Le Lézard
Classified in: Science and technology
Subject: PDT

Tevora Releases Free, Open-Source Penetration Testing Tool, SecSmash



LAKE FOREST, Calif., Oct. 5, 2017 /PRNewswire/ -- Tevora, a leading provider of security, governance and compliance solutions, announced the launch of a free, open-source penetration testing tool, SecSmash. The tool, first teased at information security conference BSIDES in July, was designed for security teams, namely, penetration testers and is intended to support existing security systems.

About SecSmash

Organizations face many cybersecurity challenges today, one being how can they prevent attackers from using their own security products against them? Many times, the poor deployment of a product can leave critical pieces of infrastructure unprotected. Weak passwords or failing to use two-factor authentication can leave security products intended to protect an organization exposed. The SecSmash framework helps penetration testers identify any such weaknesses and correct them before an attacker poses a threat by turning centralized management, monitoring and security tools into command and control, aka C2, infrastructure. Attackers frequently use the C2 approach to commandeer security systems.

"SecSmash enables penetration testers to use this same C2 approach to better assess the risk of an organizations security system," said Lead Penetration Tester and SecSmash designer, Kevin Dick. "This tool is the result of the shared knowledge of the penetration testing community, and we wanted to give back."

Availability and Supporting Technology

SecSmash is available free of charge on GitHub. Its modular framework allows for integration with any available technology solutions. Additional details about the tool can be found on the Tevora Threat Blog.

About Tevora

Tevora is an enterprise consulting firm specializing in information assurance, governance and compliance services and solutions. We work with some of the world's leading companies, institutions and governments to ensure the safety of their information and their compliance with applicable regulations. With a distinctive combination of proven products and services, Tevora aids enterprises in protecting their most important assets from external and internal threats.

For more information about Tevora please visit www.tevora.com, learn about security news and trends on www.teovora.com/connect/blog or follow us on Twitter @tevora. 

Media Contact:

Liz Kydoniefs
979.716.0861
Lkydoniefs@tevora.com

SOURCE Tevora


These press releases may also interest you

20 jui 2018
Pundi X, the developer of a blockchain-based point-of-sale ("POS") solution, and UBIVELOX (089850), the KRX-listed company and world's sixth-largest manufacturer of smart cards, today announced UBIVELOX's entry into the cryptocurrency market...

20 jui 2018
dynaCERT Inc.   (DAX:DMJ) ("dynaCERT" or the "Company") provides the following update: dynaCERT announces the departure from its Board of Directors of Colonel Yalon Fahri who has resigned to pursue other interests.  Mr. James Payne states: "Colonel...

20 jui 2018
Between May 23 and 24, 2018, NorthStar learned of an email phishing campaign that resulted in the compromise of certain employees' email credentials.  NorthStar immediately took steps to respond and commenced an investigation to determine the nature...

20 jui 2018
GEORGETOWN, Texas, July 20, 2018 /PRNewswire-PRWeb/ -- LG CNS Healthcare Solutions, a leading EHR and technology provider in the long-term and post-acute care industry, has received two patents for progressive technology embedded in its Smart...

20 jui 2018
Real World Evidence (RWE) generation is vital for producing the health outcomes and safety data that payers are using to drive formulary and reimbursement decisions. However, as pharmaceutical companies take steps to improve their RWE capabilities...

20 jui 2018
Boys Town National Research Hospital ("Boys Town") is providing notice to current and former patients and employees of a recent incident involving personal information. To date, Boys Town has not received any reports that personal information has...




News published on 5 october 2017 at 18:15 and distributed by: