Core Impact Adds Mobile Device Exploits, Widens Metasploit Integration

Core Security has introduced mobile device testing and measurement in the latest version of its Core IMPACT penetration testing software. Version 12 also improves Core' integration with the popular open source Metasploit Framework pen-testing tool.

August 03, 2011

Core Security has introduced mobile device testing and measurement in the latest version of its Core IMPACT penetration testing software. Version 12 also improves Core's integration with the popular open source Metasploit Framework pen-testing tool.

Mobile phones, which have been hyped as a coming major attack vector for years, have become a hot-button security issue. Smart phones, capable of both cellular and Wi-Fi connectivity, have grown more powerful and capable of storing large amounts of data. They are commonly used to access corporate email and other standard business applications.

In addition to managed phones, chiefly BlackBerry devices, enterprises are embracing the use of privately owned devices, particularly the iPhone and, increasingly, Android. Attackers can potentially retrieve data or, more likely, read corporate email and/or use the victim’s account to pose as a legitimate user to conduct spear-phishing attacks within the enterprise.

Core Impact Pro v12 allows penetration testers to exploit critical exposures by:

Retrieving phone call, SMS and MMS logs

Scraping GPS and contact information

Taking snapshots using the mobile device’s camera

The new release also uses social engineering techniques to test user awareness and trust on mobile devices. Testing techniques include phishing emails and texts; Web form impersonation; fake wireless access points; and man-in-middle attacks.

Subsea Cable Alternatives Get Serious Attention

Salvatore Salamone, Managing Editor, Network Computing

April 08, 2024

Subsea cable alternatives can provide a level of comfort for those concerned about disruptions. Realistically, they will continue to play a small, but critical role in the short term.

Technical Debt and the Hidden Cost of Network Management: Why it’s Time to Revisit Your Network Foundations

Lee Howard, Senior Vice President, IPv4.Global

April 05, 2024

Maintaining existing network infrastructures often incurs huge technical debt before newer technologies are adopted over time.

Creating a Global Connectivity Development Strategy: Driving Growth with Low Latency Networks

Veer Passi, Group CEO, Kalaam Telecom

April 03, 2024

Amid ongoing regional uncertainties, telecom infrastructure in the Middle East has expand to include terrestrial low-latency network infrastructure, which offers resilience and agility in navigating political complexities without relying solely on undersea networks.

Core Impact Adds Mobile Device Exploits, Widens Metasploit Integration

Tags:

Recommended For You

Subsea Cable Alternatives Get Serious Attention

Technical Debt and the Hidden Cost of Network Management: Why it’s Time to Revisit Your Network Foundations

Creating a Global Connectivity Development Strategy: Driving Growth with Low Latency Networks

Search form

Core Impact Adds Mobile Device Exploits, Widens Metasploit Integration

Tags:

Recommended For You

Subsea Cable Alternatives Get Serious Attention

Technical Debt and the Hidden Cost of Network Management: Why it’s Time to Revisit Your Network Foundations

Creating a Global Connectivity Development Strategy: Driving Growth with Low Latency Networks