Tripwire is a leading provider of integrity assurance solutions that drive security, compliance and operational excellence. As the inventor of file integrity monitoring (FIM), Tripwire has a 20-year history of innovation. Today, Tripwire helps organizations, including half of the Fortune 500, achieve visibility across their networks, reduce their attack surfaces, and stay on top of suspicious changes – steps considered foundational to system and data integrity. Tripwire’s award-winning portfolio includes configuration management, file integrity management, asset discovery, vulnerability management and log collection.
Our story starts with Tripwire’s founder, Gene Kim
While an undergraduate student at Purdue University, Gene developed a piece of software inspired by his interest around the Morris Worm. On November 2, 1992, the four year anniversary of the Morris Worm, Gene published “Tripwire” software as an academic source release designed to detect when changes occur to files, whether malicious or accidental, and help with recovery. To his surprise, Tripwire rapidly became one of the most widely used intrusion detection tools for UNIX, with millions of downloads over the following years.
This innovation would become widely known as File Integrity Monitoring (FIM)
With support from corporate, education, and government security professionals, Gene founded Tripwire, Inc. in 1997 to bring FIM, in the form of Tripwire® for Servers, to the commercial market. The company went on to develop more advanced FIM capabilities during an opportune time as e-commerce boomed, requiring security controls that would become the basis of Payment Card Industry Data Security Standard (PCI DSS). During this time Tripwire also released Open Source Tripwire, which remains available today.
Tripwire then rounded out its portfolio to provide a comprehensive foundation of security, compliance and operational excellence
In 2005, Tripwire released the first version of Tripwire Enterprise, the company’s flagship product. Tripwire Enterprise is a security configuration management suite, which combines hardening processes that ensure systems are configured securely and compliantly with FIM capabilities to ensure they stay that way. Then as now, misconfigured systems continue to be the main source of many major breaches.
In 2010, Tripwire announced the release of Tripwire Log Center®, an advanced log intelligence solution, after acquiring ActiveWorx technologies. Designed to enable faster data breach detection, Tripwire Log Center sorts through the sea of data to indicate the most important events to look into. It also satisfies regulatory requirements for recording log data.
With the acquisition of nCircle in 2013, Tripwire rounded out its portfolio with the addition of asset discovery and vulnerability management. With unpatched vulnerabilities being another significant cause of many major breaches, Tripwire IP360™ enables organizations to identify system vulnerabilities through advanced intelligence that prioritizes the most critical issues and how to fix them.
With a broad set of capabilities, Tripwire helps its customers keep their names out of data breach headlines, avoid regulatory fines, and focus on running their business.
Tripwire continues to invest heavily in innovation, with more than 40 patents and counting
Tripwire is always working to increase the value that its award-winning portfolio delivers. For example, in 2016 Tripwire announced a “no-touch” security configuration management solution for industrial environments. In 2017, the company announced Tripwire Cloud Management Assessor for managing configurations in the cloud, and new Tripwire IP360 capabilities for scanning Docker containers for vulnerabilities. Additionally, Tripwire continues to grow its library of policy and platform combinations – the most comprehensive in the industry – and its intelligence on new vulnerabilities and patches as they arise.
As customer needs change, cyber threats increase, technology landscapes evolve, and new regulations surface, Tripwire is here to help organizations build strong foundations for security, compliance and operational excellence.