Many organizations use red teaming operations to seek advanced security assessments. Adopting this approach, the organization’s defenses are based on the actual performance in the presence of real threats. Red teaming accurately assesses the company’s prevention, detection and remediation capabilities, but few have the resources to carry out the task effectively.
To help customers evaluate and prevent risk, including through red teaming, software and services company HelpSystems acquired Outflank, a provider of red teaming, cyberattack simulation, incident detection and response services. The consulting, training and SaaS-based software toolkit provider will join the HelpSystems Offensive Security portfolio.
“Offensive security tactics like adversary simulation are an essential part of a well-rounded cybersecurity strategy,” said Kate Bolseth, CEO, HelpSystems.
Outflank is an IT security company that offers a cloud-based software for red teams, Outflank Security Tooling. OST is continuously updated with new offensive techniques and procedures by a team of hackers and developers. This will ultimately save time developing and maintaining a full internal toolkit.
Outflank’s toolkit, built for performing in mature and sensitive target environments, provides teams with shortcuts for hard stages like initial access, EDR evasion and OPSEC-safe lateral movement.
“With our SaaS solution for red teams, we offer an extremely powerful toolset to our customers so they can execute sophisticated attack scenarios themselves,” according to the Outflank team.
In fact, Outflank developed the OST solution to work in tandem with HelpSystems’ Cobalt Strike for a robust approach to adversary simulation. Cobalt Strike is a threat emulation tool that provides a post-exploitation agent and covert channels ideal for adversary simulations and red team exercises.
Companies emulate the tactics and techniques of a quiet long-term embedded threat actor in an IT network through Cobalt Strike.
Being part of HelpSystems, Outflank will expand its market reach and support more security teams while continuing to apply stringent controls over the access to its toolset and staying mindful of how its solution is used.
Edited by
Erik Linask
