Sprinto
sprinto.com
#1 Rated security compliance automation platform Move fast without breaking things Ambitious cloud companies all over the world trust Sprinto to power their security compliance programs and sprint through security audits without breaking their stride. Integration-first Automation-enabled Audit-aligned Over 1 Million compliance checks evaluated every month Security compliances don’t have to be hard The broad nature...
Cisco
cisco.com
Cisco Spaces is a cloud platform that connects people & things with spaces to transform buildings into smart spaces. Using the power of Cisco devices as sensors (Catalyst, Meraki, Webex) and the Spaces ecosystem, the platform aims to make buildings safe, smart, sustainable, and seamless. Cisco Spaces harnesses the power of Cisco hardware and sensors (Catalyst, Meraki, Webex) making buildings safe, smart and sustainable with seamless people experiences.
Diligent Director
diligent.com
Diligent, the leading governance, risk and compliance (GRC) SaaS provider, accelerates success for organizations and leaders.
Qualys
qualys.com
Qualys VMDR is an all-in-one risk-based vulnerability management solution that quantifies cyber risk. It gives organizations unprecedented insights into their risk posture and provides actionable steps to reduce risk. It also gives cybersecurity and IT teams a shared platform to collaborate, and the power to quickly align and automate no-code workflows to respond to threats with automated remediation and integrations with ITSM solutions such as ServiceNow.
Very Good Security
verygoodsecurity.com
Very Good Security (VGS) lets it operate on sensitive data without the cost or liability of securing the data. VGS also helps it achieve PCI, SOC2, and other compliance certifications. VGS is a sensitive data custodian that provides turnkey security with no changes to existing products or systems. It accelerates time to market and simplifies the use of sensitive data while eliminating the risk of breaches. After all, hackers cannot steal what isn't there. VGS is the world's leader in payment tokenization. It is trusted by Fortune 500 organizations, including merchants, fintechs, and banks, to store and enrich sensitive payment data across cards, bank accounts, and digital wallets. With over 4 billion tokens managed globally, VGS offers a solutions suite with a composable card management platform, PCI-compliant vault, and network value-added services like network tokens, account updater, and card attributes. Its solutions boost revenue with higher authorization rates, fraud reduction, and operational efficiencies while seamlessly integrating with existing tech stacks. It stores 70% of all US cards and solves critical payment acceptance challenges, including multi-PSP management, orchestration enablement, PCI compliance, and PII protection. VGS empowers clients with ownership, control, and insights into payment data, elevating growth and user experiences across industries.
Bugcrowd
bugcrowd.com
Bugcrowd is more than just a crowdsourced security company; we are a community of cybersecurity enthusiasts, united by a common purpose: to safeguard organizations from attackers. By connecting our customers with the right trusted hackers for their needs through our AI-powered platform, we empower them to take back control and stay ahead of even the most sophisticated threats. The Bugcrowd Security Knowledge Platform replaces the cost/complexity of multiple tools with a unified solution for crowdsourced pen testing as a service, managed bug bounty, managed vulnerability intake/disclosure, and attack surface management (a la carte pricing available) - with everything sharing the same infrastructure for scale, consistency, and efficiency. Bugcrowd has 10+ years of experience and 100s of customers in every industry, including OpenAI, National Australia Bank, Indeed, USAA, Twilio, and the US Department of Homeland Security.
Ethiack
ethiack.com
ETHIACK is an autonomous ethical hacking tool that helps organizations identify vulnerabilities in their digital infrastructure before they can be exploited. This tool combines Machine and Human Ethical Hacking techniques to provide both in-depth and broad security testing. One of the key features of ETHIACK is its External Attack Surface Management, which helps organizations gain a complete view of their entire digital exposure, including third-party services, APIs, and external tools. This allows them to identify weak points and manage their external attack surface effectively. The tool also offers Machine Ethical Hacking, which runs continuously with high accuracy in identifying vulnerabilities. Unlike traditional scanners that often produce false positives, ETHIACK's AI-powered hackers provide real-time reports with 99% accuracy. ETHIACK boasts an impressive track record, having identified over 20,000 vulnerabilities. Its team of world-class ethical hackers undergoes rigorous vetting and background checks to ensure the highest level of expertise and trustworthiness when testing critical systems. Organizations that use ETHIACK receive continuous evaluation and reports on vulnerabilities, along with detailed guides on exploitation and mitigation. This knowledge transfer helps them develop products with greater security and stay ahead of potential attacks. Overall, ETHIACK offers a comprehensive and proactive approach to ethical hacking, allowing businesses to better protect their digital assets and maintain a secure infrastructure.
Aqua Security
aquasec.com
Aqua Security stops cloud native attacks across the application lifecycle and is the only company with a $1M Cloud Native Protection Warranty to guarantee it. As the pioneer in cloud native security, Aqua helps customers reduce risk while building the future of their businesses. The Aqua Platform is the industry's most integrated Cloud Native Application Protection Platform (CNAPP), protecting the application lifecycle from code to cloud and back. Founded in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL with Fortune 1000 customers in over 40 countries.
HostedScan
hostedscan.com
HostedScan provides 24x7 alerts and detection for security vulnerabilities. Industry-standard, open-source, vulnerability scans. Automated alerts when something changes. Manage target list manually or import automatically from providers, such as AWS, DigitalOcean, and Linode, with read-only access. Manage and audit risks with dashboarding and reporting.
BugBase
bugbase.ai
BugBase is a Continuous Vulnerability Assessment Platform that conducts comprehensive security operations such as bug bounty programs and next-gen pentesting (VAPT) to assist startups and enterprises in effectively identifying, managing and mitigating vulnerabilities.
Hyperproof
hyperproof.app
Compliance Operations Platform. Built to Scale. Gain the visibility, efficiency, and consistency you and your team need to stay on top of all your security assurance and compliance work. Automated compliance management software to help you efficiently grow from one security framework to many, including SOC 2, ISO 27001, NIST, and PCI.
YesWeHack
yeswehack.com
Founded in 2015, YesWeHack is a global Bug Bounty and VDP Platform. YesWeHack offers companies an innovative approach to cybersecurity with Bug Bounty (pay-per-vulnerability discovered), connecting more than 45,000 cybersecurity experts (ethical hackers) across 170 countries with organisations to secure their exposed scopes and reporting vulnerabilities in their websites, mobile apps, infrastructure and connected devices. YesWeHack runs private (invitation based only) programs and public programs for hundreds of organisations worldwide in compliance with the strictest European regulations. In addition to the Bug Bounty platform, YesWeHack also offers: a creation and management solution for Vulnerability Disclosure Policy (VDP), a Pentest Management Platform, a learning platform for ethical hackers called Dojo and a training platform for educational institutions, YesWeHackEDU.
Hadrian
hadrian.io
Hadrian is an agentless SaaS product that continuously maps exposed assets, discovers risks, and prioritizes remediation so that security teams can harden their external attack surfaces. Using passive data sources, active scanning techniques, and machine learning models, Hadrian identifies digital assets and complex attack paths that security teams are unaware of. It incorporates how misconfigurations, exposed secrets, permissions, and vulnerabilities impact an organization’s security posture. Context-aware testing uses only relevant modules and secrets in attack paths. This combination of context and risk discovery allows Hadrian to prioritize the same targets attackers will exploit. All of this is presented in an online dashboard to help security teams focus on what matters and make their attack surface more secure.
Resolver
resolver.com
See risk. Build resilience. Resolver gathers all risk data and analyzes it in context—revealing the true business impact within every risk. Resolver’s Risk Intelligence Platform traces the extended impact of all types of risk—whether compliance or audit, incidents, or threats—and translates those effects into quantifiable business metrics. So, customers can communicate risk persuasively, framing it in terms of the business. And with this changed perspective, comes an entirely new role for risk to play. Finally, risk goes from being seen as a barrier, to becoming a strategic partner driving the business. Welcome to the new world of Risk Intelligence. Resolver's mission is to transform Risk management to Risk Intelligence. Its intuitive and integrated risk software for enterprise organizations offers solutions for corporate security, risk & compliance, and information security teams. Resolver empowers businesses to respond effectively to regulatory and market shifts, to discover insights from security and risk incidents, and to streamline risk operations throughout the organization. Resolver is a Kroll operated business. Kroll provides proprietary data, technology and insights to help customers stay ahead of complex demands related to risk, governance and growth. Kroll solutions deliver a powerful competitive advantage, enabling faster, smarter and more sustainable decisions. With 5,000 experts around the world, Kroll creates value and impact for both customers and communities.
Forescout
forescout.com
Forescout is a leading cybersecurity platform focused on managing cyber risk and mitigating threats across various environments. Key Features: * Risk and Exposure Management: Identify and prioritize cybersecurity risks, ensuring organizations can effectively mitigate potential threats. * Network Security: Implement proactive and reactive controls to assess and segment networks, enhancing overall security posture. * Threat Detection and Response: Detect, investigate, and respond to genuine threats and incidents in real-time. * Operational Technology Security: Reduce risks in operational technology (OT) and industrial control systems (ICS), ensuring safety and security in critical infrastructures.
Pentera
pentera.io
Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. Its customers include Casey's General Stores, Emeria, LuLu International Exchange, IP Telecom PT, BrewDog, City National Bank, Schmitz Cargobull, and MBC Group. Pentera is backed by leading investors such as K1 Investment Management, Insight Partners, Blackstone, Evolution Equity Partners, and AWZ. Visit https://pentera.io/ for more information.
Recorded Future
recordedfuture.com
Recorded Future is the world’s largest threat intelligence company. Recorded Future’s Intelligence Cloud provides end-to-end intelligence across adversaries, infrastructure, and targets. Indexing the internet across the open web, dark web, and technical sources, Recorded Future provides real-time visibility into an expanding attack surface and threat landscape, empowering clients to act with speed and confidence to reduce risk and securely drive business forward. Headquartered in Boston with offices and employees around the world, Recorded Future works with over 1,800 businesses and government organizations across more than 75 countries to provide real-time, unbiased and actionable intelligence. Learn more at recordedfuture.com.
Bleach Cyber
bleachcyber.com
Bleach Cyber, an advanced cybersecurity platform tailored for SMBs and Startups and their service providers , that not only enhances operational cybersecurity but also fosters trust with customers and helps CISOs fortify their enterprise supply chains. Specifically designed to secure a business without buying expensive enterprise grade tools, Bleach ensures a swift, user-friendly, and cost-effective approach to bolstering security and compliance for SMBs. The platform integrates with their existing tech stack, offering proactive recommendations or "security opportunities" to mitigate risks and align with compliance standards. With a comprehensive array of security applications, Bleach empowers businesses to address and rectify identified opportunities, then makes it easy for them to establish a foundation of trust with their customers by sharing this with CISOs, Procurement and Compliance departments. No more need for expensive, drawn out and inaccurate SOC2 audits. Allowing faster deal closures for innovative small businesses and enabling CISOs and enterprise organisations to work securely with the latest in cutting edge software and technology.
Inspectiv
inspectiv.com
Inspectiv's Pentesting and fully-managed Bug Bounty as a Service helps security teams discover impactful vulnerabilities before they're exploited without the complexity, cost, and hassle of traditional bug bounty and manual testing. The Inspectiv platform allows you to review prioritized vulnerability findings, filter out the noise, get the signal that matters to you, and seamlessly orchestrate your actions. Learn more at inspectiv.com.
Workscope
workscope.com
Workscope believe that knowledge encoded on the desktop carries value and risk which organisations must understand the significance of. Workscope provides an automated platform that enables organisations to map, monitor and improve the spreadsheet and end-user computing environment. Powered by edge-computing, Workscope provides a real-time contextual view of the entire spreadsheet environment, which enables you to understand how these assets are supporting critical business processes and key decision making. Whether you need to demonstrate operational resilience to the regulators, or you need to understand the time, cost & materiality associated with manual spreadsheet processes - Workscope can answer these questions without any manual intervention or change to existing business processes.
Riskify
riskify.net
Access detailed non-financial risk reports to identify, monitor, and understand capital markets, operational, reputational, cybersecurity, employees, compliance, and ESG risks. in any company. Empower your decision-making with Riskify reliable data.
Panorays
panorays.com
Panorays is a leading provider of third-party cyber risk management solutions, helping businesses optimize their defenses for each unique third-party relationship. Trusted by the most complex supply chains in the world, Panorays provides businesses the tools to stay ahead of any emerging third-party threats and provides actionable remediations.
Tenacy
tenacy.io
Tenacy is the SaaS platform that simplifies cybersecurity management for all IT security teams. Thanks to intelligent modeling of frameworks and risks, Tenacy interconnects all your cyber processes. As a result, you can continuously measure your level of security, effectively monitor your operations, and unite all stakeholders around your cyber vision.
Shield
shieldcyber.io
Shield is a continuous exposure management platform built by penetration testers and developed for security service providers. In a simple, 3-step deployment, Shield instantly shows you how an attacker could breach and take over your specific network. And tells you exactly what you need to do to remove those exposures. Shield is different from existing vulnerability management solutions in that it correlates your external attack surface, internal networks, and identity services to deliver hyper-efficient remediation guidance based on the severity and impact to a specific network. This enables security service providers to stop wasting time on fixes that don't matter, and remove the highest impact risks first. In other words, Shield distinguishes the critical few risks from the trivial many. What more could you accomplish if you could direct 2% of your efforts to reduce 98% of risk?
Bitahoy
bitahoy.com
Augment your daily IT risk management processes with an AI-powered IT risk analyst that helps you prioritize, investigate and report risk-scenarios.
PlexTrac
plextrac.com
We designed the PlexTrac solution to address the workflow pain points security practitioners face. PlexTrac helps them track signal through the noise and break down communication silos. Combining “plexus” and “track,” our name really says it all. PlexTrac exists to network and coordinate all people and parts of a security program and to better track progress toward maturity.
Hackuity
hackuity.io
Hackuity is the comprehensive security solution that orchestrates and automates the vulnerability management process. Hackuity’s platform aggregates and normalizes all your security assessment practices, whether automated or handmade, and enriches them so security practitioners can, at last, create risk-driven remediation plans and align their priorities with their current and future exposure to threats. Fully customizable, the platform fits the client technical context and security requirements either in a full-Saas mode, On-premise or Hybrid installation mode. Hackuity proposes the right offer regarding the company's experience in vulnerability management and field of activity : - Risk-based vulnerability management - Continuous Monitoring - Augmented pentest - Hackuity for MSSP The company was founded in 2018 and is based in Lyon, France.
Apomatix
apomatix.com
Charity professionals arguably face more challenges than ever before. Risk management is now of critical importance and failings in a charity’s risk management regime can have severe consequences. But the increase in workload has not necessarily led to a change in methodology. The old-fashioned way of conducting risk assessments - using spreadsheet templates – is still the norm. Apomatix’s Risk Management Software is designed to modernize risk management. Built by risk management experts with over 90 years of experience, our aim is to make risk management simpler and less disruptive. Our cloud-hosted risk management platform has features to help you easily plan and conduct your risk assessments. We also have tools to automate the reporting process, saving you from having to manually build these in your spreadsheet. Together, these features help save time, reduce the burden of managing your risk register and improve the quality of your risk assessments.
SecurityScorecard
securityscorecard.com
Stopping sophisticated cyberattacks requires visibility beyond your organization. Security teams need a complete understanding of their attack surface and business ecosystem risk—including partners, contractors, third- and fourth-party vendors, and supply chains. As the industry leader in security ratings, SecurityScorecard provides actionable insights for over 12 million organizations so you can quantify trustworthiness, quickly respond to cyber risks, and strengthen cyber defenses. SecurityScorecard is a security ratings, response, and resilience company. As the industry leader in security ratings, we provide actionable insights so you can make fast, informed decisions that improve your defenses. SecurityScorecard offers the world’s most comprehensive platform for quantifying and reducing risk, so you can instantly know whether an organization deserves your trust and show others that you deserve theirs. With SecurityScorecard, you can quantify trustworthiness and instantly know the cyber risk of any company worldwide, including your business, competitors, vendors, and downstream suppliers. You can strengthen cyber defenses by accessing a stream of risk intelligence that pinpoints vulnerabilities, prioritizes next steps, and clarifies remediation plans. And you can verify vendor readiness by identifying cyber-risks posed by vendors and sub-tier suppliers throughout your ecosystem– and take action to ensure their problems don’t become your problems. What we offer: Supply Chain Cyber Risk: Your supply chain consists of your third and fourth parties as well as Nth parties that are all connected to your business. Vulnerabilities and threats in your supply chain can pose risks to your business operations. With SecurityScorecard, you can significantly reduce or eliminate the risk of compromise from a vendor or business partner. Offerings include: Third-Party Cyber Risk Management, Automatic Vendor Detection, Supply Chain Risk Intelligence, and Security Questionnaires. Threat Landscape: Go outside the wire to identify threats facing your organization and your supply chain. Leverage terabytes of data and AI-driven analytics to identify the threats that put your business at risk. Offerings include: Attack Surface Intelligence, Intelligence Feeds, and Vulnerability Intelligence. Security and Risk Operations: SecurityScorecard enables companies to see what a hacker sees across their own external attack surface so they can identify threats and take action before the bad guys have a chance to exploit critical vulnerabilities. Offerings include: External Attack Surface Management and Cyber Risk Quantification. Services: A focus on expert-led continuous improvement, actionable insights, and tailored strategies positions SecurityScorecard as a trusted partner in achieving and maintaining a robust cybersecurity posture. Offerings include: Digital Forensics & Incident Response, Advisory Services, Penetration Testing, Red Team, and Tabletop Exercises. MAX: SecurityScorecard MAX is a technology-enabled supply chain cyber risk managed service. Organizations leverage SecurityScorecard's technology, expertise, and partner ecosystem to minimize supply chain risk and gain tangible business outcomes.
UpGuard
upguard.com
UpGuard is a cybersecurity platform that helps global organizations prevent data breaches, monitor third-party vendors, and improve their security posture. Using proprietary security ratings, world-class data leak detection capabilities, and powerful remediation workflows, we proactively identify security exposures for companies of all sizes.
© 2025 WebCatalog, Inc.