Home / Resources / Test Tools & Partners

Test Tools & Partners

Quality knows no compromise. Nor do some of our proprietary methodologies. For that reason, NSS Labs augments its substantial in-house tools and intellectual property with best-of-breed security analysis solutions through numerous industry technology partnerships. These relationships provide us and our customers with access to leading-edge products and services. Whether it is a customized threat feed, vulnerability scanner or protocol fuzzer, our customers have the advantages of the entire industry behind them. We graciously thank our partners for their support.

Technology Partners

Breaking Point logoBreakingPoint Systems
The BreakingPoint Storm CTM is the standard by which the world optimizes the resiliency of their network and data center infrastructures. A single BreakingPoint Storm CTM produces high-performance traffic from hundreds of real-world applications, load from millions of users, and comprehensive security coverage that includes thousands of current attacks and malware, as well as obfuscation and evasion techniques. www.breakingpointsystems.com

Core SecurityCore Security Technologies
Organizations are increasingly looking to penetration testing to effectively determine the risk to their network assets. CORE IMPACT, from Core Security Technologies is a tool that aims to help in the process by automating as much of it as possible. CORE IMPACT allows the user to safely exploit vulnerabilities in the network, replicating the kinds of access an intruder could achieve, and proving actual paths of attacks that must be eliminated. www.coresecurity.com

ExploitHubExploitHub
ExploitHub is a marketplace for vulnerability testing. The company's goal is to close the capabilities gap between the cyber-criminals and white hats, by enabling defenders to perform more comprehensive testing of their defenses. ExploitHub is a community-driven marketplace made up of a diverse group of expert security researchers contributing to solve the problem. NSS Labs uses exploits from ExploitHub in our testing. www.exploithub.com

Traffic IQ by Idappcom LtdTraffic IQ by Idappcom Ltd
Traffic IQ provides a unique industry approved software solution for auditing and testing the recognition and response capabilities of your corporate security defences. Unrivalled functionality and simplicity combine to provide a highly configurable solution for assessing, validating and auditing the recognition and response capabilities for packet filtering security devices including firewalls, routers, and intrusion detection and prevention systems. www.idappcom.com

mu Dynamics logoMu Dynamics
Mu's advanced Security Analysers are utilized to explore new attack vectors before they are exploited maliciously. www.mudynamics.com

Rapid7-MetasploitRapid7/Metasploit

The Metasploit Framework is both a penetration testing system and a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. www.rapid7.com

Spirent logo

Spirent
The AX/4000 is capable of testing multiple transmission technologies such as ATM, IP, Frame Relay and Ethernet simultaneously at speeds up to 10 Gbps. Spirent Communications’ SmartBits® enables us to test, simulate,analyze, troubleshoot, develop, and certify network infrastructure. www.spirentcom.com

Assurent - a Telus Company logo

TELUS
The Vulnerability Research Service (VRS) from TELUS provides security product vendors with timely, in-depth engineering analysis on the top five to eight security vulnerabilities that emerge each week. www.telus.com

Educational Partners

Online Trust AllianceOnline Trust Alliance
OTA's  mission is to create an online trust
community, promoting business practices and technologies to enhance consumer
trust and the vitality of interactive marketing , ecommerce, governmental and online financial services. OTA is the only global organization which represents the broad internet ecosystem supporting user choice and control, protection of critical infrastructure, privacy and data governance, promoting marketing best practices, balanced legislation, benchmark reporting, and self-governance. otalliance.org

SANS logo

SANS
SANS is one of the largest and most trusted sources for information security training and certification in the world. The SANS (SysAdmin, Audit, Network, Security) Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals around the world. www.sans.org