Team Collaboration

Spend more time hacking and less time reporting.

The Red Team Edition of the ThreatConsole is designed to aid teams of offensive security practioners in conducting Penetration Tests or Vulnerability Assessments by providing a centralized collaboration server that is easy to use. Once any member publishes a screenshot or evidentiary file, it is immediately accessible by the entire team. It also provides a centralized interface for group editing of findings. Simply upload raw scan results, and once a team member modifies the finding, it automatically sets up a customized wiki for that finding (with fully attributed edit history tracking) - and that customized write-up will be the default write-up that appears every time that issue ever comes up again. The Red Team Edition also allows managers (and potentially customers) to track progress of an engagement remotely.

Just like the Personal/Small Business Edition, the Red Team Edition comes with the "Flythru" interface. This is a great visual aid to demonstrate security issues to non-technical people who may not understand what services are or even what an IP address is. It also provides an alternate non-traditional view for security pros who may be tired of looking at charts, spreadsheets, and tables... or if they just want a quick view of a network to make sure everything was captured during scanning. Traditional boring views are also available! Another feature is tool integration. Security tools with APIs are being integrated into the Red Team Edition, to enable use of the collaboration server as a centralized attack platform and reverse shell interface. Phishing Campaign Management is also a feature that is being worked on.

Next

Historical Trending

Track the progress of each Target Group over time.

Identifying and resolving security issues is what the Red Team Edition is all about. For in house security teams, as vulnerabilities are mitigated you will see the attack profile decrease as your infrastructure becomes more secure over time. For consulting firms, you can show your customers the value that is provided by your team. For both, you can track how long a specific issue has gone unfixed and track the progress of individual systems, services, or applications.

Next

Collaborate With Partners

Have multiple users working with the same data

Share your Red Team Edition data with subcontractors that you collaborate with on an assessment/penetration test or incident response engagement on a project by project basis. You can restrict who can see what and revoke access at any time. You can make private comments with just your team members and also be able utilize the collective wisdom of the community.

Next

Red Team Edition Features

Here are just a few of the features available in the Red Team Edition

Automated Reporting

Generate professionally formated or fully customized reports instantly in a variety of formats including MS Word, Excel, etc. To protect your Intellectual Property, generated reports are always stored encrypted.

Collaborate With Others

Share your data with others, collaborate with a team on assessments and have a centralized artifact and vulnerability status repository, and tap into group and community knowledge. Managers can keep track of a team's progress remotely.

Custom Reports

Say you are testing an organization (be it your own or your customer's) that has multiple groups who have different areas of responsibility. You can easily create reports tailored to each individual group, so that one group can't see another group's issues.

Transfer Files Securely

If you have a file too big to send as an email attachment, or if the file contains sensitive informaition that you do not want to send via email, feel free to use the External File Transfer service. This service enables the secure transfer of files over SSL. Once the file is downloaded, it is deleted. Send and recieve files securely.

Custom Writups

You instantly have a version tracking repository for your own custom finding writeups. Your custom writeups are your Intellectual Property. You can restrict access to who can see and edit the writeups if there is a mixed environment made up of your own trusted staff and less trusted third party contractors. Write once, secure many!!

Import Scan Results

The Red Team Edition of the ThreatConsole can import data from a wide variety of security tools. The vulnerability data can be edited and customized finding descriptions and solutions can automatically be applied to generated reports. A "fast interface" enables team members to mark issues as false positive, or quickly modify an identified issue.

Utilize ThreatPerspective's Professional Services

If you need expert assistance or staff augmentation on an engagement, consider utilizing ThreatPerspective's Professional Services by contracting our consultants to collaborate on your vulnerability assessment or penetration test. If you are a Red Team Edition Subscriber you will get a discounted rate.