Guardicore Announces Guardicore Labs

Global Research Team Focused on Critical Cyber Security Analysis and Investigation to Benefit the Community through Publications and Timely Disclosure of New Advanced Threats Targeting Data Centers and Clouds

San Francisco, CA and Tel Aviv, Israel – Guardicore, a leader in internal data center and cloud security, today announced Guardicore Labs, a global cyber security research team that conducts in-depth research and analysis, providing the security industry with actionable insights into the latest and most advanced threats facing data centers and clouds. Guardicore Labs delivers cutting-edge breach detection and response methodologies to help Guardicore customers continually enhance their security posture to protect critical business applications and infrastructure.

Guardicore advanced security technologies play an integral role in Guardicore Labs’ research and analysis. One key resource is the Guardicore Global Sensor Network (GGSN), based on Guardicore deception technology that is installed in multiple data centers around the world.  The GGSN engages threat actors via Guardicore’s high interaction deception technology and streams early threat information to Guardicore Labs expert analysts for new attack identification and analysis. Guardicore Labs’ recent, high-profile threat discoveries include a variant of the MongoDB ransomware attack targeting MySQL databases and the Trojan.sysscan malware, with extensive capabilities to search and extract cookies and other credentials.

Guardicore has appointed Ofri Ziv, Vice President of Research, to head up Guardicore Labs. Ofri was previously the head of the Guardicore Detection Development Group. In his new role, Ofri will lead all research at Guardicore and will focus on enhancing Guardicore’s current and future product and service offerings as well as developing new tools for the broader security community.

One example of a new tool resulting from Guardicore research efforts is the Guardicore Infection Monkey, an open-source penetration testing tool available free to pen testers and other security assessment pros to test their data center and cloud systems for potential security risks. The Infection Monkey was unveiled at the Black Hat Conference in Las Vegas in 2016 and was named one of the “Eight Bad Ass Tools Coming out of Black Hat” by Dark Reading.

“As organizations more aggressively adopt virtualization and cloud-based infrastructures, they face new security challenges that demand sophisticated security solutions,” said Ofri Ziv, VP of Research at Guardicore. “Guardicore Labs focuses its research efforts on emerging threats targeting data centers and clouds, providing actionable intelligence, advanced technologies and tools designed specifically for these dynamic environments.”

About Guardicore

Guardicore is an innovator in data center and cloud security focused on delivering more accurate and effective ways to stop advanced threats through real-time breach detection and response. Developed by the top cyber security experts in their field, Guardicore is changing the way organizations are fighting cyber attacks in their data centers. For more information, visit

From Guardicore's
Resource Center


Subscribe To Our Newsletter

No spam, we promise. We’re only going to send you insights on how to reduce risk in your data center and clouds.

See Centra in Action

Reduce your attack surface and prevent lateral movement with fast and simple segmentation that works everywhere.

See Guardicore Centra in Action

Schedule a demo customized to your specific security needs