Core Impact Latest Release and Update post is specially dedicated to this Core Security powerful Penetration Testing software, Core Impact which are designed to ease security team in conducting advanced penetration.
Please read in reverse order, if you interest from the old to latest manner as the latest release note and build always increment update on the top for this product update. Feel free to contact E-SPIN regarding product and related matter (if any).
Core Impact Updates – Currently Shipping v21.1 (29-Nov-2021)
New Features
Core Impact is updated with the ability to map and categorise each engagement in MITRE.
Impact modules can be filtered with MITRE ATT&CK Framework Tactics, Techniques and Subtechniques
Core impact allows users to generate new reports that applies the MITRE ATT&CK Navigator layer output which include:
- MITRE ATT&CK Navigator report
- NIST 800 Navigator report
Additional Integration with two new vulnerability scanners:
- FrontlineVM scanner
- beSecure scanner
Improvements
Completely interactive Attack Map view can be utilised as tester’s primary working space.
Testers can configure a remote SQLServer engine as Impact database.
Dependencies updates
OpenSSL 1.1.1l
.NET Framework v4.8
psqlODBC 13.02
Agents’ display name has been updated to display the process, pid and user name running it in the remote system.
Tester can set EHLO/HELO in SMTP Server configuration to explicitly set Impact’s host name when sending hello commands (HELO/EHLO) to the SMTP server.
Other Fixes
Automatic Impact Updates enabled by default.
Internal workspaces no longer displayed in the “Workspace Import/Export” wizard.
Tester can select ‘A module to run after deploying an agent’ using ClientSide exploits.
Core Impact Release – v21.1 (13-Jul-2021)
New Features
Core Impact v21.1 is now equipped with Network Map View. This feature gives users real-time overview of attack chains, pivoting and any other activities completed during testing. With better insight provided by Network Map View, it enables security teams to better identify the best path forward in the testing engagement.
Automated Updates allows minor updates and new exploits to be automatically installed. This enables users to use the new features as soon as they are available. Automated updates can be enabled through Tools -> Options -> Software Updates section.
Improvements
The additional content featured in the search results makes searching within Core Impact modules easier.
The Modules search maintain the folder’s structure while showing the results.
Users can also reorganise several sections in the Tools -> Options menu to ease understanding and finding.
Dependencies updates
- OpenSSL 1.1.1k
- NMap 7.90
- Impacket
- mimikatz 2.2.0-20210512
Other Fixes
Enhanced ability to run Remediation Validation on work spaces created in previous versions.
Enhanced ability to install an agent using SSH on modern Linux distros.
Identities Verifier can be performed without being limited by number of lines of the password file.
Latest version Nessus vulnerability scanner integration.
Updated WMI modules for the latest Windows 10 versions.
PCAP Plugin now support the latest Debian and Red Hat 64 bits versions.
Enumerate User Accounts with SPNs module also now support the latest Windows 2019 Server versions.
Core Impact Release – v20.4 (8-Mar-2021)
New Features
Offers support for different Core Impact Editions:
Enterprise: Specially designed and a prefect platform for businesses of all sizes that is establishing a robust security profile.
Pro: Perfect for infrastructure protection departments of all sizes moving towards establishing a robust security profile.
Basic: Ideal for a small IT infrastructure or organisations that are new to security monitoring.
Improvements
Background images for different wizards within the tools improve its consistence with the brand.
Read our Product Overview on Core Impact below for more information about the product: