Groups
To Cymulate

Welcome to Cymulate Hub!

534 Topics
235 Replies
3,158 Members

Quick links

Release Notes

View latest features and updates

Welcome!

Cymulate Space

Ask, learn and connect

Knowledge Base

Search FAQ and Documentation

Hot Topics

Recently active
Help others

PatriciaEmployee

Cymulate's News & Updates

Cymulate Unveils Cutting-Edge Cyber Threat Simulation to Bolster Security Resilience

In light of the recent cyberattack on the Kfar Shaul Mental Health Center in Jerusalem, the Cymulate research team has quickly mobilized to create and release a new simulation now available from the app.This simulation tests against the specific threat that impacted Kfar Shaul, as outlined in the recent CERT IL alert.As many of you know, the Cymulate Immediate Threats Intelligence module is designed to keep up with the latest emerging cyber threats by creating simulations that organizations can use to validate their defenses. As soon as possible following the identification of a new threat, like this attack on an Israeli healthcare organization, we add a new simulation to help the community benchmark and optimize their security controls.With this latest simulation, Cymulate customers can immediately assess their exposure to the attack vectors, techniques, and IOCs involved in the Kfar Shaul incident. The simulation will show which security controls were effective or failed, empowering

5 days ago

Mike_U

Ask a Question

Are different attack vectors in Immediate Threat launched simultaneously, or sequentially?

Do the attack vectors for Immediate Threats follow a sequential application, such as starting with the web gateway and then moving to the endpoint (like full kill chain), or are they independent of each other?

28 days ago

idantCommunity Manager

Cymulate's News & Updates

Exciting Webinar Announcement! Elevate Your Exposure Management Program with Cymulate 🚀

Are you ready to take your organization's security to the next level? Join us for an exclusive webinar on "How to Elevate Your Exposure Management Program" with our experts Andy Stone, Director of Customer Success - Americas / David Kellerman, Director of Customer Success EMEA & APAC, and Roi Sharon, Director of Product Management. Mark your calendars:📅 Date: Monday, September 11th UK Time: 12:00 PM | New York Time: 7:00 AM Register Here🕒 Duration: 60 minutes of insights, strategies, and a live demo showcasing Cymulate Exposure Analytics in action.🔑 Key Highlights:Visualize Cyber Risks Clearly: See potential threats highlighted and mitigation tasks prioritized for seamless communication. Align Security with Business Goals: Bridge the gap between technical aspects and broader organizational objectives. Get a Centralized View of Security Gaps: Prioritize resources effectively by gaining full visibility over assets and their findings. Manage Vulnerabilities Contextually: Learn ho

240

1 month ago

Emily RosenfieldCommunity Manager

Announcements

Update on Immediate Threat: ”MoustachedBouncer Targets Diplomats In Belarus”

On August 21, 2023 we uploaded an Immediate Threat by the name ”MoustachedBouncer Targets Diplomats In Belarus” which included several Indicators of Compromise (IOCs).Within the associated IOCs which were uploaded, there were 2 that are not malicious URLs and are legitimate Microsoft URLs.The following URLs are not malicious:http://msftconnecttest.com/redirect http://msftconnecttest.com/connecttest.txtWe have removed this Immediate Threat as well as the reports associated with it. Please ensure that these URLs are accessible from your organization.We apologize for any inconvenience.Best, The Cymulate Team

1 month ago

FMI

Ask a Question

Email gateway - O365 App-only authentication

We are going to setup the Service Based Agent for the Email gateway testing with the O365 App-only authentication method. In the requirements the User.Read.All application permission is required (see the link above). This means that info about all users is available.As we want to conduct test in the production environment this is a security issue and we would like to know what is the reason for this kind of permission as for the email gateway testing emails are received only in that particular mailbox used for testing. Concerning the proposed limitation of Cymulate to specific mailbox (https://learn.microsoft.com/en-us/graph/auth-limit-mailbox-access.) does not solve this issue as it is applicable to the mailbox as such, not to users.

1 month ago

perc_tomas

Ask a Question

Document on Data Exfiltration

Hi,Is there a documentation/knowledgebase article that specifies which applications/services use API calls to upload files on Data Exfiltration?

1 month ago

andresbalidea

Ask a Question

Connect to GSuite without IMAP

We have a client with the need to access GSuite but has a policy to deny outgoing IMAP.Is there any plan to support HTTP API access?

2 months ago

Steve_Eyre

Ask a Question

uploading payloads & tools

18 days ago

perc_tomas

Ask a Question

Document on Data Exfiltration

Hi,Is there a documentation/knowledgebase article that specifies which applications/services use API calls to upload files on Data Exfiltration?

1 month ago

andresbalidea

Ask a Question

Connect to GSuite without IMAP

We have a client with the need to access GSuite but has a policy to deny outgoing IMAP.Is there any plan to support HTTP API access?

2 months ago

viraj_korgaonkar

Ask a Question

Advance scenario pre-requisite

Its asking to install bash in pre-requisite on our system its already installed. Please let me know what further needs to be done

2 months ago

eric_olivares

Ask a Question

License

How can I see the cymulate version that I have

2 months ago

whisler_soineus

Ask a Question

How to set firewall rule for simulate

I want to use only 3 devices for the cymulate test. How can I configure firewall in my network for the post running cymulate agent?

2 months ago

jovana_gojkovic

Ask a Question

Is the overall score medium value of scores of single modules? If not, how is it calculated?

I would like to know exactly how is the overall score calculated. Does not seems to be the medium value of single scores of modules (email, gateway, endpoint ..).

2 months ago

Chris Yoo

Ask a Question

Question regarding integration

Why can't I click "EDIT" on an integration?

2 months ago

nithun_chand

Ask a Question

Recommended account to run Lateral Movement?

We would like to simulate Lateral Movement and what’s the recommended account type for the same? Simply run with the SYSTEM account/Create a local account/run using a domain account?

2 months ago

nithun_chand

Ask a Question

Cymulate Training?

Im new to this tool and doesn’t see any help files/trainings related to configurations, best practices etc. Is there a place where I can get a proper training before I mess up things doing alone?

2 months ago

Ask the Community

Not sure how to do something in Cymulate?

Ask here

Threat Alert

Type:

Tweets by CymulateLtd

Badges

Patriciahas earned the badge Conversation Starter
Steve_Eyrehas earned the badge Conversation Starter
hrseohas earned the badge Conversation Starter
nirshas earned the badge Rising star
Yahav Levinhas earned the badge Product expert
Emily Rosenfieldhas earned the badge Conversation Starter

Show all badges

Terms & Conditions Cookie settings

Sign up

Already have an account? Login

Login

CUSTOMER / CYMULATE EMPLOYEE LOGIN

Username *

E-mail address *

First Name *

Last Name *

Country *

Company Name

(Private)

Only you and moderators can see this information

State

Password *

I accept the terms & conditions

loginBox.register.email_repeat

Login to the community

No account yet? Create an account

Login

CUSTOMER / CYMULATE EMPLOYEE LOGIN

Username or Email

Password

Remember me

Forgot password?

Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.

Username or e-mail

Back to overview

Scanning file for viruses.

Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.

This file cannot be downloaded

Sorry, our virus scanner detected that this file isn't safe to download.