprise
  Security Intelligence Solution
• Overview
• How It Works
• Dashboards
• Demos
• Data Sheets and White Papers
• Comparing CORE INSIGHT to CORE IMPACT
• How to Buy

• CORE IMPACT Pro
  Penetration Testing Software
  • Overview
  • What It Tests
    • End Users
    • Endpoint Systems
    • Mobile Devices
    • Network Devices
    • Network Systems
    • Web Applications
    • Wireless Networks
    • IPS/IDS, Firewalls and Other Defenses
    • Vulnerabilities Identified by Scanners
  • How It Works
  • Features and Benefits
    • Overview
    • Exploits You Can Trust
    • How Our Exploits Work
    • About Our Client-Side Exploits
    • About Our Agents
  • Vulnerability Scanner Integration
  • Reporting
  • What's New
  • Security Updates
  • Demos
    • Impact
  • Data Sheets, White Papers and Other Resources
  • Intro To Penetration Testing
    • What Is Penetration Testing?
    • Comparing Security Testing Options
    • What To Look For
    • Independent Penetration Testing Resources
    • Conducting Penetration Tests
  • Comparing CORE IMPACT to CORE INSIGHT
  • Training, Certification and Support
  • How to Buy

• Core WebVerify Web
  Application Security Testing Software
  • Overview
  • Web Application Vulnerability Coverage
  • WebVerify vs. Scanners
  • Reveal Implications of Application Vulnerabilities

• Core CloudInspect Cloud Security Testing for AWS

• Demos and Evaluations

• The Research Behind Our Products

• Why Our Products are Safe

• How to Buy

SHARE

How CORE INSIGHT Security Testing and
Measurement Works

CORE INSIGHT follows a seven-step process to continuously identify real-world threats to your critical assets.

Step 1: Environment Profiling

• Tell INSIGHT about your environment topography, for instance:
  • Import info from your network asset mgt solution or network / web scanner
  • Provide a range of IPs
  • Provide a range of web application URLs
  • Provide a list of end user email addresses

Step 2: Campaign Definition

• Define the goal of the INSIGHT assessment campaign (e.g., access a specific customer database).
• Define the scope of systems to be tested (e.g., a specific subnet).
  • Define which systems are in and out of bounds for the campaign
  • Optionally, delegate campaigns to IT staff who own the systems, web app developers, etc.
  • Establish the campaign schedule (e.g., once, daily, weekly, etc.).

Step 3: Attack Path Planning and Simulation

• INSIGHT profiles systems defined by the campaign and identifies potentially vulnerable systems.
• INSIGHT’s attack planning algorithm combines knowledge of system profiles with GPS-like intelligence to determine most likely path(s) to achieve the campaign goal.
• INSIGHT weights potential paths based on exploit efficacy, leveraging CORE IMPACT’s usage statistics and our unique research and field expertise.

Step 4: Attack Replication

• CORE INSIGHT’s Exploit Engine replicates an attacker’s attempts at compromising systems along the paths.
• Can target web applications, network systems, endpoint systems and end users (via phishing).
• All exploits are commercial-grade, developed in-house, and repeatedly updated, QAed and tested.
• Product receives 20-30 new exploits and other modules per month.

Step 5: Adaptive Path Adjustment

• Uses GPS-like intelligence to adjust and recalculate Attack Paths as it attempts to compromise systems, like an attacker would.
• Stays “in bounds” as defined in the campaign.
• Only tests calculated attack paths
• Less disruptive than scanning
• Stealthy attacker behavior

Step 6: Infrastructure Change

• Newly deployed systems that fall within the scope of a campaign (e.g., and IP range) can automatically be tested the next time a campaign is run.
• Ensures that security tests keep up with your changing environment

Step 7: Dashboard / Reporting

• Details real potential for breach of critical assets with no false positives.
• Shows where defenses stop attacks.
• Reveals exposures to attacks that combine different techniques and vectors.
• Details attack paths and penetration points for remediation planning.