Black Hat conferences 2023: Top 10 Cybersecurity Products and Takeaways

Top 10 Cybersecurity Products At Black Hat 2023

Here are the top ten cybersecurity products released at Black Hat 2023.

1. SentinelOne’s Singularity Ranger

SentinelOne has introduced a new addition to its Singularity Ranger network discovery suite called Ranger Insights, aimed at simplifying the prioritization of critical software vulnerabilities for security analysts. By providing contextual information within the same console and software agent as other security tools like endpoint detection and response, the tool presents a consolidated view of vulnerabilities alongside endpoint-based threats.

This eliminates the need for scheduled network scans due to SentinelOne’s agent-based approach. While initially lacking direct patching capabilities, future plans include incorporating patching functionality. The expansion into vulnerability management aligns with customer demands for vendor consolidation and streamlining security processes.

2. CrowdStrike’s Identity Threat Hunting

CrowdStrike has introduced a pioneering threat hunting service called Identity Threat Hunting, addressing the prevalent issue of identity-based attacks in the cybersecurity landscape. The move comes as a response to the increasing effectiveness of endpoint security measures. This service, the inaugural offering from CrowdStrike’s Counter Adversary Operations unit, extends the proactive threat hunting practices of the Falcon OverWatch team from endpoint layers to identity threats.

Accessible at no charge for users of CrowdStrike Falcon OverWatch Elite, the service focuses on leveraging established intelligence and expertise to detect and prevent identity-based threats, emphasizing the prevention of lateral movement and early identification of compromised credentials.

3. Cycode’s Expanded ASPM and IDE Plugin:

Cycode, a leader in application security posture management (ASPM), has extended its capabilities by adding support for detecting hard-coded secrets in Confluence, AWS S3 buckets, and Azure environments. Additionally, they’ve introduced an IDE plugin for integration with VS Code, aiding developers in identifying and addressing hard-coded secrets within a single system. A new collaboration with Azure allows Cycode’s CI monitoring solution to work with Azure DevOps pipelines for Supply Chain Levels for Software Artifacts (SLSA) attestation generation.

4. NetRise’s SBOM Features and KEV Support:

NetRise has enhanced its extended internet of things (XIoT) security platform by including support for two major software bill of materials (SBOM) formats, SPDX and CycloneDX. This addition enables users to export vulnerability-enriched SBOMs and overlay CISA’s key exploited vulnerabilities (KEV) catalog data to simplify identifying and addressing known exploits, with no extra charges in the pricing model, starting from August 9.

5. ThreatConnect’s Intelligence Requirement Capabilities:

ThreatConnect has improved its machine-learning powered TI Ops Platform for threat intelligence operations with intelligence requirement capabilities. This feature aids customers in defining, managing, and tracking their intelligence requirements, priority intelligence requirements, and requests for information, streamlining the process of producing relevant and stakeholder-informed threat intelligence. This enhancement is included in the current pricing and became available to existing and new customers from August 7.

6. Ironscales’ Phishing Simulation Testing and ADE:

Ironscales has introduced a beta launch of GPT-powered phishing simulation testing (PST) to help organizations combat advanced phishing attacks with highly personalized simulation campaigns. Simultaneously, Ironscales’ new capability, accidental data exposure (ADE), alerts employees when they send potentially sensitive information. These capabilities are in beta and available to limited users, with pricing determined based on beta feedback.

7. Bionic’s ServiceNow Integration and Bionic Events:

Bionic’s application security posture management (ASPM) platform now integrates with ServiceNow’s Service Graph, offering engineering teams real-time configuration management databases of their applications and dependencies. Additionally, Bionic Events correlates application changes to security risk, supplying users with specific events to investigate security changes. These features come at no extra cost and were showcased at Black Hat USA.

8. ProtectAI’s Huntr Platform:

ProtectAI has unveiled Huntr, an open-source bug bounty platform powered by machine learning and focused on safeguarding AI open-source software and foundational models. With artificial intelligence and machine learning based bug hunting, monthly contests, and collaboration tools, the platform offers security researchers an environment for finding vulnerabilities.

9. Cybersixgill’s Enhancements to Cybersixgill IQ:

Cybersixgill IQ, a generative-AI based threat intelligence platform, now includes an attack surface management (ASM) module for contextual business insights. Enhancements such as a custom report builder, improved threat entity navigator with cross-referencing, and a credential module have been introduced to consolidate stolen credentials. These enhancements were demonstrated at Black Hat USA.

10. Cado’s New Timeline View and VARC Tool Enhancements:

Cado’s Timeline, a unified view for cross-cloud evidence items during incident response, has been revamped for better navigation. The shift from card view to tabular view enhances usability, while faceted and saved search options are now available. Cado also updated its open-source volatile artifact collection (VARC) tool to streamline incident investigation. These features were showcased at Black Hat USA.

Which is the most exciting cybersecurity product from Black Hat 2023? Share your choices with us in the comments section below.