Cyble
cyble.ai
Cyble is one of the fastest-growing threat intelligence provider. Cyble provides the fastest and most comprehensive coverage across adversaries, infrastructure, exposure, weaknesses, and targets. Cyble empowers governments and enterprises to safeguard their citizens and infrastructure by providing critical intelligence in a timely manner and enabling rapid detection, prioritization, and remediation of security threats through its advanced capabilities for data analysis, expert insights, and automated processes.
Detectify
detectify.com
Complete External Attack Surface Management for AppSec & ProdSec teams, Start covering your external attack surface with rigorous discovery, 99.7% accurate vulnerability assessments, and accelerated remediation through actionable guidance, all from one complete standalone EASM platform.
Escape
escape.tech
Find and fix GraphQL security flaws at scale within your DevSecOps process. Leverage the new generation DAST & ASM for early, real-time Business Logic vulnerability detection and remediation in GraphQL, enhancing security from development to deployment.
Tenacy
tenacy.io
Tenacy is the SaaS platform that simplifies cybersecurity management for all IT security teams. Thanks to intelligent modeling of frameworks and risks, Tenacy interconnects all your cyber processes. As a result, you can continuously measure your level of security, effectively monitor your operations, and unite all stakeholders around your cyber vision.
Shield
shieldcyber.io
Shield is a continuous exposure management platform built by penetration testers and developed for security service providers. In a simple, 3-step deployment, Shield instantly shows you how an attacker could breach and take over your specific network. And tells you exactly what you need to do to remove those exposures. Shield is different from existing vulnerability management solutions in that it correlates your external attack surface, internal networks, and identity services to deliver hyper-efficient remediation guidance based on the severity and impact to a specific network. This enables security service providers to stop wasting time on fixes that don't matter, and remove the highest impact risks first. In other words, Shield distinguishes the critical few risks from the trivial many. What more could you accomplish if you could direct 2% of your efforts to reduce 98% of risk?
Derive
deriverisk.com
For Cybersecurity Managers (e.g., CISOs, IT Directors, and Risk Managers) who are tasked with assessing a company’s cyber risk exposure and required to allocate limited resources to adequately mitigate risk, Derive is a a SaaS subscription-based platform that quantifies the potential financial impact of cyber threats using proprietary data on cyber loss magnitudes, frequencies, control costs, and control effectiveness delivering a high resolution characterization of what risks they face and how they could address them. Unlike competitors Derive translates abstract cybersecurity concerns into concrete, actionable insights with financial clarity.
Bitahoy
bitahoy.com
Augment your daily IT risk management processes with an AI-powered IT risk analyst that helps you prioritize, investigate and report risk-scenarios.
PlexTrac
plextrac.com
We designed the PlexTrac solution to address the workflow pain points security practitioners face. PlexTrac helps them track signal through the noise and break down communication silos. Combining “plexus” and “track,” our name really says it all. PlexTrac exists to network and coordinate all people and parts of a security program and to better track progress toward maturity.
Hackuity
hackuity.io
Hackuity is the comprehensive security solution that orchestrates and automates the vulnerability management process. Hackuity’s platform aggregates and normalizes all your security assessment practices, whether automated or handmade, and enriches them so security practitioners can, at last, create risk-driven remediation plans and align their priorities with their current and future exposure to threats. Fully customizable, the platform fits the client technical context and security requirements either in a full-Saas mode, On-premise or Hybrid installation mode. Hackuity proposes the right offer regarding the company's experience in vulnerability management and field of activity : - Risk-based vulnerability management - Continuous Monitoring - Augmented pentest - Hackuity for MSSP The company was founded in 2018 and is based in Lyon, France.
Hadrian
hadrian.io
Hadrian is an agentless SaaS product that continuously maps exposed assets, discovers risks, and prioritizes remediation so that security teams can harden their external attack surfaces. Using passive data sources, active scanning techniques, and machine learning models, Hadrian identifies digital assets and complex attack paths that security teams are unaware of. It incorporates how misconfigurations, exposed secrets, permissions, and vulnerabilities impact an organization’s security posture. Context-aware testing uses only relevant modules and secrets in attack paths. This combination of context and risk discovery allows Hadrian to prioritize the same targets attackers will exploit. All of this is presented in an online dashboard to help security teams focus on what matters and make their attack surface more secure.
SwordEye
swordeye.io
In late 2018, it developed the first product that provides one-time digital asset issuance, called SwordEye Recon. In this process, it served dozens of customers until 2020. Thanks to the feedback received from customers, it started to develop a new product that constantly monitors digital assets, gives alarms when necessary, and automatically discovers all sub-products and services connected to the domain. With the investment it received in the first quarter of 2020, it developed the SwordEye Attack Surface Monitoring product and started to offer a product that gives a risk letter grade with a unique risk score algorithm that explains the importance of the attack surface and offers solutions.
Deepinfo
deepinfo.com
Deepinfo has the most comprehensive Internet-wide data and has been using this data for years to empower cybersecurity of all sizes of organizations worldwide. Deepinfo also provides comprehensive threat intelligence solutions, data, and APIs to top-notch cybersecurity companies. Deepinfo Attack Surface Platform discovers all your digital assets, monitors them 24/7, detects any issues, and notifies you quickly so you can take immediate action. An all-in-one web security monitoring solution to empower your organization's cyber security.
Cybersixgill
cybersixgill.com
Cybersixgill was founded in 2014 with a single mission: To disrupt the threat intelligence sector by improving the availability of threat intelligence from the clear, deep and dark web. Fast forward a few years and our agile, automated threat intelligence solutions are helping security teams fight cyber crime and minimize their risk exposure by detecting phishing, data leaks, fraud and vulnerabilities, while amplifying incident response – all in real-time. Our rapidly growing customer community includes enterprises, financial services organizations, government and law enforcement entities around the globe. We have also secured a number of technology alliances and partnerships with leading organizations. Today, Cybersixgill has over 100 employees in Israel, North America, EMEA and APAC.
Ceeyu
ceeyu.io
The Ceeyu SaaS platform periodically performs automated scans and risk analysis of the digital footprint of companies (aka Attack Surface Management or ASM) and their suppliers or partners (aka Third Party Risk Management). Because not all security risks can be identified in an automated manner, Ceeyu also offers the possibility to carry out questionnaire-based audits. This can be done by creating questionnaires tailored to the supplier, from a white sheet or starting from templates that Ceeyu makes available. The completion of the questionnaire by the supplier and the follow-up of the process by the customer is done in a secure environment on the same SaaS platform. This enables a simple, central follow-up, entirely online and without the intervention of third parties. The closed platform guarantees the confidentiality of the survey, since only authorized persons have access to the application.
Red Sift
redsift.com
Red Sift enables organizations to anticipate, respond to, and recover from cyber attacks while continuing to operate effectively. The award-winning Red Sift application suite is the only integrated solution that combines four interoperable applications, internet-scale cybersecurity intelligence, and innovative generative AI that puts organizations on a robust path to cyber resilience. Red Sift is a global organization with offices in North America, Australia, Spain, and the UK. It boasts a global client base across all industries, including Domino’s, ZoomInfo, Athletic Greens, Pipedrive, and top global law firms. Red Sift is also a trusted partner of Entrust, Microsoft, Cisco and Validity, among others. Learn more at redsift.com.
Informer
informer.io
Informer's External Attack Surface Management (EASM) and Pen Testing platform help CISOs, CTOs and IT teams map external assets and identify vulnerabilities in real time so they can be remediated before attackers can exploit them. The Informer.io platform provides 24/7, 365 automated security monitoring that helps you assess the risks relating to known and unknown assets, so you can take immediate action to protect and secure your valuable data. Integrated pentesting enables our team of ethical hackers to enhance automated security testing using manual pentesting for a more in-depth and detailed vulnerability assessment. Combining the power of automation and manual security testing we help our clients continuously map their attack surface, manage vulnerabilities, and remediate faster. Informer is a CREST accredited company operating at the highest security testing standards with a constant push to keep innovating.
Halo Security
halosecurity.com
Security testing for the modern attack surface. Our agentless vulnerability scanning and discovery solutions, combined with manual penetration testing services, help thousands of organizations gain full visibility into the risk posture of their websites and applications.
Maltego
maltego.com
Maltego is the world’s most used all-in-one intelligence platform for complex cyber investigations. It has empowered over one million investigations worldwide since 2008. Maltego empowers investigators worldwide to accelerate and simplify their investigations through link analysis. It is the all-in-one tool with easy data integration in a single interface, powerful visualization and collaborative capabilities to quickly zero in on relevant information. Maltego is used by a broad audience, from security professionals and pen testers to forensic investigators, investigative journalists, and market researchers. Headquartered in Munich, Maltego has grown to over 100 employees in Germany and works with customers including the Federal Bureau of Investigations, INTERPOL, and major tech and service companies including half of the DOW 30.
RiskProfiler
riskprofiler.io
RiskProfiler offers a comprehensive suite of products for Continuous Threat Exposure Management, addressing an organization's external attack surface. These include the Cyber RiskProfiler for cyber risk ratings, Recon RiskProfiler for External Attack Surface Management (EASM) capabilities, Cloud RiskProfiler for Cloud Attack Surface Management (CASM) that identifies actually exposed cloud resources and prioritizes risks, and Brand RiskProfiler for brand protection. Recon RiskProfiler is an advanced EASM and CASM solution with robust integrations across major cloud providers like AWS, Azure, and Google Cloud. It delivers comprehensive visibility into external cloud resources, enabling efficient identification, assessment, and management of vulnerabilities and risks. Vendor RiskProfiler is a comprehensive Cyber Risk and Vendor Risk Management solution that delivers company cyber risk ratings while enabling efficient sending, receiving, and validation of third-party vendor security questionnaires in near real-time, facilitating seamless risk assessment and communication. Brand RiskProfiler is a comprehensive brand protection solution that detects logo abuse, monitors passive phishing, identifies typosquats, enables domain takedowns, and uncovers fake apps, safeguarding organizations' digital reputation and customer trust. Cloud RiskProfiler employs advanced based on context based enriched graph data models to pinpoint and rank actually exposed external-facing assets in the cloud. Evaluating risks through a hacker's lens, it alerts on high-risk assets, fortifying the external cloud attack surface.
Glasstrail
glasstrail.com
Glasstrail does all the hard work of identifying weaknesses in your external attack surface before bad actors do. Weekly scans prioritise issues as digestible actions. Track progress via the dashboard and get alerts sent to your tool of choice - so you can focus on remediation. “Previously, we didn’t have the whole picture of our information security risks. With Glasstrail, we have a tool that locates vulnerabilities, tells us whether it’s a high-priority risk, and allows us to protect our data and systems. It’s a very efficient way to find risks as the intelligence built into Glasstrail does all the work.” Chief Security Officer, Teaching Council.
Cavelo
cavelo.com
Cavelo is an Attack Surface Management (ASM) platform, with a proactive focus on minimizing and mitigating risk before a breach occurs. Cavelo empowers MSPs to proactively reduce their customers' cyber risk and liability. Its consolidated attack surface management platform combines sensitive data and asset discovery, access management, and risk-based vulnerability management to simplify governance and compliance initiatives and risk remediation. Cavelo helps businesses proactively reduce cybersecurity risk and achieve compliance with automated data discovery, classification and reporting. Its cloud compatible data protection platform continuously scans, identifies, classifies and reports on sensitive data across the organization, simplifying compliance reporting and risk remediation.
CYRISMA
cyrisma.com
CYRISMA is a revolutionary cybersecurity platform that helps organizations manage risk without the usual headaches associated with enterprise cybersecurity tools. Designed for organizations that demand a clear and immediate return on investment, CYRISMA simplifies the process of identifying, assessing, and mitigating technical risks, all while eliminating high licensing costs, long deployment times, and burdensome technologies. Its data-centric approach to cybersecurity streamlines your cybersecurity efforts by focusing on what’s important while providing a simple, easy-to-use platform for identifying risks, strengthening weak configurations, and neutralizing risks through accountability. It is the simple choice for effective cybersecurity. All of the following capabilities are combined in a single SaaS platform: - Vulnerability Management - Sensitive Data Discovery - Secure Configuration Scanning - Compliance Tracking - Microsoft Copilot Readiness Assessment - Dark Web Monitoring - Risk Monetization - Risk Mitigation - Cyber Risk Assessment Reporting - Risk Scorecards
Trickest
trickest.com
Trickest provides an innovative approach to offensive cybersecurity automation and asset and vulnerability discovery. Its platform combines extensive adversary tactics and techniques with full transparency, hyper customization, and hyper scalability, making it the go-to platform for offensive security operations.
CyCognito
cycognito.com
CyCognito is a cybersecurity solution designed to help organizations discover, test, and prioritize security issues across their digital landscape. By leveraging advanced artificial intelligence, CyCognito scans billions of websites, cloud applications, and APIs to identify potential vulnerabilities and critical risks. This proactive approach enables organizations to address security concerns before they can be exploited by malicious actors, thereby enhancing their overall security posture. The target audience for CyCognito includes emerging companies, government agencies, and Fortune 500 organizations, all of which face increasing threats in today's digital environment. These entities require robust security measures to protect sensitive data and maintain compliance with various regulations. CyCognito serves as an essential tool for security teams, providing them with the insights needed to understand their risk exposure and prioritize remediation efforts effectively. One of the key features of the CyCognito platform is its comprehensive scanning capability, which covers a vast range of digital assets. This extensive reach ensures that organizations can identify vulnerabilities across all their online presence, including third-party services and shadow IT. The platform's AI-driven analysis further enhances its effectiveness by automatically assessing the severity of identified risks, allowing security teams to focus on the most critical issues that could lead to significant breaches. In addition to risk discovery, CyCognito offers actionable guidance for remediation, helping organizations to implement effective security measures. The platform provides detailed insights into the nature of the vulnerabilities and suggests specific steps to mitigate them. This feature not only streamlines the remediation process but also empowers organizations to build a more resilient security framework over time. By integrating CyCognito into their cybersecurity strategy, organizations can significantly reduce their risk exposure and enhance their ability to respond to emerging threats. The platform's unique combination of extensive scanning, AI-driven risk assessment, and actionable remediation guidance positions it as a valuable asset for any organization looking to strengthen its security posture in an increasingly complex threat landscape.
ResilientX
resilientx.com
ResilientX Security is a fast-growing Cyber Security company that helps organizations of all sizes identify, quantify and manage their cyber risks and cyber exposure. At ResilientX, we are committed to delivering state-of-the-art security solutions to help organizations safeguard their digital assets and maintain compliance. Our First-Party and Third-Party Risk and Exposure Management platform is designed for those who take security and compliance seriously.
runZero
runzero.com
runZero delivers the most complete security visibility possible, providing organizations the ultimate foundation for successfully managing risk and exposure. Rated number one on Gartner Peer Insights, their leading cyber asset attack surface management (CAASM) platform starts delivering insights in literally minutes, with coverage for both managed and unmanaged devices across the full spectrum of IT, OT, IoT, cloud, mobile, and remote assets. With a world-class NPS score of 82, runZero has been trusted by more than 30,000 users to improve security visibility since the company was founded by industry veterans HD Moore and Chris Kirsch. To discover the runZero Platform for yourself, start a free trial today or visit the website.
Auditive
auditive.io
Auditive is a continuously monitored risk network that connects businesses and their customers on one single platform. Vendors can showcase their risk posture on the network and win deals 4x faster. Buyers can get 80% of their vendor reviews done in minutes and monitor continuously throughout the lifecycle of the relationship.
GlitchSecure
glitchsecure.com
GlitchSecure helps companies secure their products and infrastructure through real-time continuous security testing.
Trava Security
travasecurity.com
More than a GRC tool, we're your compliance experts. Simplifying processes, freeing your time and resources, fueling your business growth. Unlock the power of Vulnerability Management Software and vCISO Services to fortify your organization against cyber threats while safeguarding your digital assets. Our integrated solutions offer comprehensive support for compliance frameworks including SOC2, ISO 27001, GDPR, CCPA, FedRAMP, CMMC, and more, along with expert security program management. Achieve compliance effortlessly and bolster your security posture with our trusted services.
Breachlock
breachlock.com
BreachLock is a global leader in Continuous Attack Surface Discovery and Penetration Testing. Continuously discover, prioritize, and mitigate exposures with evidence-backed Attack Surface Management, Penetration Testing and Red Teaming. Elevate your defense strategy with an attacker’s view that goes beyond common vulnerabilities and exposures. Each risk we uncover is backed by validated evidence. We test your entire attack surface and help you mitigate your next cyber breach before it occurs. Know your risk. Contact BreachLock today!
© 2025 WebCatalog, Inc.