Resources

Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024

In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...

Blog

Cobalt Strike and Outflank Security Tooling: Friends in Evasive Places

Wed, 08/09/2023

Datasheet

How Fortra Supports the Zero Trust Journey

What Zero Trust means, tips for getting started, and how Fortra solutions support your Zero Trust security journey.

Infrastructure and Data Protection

Data Protection

Compliance

Data Classification

IT Infrastructure Protection

Vulnerability Management

Datasheet

Red Team Bundle

Cobalt Strike and Outflank Security Tooling (OST) are two elite red teaming solutions ideal for assessing the security posture of an organization by deploying sophisticated adversary simulations. Cobalt Strike is a threat emulation tool that provides a post-exploitation agent and covert channels, replicating the tactics and techniques of an advanced adversary in a network. OST is a curated set...

Datasheet

Advanced Red Team Bundle

Core Impact, Cobalt Strike, and Outflank Security Tooling (OST) are three powerful security solutions that use the same techniques as today’s threat actors in order to safely evaluate organizational infrastructures and provide guidance on closing security gaps, enhancing defenses, and creating more resilient security strategies. Core Impact is an automated penetration testing tool, typically...

Datasheet

OST - Outflank Security Tooling Datasheet

OST is a curated set of offensive security tools created by expert red teamers. Ideal for advanced security teams testing even mature and sensitive target environments, this toolkit covers every significant step in the attacker kill chain, from difficult stages such as initial access to final exfiltration. Prioritizing Stealth and Evasion One of the key challenges that red teams face today is...

Datasheet

Fortra Cybersecurity Solutions

Blog

Six Strategies to Ensure You Give the Right Access to the Right People at the Right Time

Mon, 08/31/2020

Part 2 of the Improving Your Security-Efficiency Balance Series: One of the primary challenges organizations wrestle with in identity governance is how to achieve the right balance in their company between security and efficiency. In Part 1 of the Improving Your Security-Efficiency Balance Series, we examined the unique balancing act organizations face when it comes to user access. In this blog...

Blog

The Evolution of Cybersecurity Solutions for Organizations

Tue, 08/11/2020

In the early days of the internet, cybersecurity was fairly straightforward, with all solutions and strategies geared toward prevention. While prevention remains critical, cybersecurity has also had to evolve, with businesses layering their defenses and regularly evaluating the status of their safeguards to adapt to change—whether those be organizational or within the wider cybersecurity sphere.

Blog

Open Source SIEM vs. Enterprise-Level SIEM: Which Is Right for You?

Thu, 07/16/2020

Open source and enterprise-level SIEM solutions all have pros and cons. Here are some factors to look at when comparing your options—including one you might not have considered yet.

Blog

Penetration Testing for Regulatory Compliance

By Bob Erdman on Wed, 06/10/2020

Blog

How To Manage the Pen Testing Skills Shortage

By Bob Erdman on Wed, 05/27/2020

Blog

What Is SIEM?

Fri, 12/20/2019

SIEM (security information and event management) software provides insights into potential security threats through data normalization and threat prioritization, giving IT professionals an effective method of automating processes and centralizing security management in a way that helps them simplify the difficult task of protecting sensitive data.

Blog

Silencing the Bells: How a SIEM Can Prevent Alert Fatigue

By Bob Erdman on Tue, 07/30/2019

Find out how Security Information and Event Management (SIEM) solutions can streamline security and prevent alert fatigue.

Blog

Staying Ahead of the Curve: Implementing Privileged Access Management Solutions

Fri, 03/22/2019

Find out why Privileged Access Management (PAM) has become such a priority, and why your organization should stay ahead of the curve and adopt a PAM solution.

Blog

Cyber Risk Ratings: How Would Your IT Environment Score?

By Bob Erdman on Wed, 12/12/2018

Find out the type of cyber threats that endanger organizations (and their ratings), and how they can protect themselves.

Blog

Enterprise Security: Best Practices and Tips

By Bob Erdman on Mon, 12/03/2018

How much security is really necessary to protect yourself? Read on for tips on how to best protect your organization and avoid becoming a headline.

Blog

A Precarious Balance: Privileged Users and The Cloud

By Bob Erdman on Tue, 11/20/2018

When it comes to privileged users, do we maintain security at the cost of productivity, or do we increase productivity at the cost of security?

Blog

Cloud Watching: Ensuring Security in Every Cloud Environment

By Bob Erdman on Fri, 11/02/2018

Read on to learn about the different types of cloud environments, and the biggest security obstacle each presents.

Blog

The Shared Responsibility of Cloud Security

By Bob Erdman on Fri, 10/26/2018

The agreement that cloud security is a shared responsibility between cloud providers and cloud users has now firmly taken hold. How those responsibilities shake out, however, is an ongoing conversation.

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

Cobalt Strike and Outflank Security Tooling: Friends in Evasive Places

How Fortra Supports the Zero Trust Journey

Red Team Bundle

Advanced Red Team Bundle

OST - Outflank Security Tooling Datasheet

Fortra Cybersecurity Solutions

Six Strategies to Ensure You Give the Right Access to the Right People at the Right Time

The Evolution of Cybersecurity Solutions for Organizations

Open Source SIEM vs. Enterprise-Level SIEM: Which Is Right for You?

Penetration Testing for Regulatory Compliance

How To Manage the Pen Testing Skills Shortage

What Is SIEM?

Silencing the Bells: How a SIEM Can Prevent Alert Fatigue

Staying Ahead of the Curve: Implementing Privileged Access Management Solutions

Cyber Risk Ratings: How Would Your IT Environment Score?

Enterprise Security: Best Practices and Tips

A Precarious Balance: Privileged Users and The Cloud

Cloud Watching: Ensuring Security in Every Cloud Environment

The Shared Responsibility of Cloud Security

Contact Information

Privacy Policy

Cookie Policy

Impressum