Dragos, Inc., provider of asset identification, threat detection and response platform and services, announced the acquisition of Atlanta-based NexDefense, a provider of industrial controls system (ICS) visibility technology. As part of this announcement, the company also introduced Dragos Community Tools, a set of free assessment tools to help organizations of all sizes around the globe forge the path forward towards comprehensive ICS security.
NexDefense developed and sold Integrity, a tool originally funded by the United States Department of Energy and developed as “Sophia” at Idaho National Laboratory (INL). NexDefense was one of the earliest and most well-known ICS security companies in the space. This acquisition further supports the company’s mission of safeguarding civilization by making ICS security tools and knowledge readily accessible to the ICS security community.
Dragos Community Tools provide organizations with free asset identification capabilities, an important first step to effective threat detection and response. This is especially important in ICS environments, as they can contain thousands of assets–many potentially unknown to industrial organizations–with interconnected communications. The tools include both the NexDefense product Integrity, as well as Cyberlens, an assessment tool developed by Dragos team members before founding Dragos Inc.
Dragos is providing free access to Dragos Community Tools, so that many in the community can take steps to effectively understand what assets they have and how their ICS assets function, communicate, and behave. This visibility is the prerequisite for development and deployment of cybersecurity architectures to detect and respond to threats.
Dragos Community Tools
Dragos’ CyberLens product is available free of charge for industrial organizations as an assessment tool to help the community quickly process packet captures and visualize ICS environments.
Dragos’ Integrity product is available free of charge for industrial organizations in need of continuous, passive ICS network monitoring with basic DPI and asset fingerprinting capabilities.