Product review: Core Impact penetration tester goes phishing
With Version 7.5, the tried-and-true attack toolkit becomes easier to use, leverages the fallibility of users to gain access to host systems, and adds security checks for Web-based databasesFollow @infoworld
A couple of improvements that arrived with Version 7.0 are worth noting. First, the multiple client-side agents that facilitated different levels of attack in previous versions of Impact have been replaced by a single, do-everything agent. Still in-memory (on by default), the client agent can now use all network connections through a single listener port, providing a greater degree of flexibility to bypass firewalls and other security devices. The agent also now supports runtime plug-ins that open the door for customized, client-side actions such as patching, installing security software, and gathering forensic information.
Version 7.0 also added support for FreeBSD as a target OS, a long-overdue addition, as well as full pivoting from Vista machines -- the ability to attack additional machines from compromised Vista targets.
Core Impact's automated penetration testing is still quick and effective, and because Impact is not a network vulnerability scanner, its tests are 100 percent free of false positives, which is the primary reason we consider it an essential testing tool. Version 7.5's redesigned attack wizards, enhanced user interface, upgraded agent, and Web application attacks are significant improvents to an already compelling product that can help you improve your organization's security posture by compromising both the machines that reside on your network and the people that use those machines on a daily basis.