Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Core Impact is back again with a new version (Professional 10), and just when we thought this product could not get any more powerful it surprises us once again. Those familiar with this product already know that it is one of the most comprehensive penetration testing products on the market, and then last year it became more comprehensive with added vulnerability scanning capability.
Well, this year Core Security Technologies added Wi-Fi penetration testing to the list. With this capability, users can now find the Wi-Fi network even if the SSID (service set identifier) is not broadcasting and try to break the encryption key. This works on WEP, WPA and WPA2 networks.
We did not see much change in overall ease of use of this product. The installation has become a little more compact in terms of user interaction. The install wizard now integrates all necessary components on its own, so there is no need to go download SQL Express or other programs before an install. The user interface is basically the same as in previous versions, with the exception of some minor cosmetic changes, but it is still easy and intuitive to navigate. There is also slightly more automation added in this version, which makes tasks easier to complete.
We find this tool to be a solid performer in all areas of vulnerability management. Core Impact can be used to not only run vulnerability scans, but also to try to penetrate vulnerable machines with very targeted attacks. Beyond penetration testing, this product can also be used to conduct mock phishing attempts by sending a suspicious email to employees and reporting back which employees clicked the link in the email.
Documentation provided with Impact includes a user guide, located in the help menu, which provides a deep look at product features and functions, as well as many examples and screen shots. This guide is well-organised and includes many bookmarks for easy navigation.
Core Security offers full customer phone and email technical support (US time) along with free start-up product/user training so customers can get the most out of the solution. The website also includes a support area with a knowledge base and support case submission forms.
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.