KoreLogic provides highly skilled cyber security services to Fortune 100 companies and the U.S. Government. KoreLogic provides public resources to help the information security community.

Security Advisories

The KoreLogic Team actively pursues the identification of vulnerabilities. Our Vulnerability Disclosure Program is designed to responsibly distribute vulnerability information to the public in a controlled manner, and follow common industry practices associated with disclosing newly identified vulnerabilities which are not protected by KoreLogic client confidentiality/non-disclosure agreements. View our advisories.

Disclosure Policy

Our disclosure policy is available in text and PDF.


Our Security Blog is written by and for security practitioners and executives. Our blog postings cover our security research, vulnerability research, security best practices, and enhancements to our password cracking grid

Go to Blog


We run the popular Crack Me If You Can contest. Check out each CMIYC iteration.



We publish a number of open-source tools.