2nd Edition

Tracking the trends and news for IT and IT Security

Paul Davis

Pros and cons of 7 breach and attack simulation tools

Pros and cons of 7 breach and attack simulation tools>
– Paul Kirvan
Security administrators are increasingly using breach and attack simulation (BAS) tools to supplement penetration tests and continuously assess the security posture of their network infrastructures in real-time
The article examines seven leading BAS tools based on Gartner’s Peer Insights reviews and ratings
Key points:
Penetration testing provides a snapshot of network status and vulnerabilities, while BAS tools run continuously or at scheduled times for real-time network security monitoring
BAS tools can help improve mean time to detect and respond, perform resilience and readiness assessments, improve visibility during changes, and assist with user behavior assessment
The seven BAS tools reviewed are AttackIQ, Cymulate, FortiTester by Fortinet, Picus Security Control Validation, SafeBreach, Threat Simulator by Keysight Technologies, and XM Cyber Exposure Management Platform
AttackIQ uses the Mitre ATT&CK framework for simulations and is easy to use, scalable, and has good support, but may not be suitable for larger companies
Cymulate offers a modular platform combining attack surface management, automated red teaming, and exposure analytics, and is cost-effective but can be challenging to implement in some situations
FortiTester performs as a simulator and sandbox, is reliable and stable, and complements other Fortinet products, but can be cumbersome to manage
Picus Security Control Validation provides detailed data on network security with a continuously updated threat database, strengthens security perspective, and is well-designed, but has some performance issues
SafeBreach executes simulations proactively, relies on a large threat database, and supports custom simulations, and is versatile and efficient, but can be buggy
Threat Simulator by Keysight Technologies provides in-depth threat and attack analyses across all parts of a network with multiple testing scenarios, and is effective and well-structured, but has concerns about scalability and integration capabilities
XM Cyber Exposure Management Platform examines vulnerabilities and risks while executing attack simulations, and is easy to set up and transparent, but lacks efficient integration with other tools.
Link: https://www.techtarget.com/searchsecurity/tip/Pros-and-cons-of-breach-and-attack-simulation-tools

Categories:

Tags: