PT Dephaze

Main article: Pentesting (pentesting)

2025

Commercial Release

Positive Technologies on February 27, 2025 announced the release of a commercial version of the PT Dephaze automatic internal penetration testing system. With the product, companies will be able to continuously and securely check their security and find weaknesses in the infrastructure before cybercriminals exploit them.

A study conducted by Positive Technologies showed that companies, regardless of their size, industry affiliation and the level of maturity of information security processes, are interested in regular penetration testing (penetration tests). This type of checks helps information security services monitor the current state of security and adjust protection strategies. The study found that not all organizations have the ability to order a pentest at the frequency that a company needs, as well as every time infrastructure changes occur. Thus, only 21% of the surveyed companies use the services of security analysis teams, while only half of them (64%) perform checks regularly. Among the main reasons for the refusal of periodic testing, respondents noted the lack of a budget (25%), fear of the threat of disruption of business continuity ( 21%), as well as a lack of resources for processing results (19%).

To meet the market's need, Positive Technologies has developed a PT Dephaze solution that allows companies to run controlled automatic penetration tests and check the vulnerability of different segments of the internal infrastructure to real threats in the context of all possible attack vectors.

PT Dephaze combines expertise in the field of both offensive and defensive security, the product has a special knowledge of what vulnerabilities, attack vectors, tactics and techniques attackers most often exploit to hack and capture critical systems.

To run testing, the user only needs to install the software on the server, specify the target and wait for the result. As goals, you can set both points of interest in the infrastructure - an information system, an application, a device (for example, a CEO's computer), or an entire segment, and unacceptable events unique to each company. If necessary, it is possible to exclude certain components and operating techniques. PT Dephaze uses ML to search for data in a large stream of information, improving the quality of automation and the effectiveness of penetration testing.

Upon completion of testing, the system provides visual reports with the results and recommendations for protection described in a short and understandable form. The product additionally prioritizes the detected weaknesses in terms of hazard level. Information security professionals have enough data in their reports to proactively address security flaws, configuration errors, and other potential attack vectors. To evaluate the effectiveness of patches, you can re-check.

Business is not protected from intruders even with low qualifications. This is confirmed by the results of pentests that we hold annually in companies from various industries. So, in 3 out of 5 companies, an unqualified cracker can penetrate the local network from outside. In the same share of organizations, a low-skilled internal violator can establish full control over the infrastructure, "said Yaroslav Babin, director of attack simulation products, Positive Technologies. - Attack approaches and methods are constantly improving, and it is important for companies to constantly assess the state of security and identify vulnerabilities. Some of these actions can be automated. PT Dephaze provides regular penetration testing so that both our customers and companies not yet familiar with Positive Technologies products can expand the testing area, test different attack vectors, and perform penetration tests as often as they need to.

The product will be available to users from March 2025.

Inclusion in the register of Russian software

The product for automatic internal penetration testing PT Dephaze is included in the unified register of Russian software. In accordance with the decision of the Russian Ministry of Digital Development of January 27, 2025, PT Dephaze is classified as a means of automating information security processes.

Controlled automatic pentest with PT Dephaze is now available to government organizations and companies with critical information infrastructure facilities that can purchase security only from the register of domestic programs.

PT Dephaze automatically conducts safe and controlled penetration into the IT infrastructure. Using ML technologies, the product forms attack chains to critical systems in order to confirm or deny the possibility of achieving them. The number of checks is not limited, due to which companies can constantly monitor the state of their cyber resistance at an arbitrary moment in time. According to the results of pentests, information security specialists can assess the real security of different segments of the infrastructure and eliminate possible vulnerabilities and shortcomings in configurations in order to prevent their exploitation by attackers.

New vulnerabilities and ways to attack companies appear daily. However, it is difficult for information security services to determine whether the measures they have taken are sufficient to ensure security. In this regard, the demand for the services of pentest specialists does not subside, - said Maxim Dolginin, head of business development at PT Dephaze, Positive Technologies. - PT Dephaze opens up opportunities to assess the real security of the infrastructure. The product allows you to optimize and scale the pentest: conduct it more often and cover the entire infrastructure at once. This does not cancel pentests, but allows you to prioritize actually possible attacks, and not "theoretical." The data obtained as a result of automatic checks will help companies assess how rational their investments in protective equipment are and whether security measures are correctly implemented.

Controlled automatic penetration checks are useful for both large companies with a mature information security system and organizations that are only implementing cybersecurity processes. The tool is also suitable for teams that perform manual penetration testing to speed up routine processes in work and scale penetration tests. With PT Dephaze, information security specialists will be able to quickly detect and prioritize infrastructure vulnerabilities and flaws, as well as choose security tools that will be truly effective.

2024: PT Dephaze launch

On October 11, 2024, Positive Technologies announced a product for automatic internal penetration testing - PT Dephaze. PT Dephaze opens up a segment of the cybersecurity market for Positive Technologies - breach and attack simulation (BAS) and automatic pentest systems. According to expert estimates of the vendor, its volume, along with the classic pentest, reaches 5 billion rubles.

𝓲

Фото: Freepik

According to the company, the product conducts safe and managed penetration into the infrastructure in order to get maximum access. At the same time, chains of attacks to critical systems are formed in order to confirm or deny the possibility of their achievement.

According to Positive Technologies, companies even with a high level of maturity INFORMATION SECURITY implement security analysis projects at most once a year or only on request. This is extremely small, as the level of security of the infrastructure is constantly changing. In addition, in 100% of organizations in which PT SWARM researchers conducted internal penetration tests, an internal attacker could establish full control over the infrastructure. Moreover, in 63% of cases, he did not have to have a high level of training, which means that such attacks can be automated.

According to surveys conducted by Positive Technologies, companies, regardless of the level of maturity of information security, would like to track the state of their cyber resistance at an arbitrary moment in time. In addition, organizations need to regularly evaluate the configuration of installed protection tools in order to then improve their configuration to repel cyber attacks. According to the Center for Strategic Research, the needs of companies in assessing security are growing from year to year, in 2023 this market was estimated at 8 billion rubles.

We see the desire and demand of companies to conduct a security audit. On average, more than 500 organizations turn to us with such requests per year. To provide more security verification opportunities, we are strengthening the direction of the pentest with the product - PT Dephaze. The continuous internal penetration testing tool complements the classic manual penetration test, allowing companies to know the level of their security and further build effective security. We estimate the market for classic and automatic pentests in Russia at a total of more than 5 billion rubles. told Egor Nazarov, Head of the Positive Technologies Infrastructure Security Business Development Group

PT Dephaze allows you to safely for infrastructure in automatic mode using machine learning technologies to conduct internal penetration testing - without limiting the number of checks. To run the simulation, the user only needs to install the software on the server, specify the target and wait for the result. Among the goals, you can set both points of interest in the infrastructure - an information system, an application, a device, for example, a general director's computer, an entire segment, for example, with the 1C platform), and unacceptable events, which each company defines for itself. If necessary, it is possible to exclude certain components and operating techniques.

The product understands how the shortest way to reach a given target, visualizes the route on simulation map and tells you how to attack this or that system. This data will help information security specialists prioritize vulnerabilities and develop an effective strategy for investing in information security. Based on the results of the inspections, the company will gain knowledge of how to cut off the path of a potential attacker, eliminating the shortcomings.

PT Dephaze is launched with a single button and does not require special knowledge from the operator in the field of pentesting. The product will allow you to assess the real security of different segments of the infrastructure, for example, to understand whether a real hacker from an employee's computer from the sales department can get to the device of an accountant or IT infrastructure administrator. commented Yaroslav Babin, Director of Attack Simulation Products at Positive Technologies

PT Dephaze is suitable for large companies with a mature information security system, as well as organizations that only implement cybersecurity processes or establish them. The product will allow them to run as many automatic penetration tests as they like for any purpose. End users are specialists of the internal division of the red team or the information security monitoring and incident response center (SOC).