Calico Cloud
calicocloud.io
Calico Cloud is the industry’s only container security platform with built-in network security to prevent, detect, and mitigate security breaches across multi-cloud and hybrid deployments. Calico Cloud is built on Calico Open Source, the most widely adopted container networking and security solution.
Akto
akto.io
Akto is a trusted platform for application security and product security teams to build an enterprise-grade API security program throughout their DevSecOps pipeline. Our industry-leading suite of — API discovery, API security posture management, sensitive data exposure, and API security testing solutions enables organizations to gain visibility in their API security posture. 1,000+ Application Security teams globally trust Akto for their API security needs. Akto use cases: 1. API Discovery 2. API Security Testing in CI/CD 3. API Security Posture Management 4. Authentication and Authorization Testing 5. Sensitive data Exposure 6. Shift left in DevSecOps
Aikido Security
aikido.dev
Aikido Security is a developer-centric software security platform, providing advanced code scanning and cloud vulnerability assessments. Our platform prioritizes real threats, reduces false-positives and makes Common Vulnerabilities and Exposures (CVEs) easily understandable. With Aikido, ensuring the security of your product is made simple, allowing you to focus on what you do best: writing code.
GuardRails
guardrails.io
GuardRails is an end-to-end security platform that makes AppSec easier for both security and development teams. We scan, detect, and provide real-time guidance to fix vulnerabilities early. Trusted by hundreds of teams around the world to build safer apps, GuardRails integrates seamlessly into the developers’ workflow, quietly scans as they code, and shows how to fix security issues on the spot via Just-in-Time training. GuardRails commits to keeping the noise low and only reporting high-impact vulnerabilities that are relevant to your organization. GuardRails helps organizations shift security everywhere and build a strong DevSecOps pipeline, so they can go faster to market without risking security.
Detectify
detectify.com
Complete External Attack Surface Management for AppSec & ProdSec teams, Start covering your external attack surface with rigorous discovery, 99.7% accurate vulnerability assessments, and accelerated remediation through actionable guidance, all from one complete standalone EASM platform.
SOOS
soos.io
Application Security Posture Management Platform Your organization’s application security posture should be more than just a checklist. SOOS’s ASPM is a dynamic, comprehensive approach to safeguarding your application infrastructure from vulnerabilities across the Software Development Life Cycle (SDLC) and live deployments. All in one dashboard.
CYRISMA
cyrisma.com
CYRISMA is a revolutionary cybersecurity platform that helps organizations manage risk without the usual headaches associated with enterprise cybersecurity tools. Designed for organizations that demand a clear and immediate return on investment, CYRISMA simplifies the process of identifying, assessing, and mitigating technical risks, all while eliminating high licensing costs, long deployment times, and burdensome technologies. Its data-centric approach to cybersecurity streamlines your cybersecurity efforts by focusing on what’s important while providing a simple, easy-to-use platform for identifying risks, strengthening weak configurations, and neutralizing risks through accountability. It is the simple choice for effective cybersecurity. All of the following capabilities are combined in a single SaaS platform: - Vulnerability Management - Sensitive Data Discovery - Secure Configuration Scanning - Compliance Tracking - Microsoft Copilot Readiness Assessment - Dark Web Monitoring - Risk Monetization - Risk Mitigation - Cyber Risk Assessment Reporting - Risk Scorecards
Trickest
trickest.com
Trickest provides an innovative approach to offensive cybersecurity automation and asset and vulnerability discovery. Its platform combines extensive adversary tactics and techniques with full transparency, hyper customization, and hyper scalability, making it the go-to platform for offensive security operations.
Strobes
strobes.co
Empower your business with complete visibility and control over your application security posture. Eliminate blind spots, prioritize threats effectively, and streamline remediation. Strobes ASPM Advantage: 1. Immediate efficiency boosts for both security and development teams, thanks to streamlined processes and clear visibility. 2. Effective security management, achieved through advanced automation and enhanced process visibility. 3. Environment-specific risk prioritization, ensuring that security efforts are aligned with your unique risk landscape 4. Quick risk mitigation, supported by automated guardrails and sustained compliance efforts. 5. Improved cross-departmental collaboration, fostering a culture of security and efficiency.
CyCognito
cycognito.com
CyCognito is a cybersecurity solution designed to help organizations discover, test, and prioritize security issues across their digital landscape. By leveraging advanced artificial intelligence, CyCognito scans billions of websites, cloud applications, and APIs to identify potential vulnerabilities and critical risks. This proactive approach enables organizations to address security concerns before they can be exploited by malicious actors, thereby enhancing their overall security posture. The target audience for CyCognito includes emerging companies, government agencies, and Fortune 500 organizations, all of which face increasing threats in today's digital environment. These entities require robust security measures to protect sensitive data and maintain compliance with various regulations. CyCognito serves as an essential tool for security teams, providing them with the insights needed to understand their risk exposure and prioritize remediation efforts effectively. One of the key features of the CyCognito platform is its comprehensive scanning capability, which covers a vast range of digital assets. This extensive reach ensures that organizations can identify vulnerabilities across all their online presence, including third-party services and shadow IT. The platform's AI-driven analysis further enhances its effectiveness by automatically assessing the severity of identified risks, allowing security teams to focus on the most critical issues that could lead to significant breaches. In addition to risk discovery, CyCognito offers actionable guidance for remediation, helping organizations to implement effective security measures. The platform provides detailed insights into the nature of the vulnerabilities and suggests specific steps to mitigate them. This feature not only streamlines the remediation process but also empowers organizations to build a more resilient security framework over time. By integrating CyCognito into their cybersecurity strategy, organizations can significantly reduce their risk exposure and enhance their ability to respond to emerging threats. The platform's unique combination of extensive scanning, AI-driven risk assessment, and actionable remediation guidance positions it as a valuable asset for any organization looking to strengthen its security posture in an increasingly complex threat landscape.
Secure Blink
secureblink.com
Threatspy, is a developer-first, AI-powered AppSec management platform. Threatspy empowers developers and security teams to proactively identify and mitigate both known and unknown vulnerabilities in applications and APIs through automated detection, prioritization, and remediation processes. By leveraging Threatspy, organisations can enhance their security posture, reduce risk, and ensure the resilience of their digital infrastructure.
ResilientX
resilientx.com
ResilientX Security is a fast-growing Cyber Security company that helps organizations of all sizes identify, quantify and manage their cyber risks and cyber exposure. At ResilientX, we are committed to delivering state-of-the-art security solutions to help organizations safeguard their digital assets and maintain compliance. Our First-Party and Third-Party Risk and Exposure Management platform is designed for those who take security and compliance seriously.
Phidata
phidata.com
An open-source platform to build, ship and monitor agentic systems.
DerSecur
derscanner.com
DerScanner is a complete application security testing solution to eliminate known and unknown code threats across Software Development Lifecycle. DerScanner static code analysis offers developers the support for 43 programming languages ensuring thorough security coverage for almost any application. DerScanner's SAST uniquely analyzes both source and binary files, revealing hidden vulnerabilities that are often missed in standard scans. This is especially crucial for legacy applications or when source code access is limited. DerScanner’s DAST feature mimics an external attacker, similar to penetration testing. This is vital for finding vulnerabilities that only appear when the application is operational. DAST in DerScanner enriches SAST findings by cross-checking and correlating vulnerabilities detected by both methods. With DerScanner Software Composition Analysis you can gain critical insights into open-source components and dependencies in your projects. It helps identify vulnerabilities early and ensures compliance with licensing terms, reducing legal risks. DerScanner's Supply Chain Security continuously monitors public repositories, evaluating the security posture of each package. This allows you to make informed decisions about using open-source components in your applications.
Jit
jit.io
Jit's Open ASPM Platform is the easiest way to secure your code and cloud, providing full application and cloud security coverage in minutes. Tailor a developer security toolchain to your use case and implement it across your repos in a few clicks.
Auditive
auditive.io
Auditive is a continuously monitored risk network that connects businesses and their customers on one single platform. Vendors can showcase their risk posture on the network and win deals 4x faster. Buyers can get 80% of their vendor reviews done in minutes and monitor continuously throughout the lifecycle of the relationship.
GlitchSecure
glitchsecure.com
GlitchSecure helps companies secure their products and infrastructure through real-time continuous security testing.
Trava Security
travasecurity.com
More than a GRC tool, we're your compliance experts. Simplifying processes, freeing your time and resources, fueling your business growth. Unlock the power of Vulnerability Management Software and vCISO Services to fortify your organization against cyber threats while safeguarding your digital assets. Our integrated solutions offer comprehensive support for compliance frameworks including SOC2, ISO 27001, GDPR, CCPA, FedRAMP, CMMC, and more, along with expert security program management. Achieve compliance effortlessly and bolster your security posture with our trusted services.
Conviso
convisoappsec.com
Conviso Platform has got the whole security pipeline covered to empower developers to build secure applications. Because Security shouldn't be an isolated part of your development pipeline — it should be an ongoing, collaborative activity between all teams. Conviso now presents five products within its platform to help you in this mission.
Actifile
actifile.com
Actifile helps organizations automate their Data Discovery, Monitoring and Protection needs, addressing external data threats (like ransomware), insider threats (like shadow IT) and assist in complying with Data Privacy regulations. Actifile’s approach to protecting data focuses on two main aspects: * Identify and quantify the risk: Identify, discover and track sensitive data, both in storage and in motion to/from applications (both company sanctioned and shadow IT). * Limit the liability associated with data theft: Protect data from theft using automatic encryption, reducing the liability and regulatory implications associated with a data theft incident (such as ransomware). Such an approach works seamlessly in today’s multi-cloud, multi SaaS application and fits those that are seeking to empower their employees while securing and protecting their most important assets - DATA! Actifile supports multiple use cases and frameworks and is successfully deployed worldwide, supporting a growing range of privacy regulations including HIPAA , GDPR and NIFRA, to CMMC and CCPA.
Data Theorem
datatheorem.com
RamQuest’s solutions include our fully integrated closing, escrow accounting, imaging, transaction management, esigning, and digital marketplace solutions and are available on-premise or in a hosted environment
Bright Security
brightsec.com
Bright Security’s dev-centric DAST platform empowers both developers and AppSec professionals with enterprise-grade security testing capabilities for web applications, APIs, and GenAI and LLM applications. Bright knows how to deliver the right tests, at the right time in the SDLC, in developers and AppSec tools and stacks of choice with minimal false positives and alert fatigue.
ThreatMon
threatmon.io
Threatmon's mission is to provide businesses with a comprehensive cybersecurity solution designed by experienced professionals to protect their digital assets from external threats. Threatmon's cutting-edge solution combines Threat Intelligence, External Attack Surface Management, and Digital Risk Protection to identify vulnerabilities and provide personalized security solutions for maximum security. Threatmon identifies the distinctive nature of each business and provides bespoke solutions that cater to its specific needs. With real-time monitoring, risk scoring, and reporting, Threatmon's Attack Surface Mapping feature helps businesses make informed decisions about their security. Threatmon's big data processing technology identifies potential long-term threats and provides timely preventive measures to protect companies from future attacks. With nine different modules, Threatmon uses advanced technologies and the expertise of cybersecurity professionals to help companies shift from a reactive to a proactive approach. Join the growing number of organizations that trust Threatmon to protect their digital assets and safeguard their future.
OnSecurity
onsecurity.io
OnSecurity is a leading CREST-accredited penetration testing vendor based in the UK, dedicated to delivering high-impact, high-intelligence penetration testing services to businesses of all sizes. By simplifying the management and delivery of pentesting, we make it easier for organisations to enhance their security posture and mitigate risks, contributing to a safer, more secure digital environment for everyone. Pentesting, Vulnerability Scanning and Threat Intelligence all in one platform. Start your offensive cyber security journey today: https://www.onsecurity.io/
CrowdSec
crowdsec.net
CrowdSec is an open-source security stack that detects aggressive behaviors and prevents them from accessing your systems. Its user-friendly design and ease of integration into your current security infrastructure offer a low technical entry barrier and a high-security gain. Once an unwanted behavior is detected, it is automatically blocked. The aggressive IP, scenario triggered and the timestamp is sent for curation, to avoid poisoning & false positives. If verified, this IP is then redistributed to all CrowdSec users running the same scenario. By sharing the threat they faced, all users are protecting each other.
Stream Security
stream.security
Agentless, Real-time detection, immediate root cause, and all the context you need for rapid response.
Sysdig
sysdig.com
Sysdig Secure is our CNAPP platform that more than 700 enterprise customers use to address CNAPP, VM, CSPM, CIEM, container security and more - at enterprise scale. Our platform spans prevention, detection, and response so customers can confidently secure containers, Kubernetes, hosts/servers, and cloud services. Sysdig provides real-time visibility at scale across multiple clouds, eliminating security blind spots. We use intelligence from runtime to prioritize alerts so teams can focus on high-impact security events and improve efficiency. By understanding the entire source to response flow and suggesting guided remediation, customers can both fix issues in production with no wasted time and also detect and respond to threats in real time. With Sysdig Secure, you can: - Stop attacks up to 10x faster - Reduce vulnerabilities by up to 95% - Instantly detect risk changes - Close permissions gaps in less than 2 minutes Sysdig. Secure Every Second.
ArmorCode
armorcode.com
ArmorCode is an AppSecOps platform unifying ASPM, Unified Vulnerability Management, DevSecOps orchestration, and compliance. It integrates with your security tooling to ingest, de-duplicate, and correlate findings to give teams a holistic view of their risk landscape, and speeds remediation through risk prioritization and workflow automation.
Traceable
traceable.ai
Traceable is the industry’s leading API Security company that helps organizations protect their digital systems and assets in a cloud-first world where everything is interconnected. Traceable is the only intelligent and context-aware platform that powers complete API security. Security Posture Management: Traceable helps organizations dramatically improve their security posture with a real time, risk ranked catalog of all APIs in their ecosystem, conformance analysis, identification of shadow and orphaned APIs, and visibility of sensitive data flows. RunTime Threat Protection: Traceable observes user level transactions and applies mature machine learning algorithms to discover anomalous transactions, alert the security team, and block attacks at the user level. Threat management and analytics: Traceable helps organizations analyze attacks and incidents with its API data lake, which provides rich historical data of nominal and malicious traffic. API Security Testing throughout the SDLC: Traceable connects the security lifecycle together with the DevOps lifecycle providing automated API Security tests to be run within the CI pipeline. Digital Fraud Prevention: Traceable brings together its broad and deep data collection over time and cutting edge machine learning to identify fraud across all API transactions
Orca Security
orca.security
The Orca Cloud Security Platform identifies, prioritizes, and remediates risks and compliance issues in workloads, configurations, and identities across your cloud estate spanning AWS, Azure, Google Cloud, Kubernetes, Alibaba Cloud, and Oracle Cloud. Orca offers the industry’s most comprehensive cloud security solution in a single platform — eliminating the need to deploy and maintain multiple point solutions. Orca is agentless-first, and connects to your environment in minutes using Orca’s patented SideScanning™ technology that provides deep and wide visibility into your cloud environment, without requiring agents. In addition, Orca can integrate with third-party agents for runtime visibility and protection for critical workloads. Orca is at the forefront of leveraging Generative AI for simplified investigations and accelerated remediation – reducing required skill levels and saving cloud security, DevOps, and development teams time and effort, while significantly improving security outcomes. As a Cloud Native Application Protection Platform (CNAPP), Orca consolidates many point solutions in one platform, including: CSPM, CWPP, CIEM, Vulnerability Management, Container and Kubernetes Security, DSPM, API Security, CDR, Multi-cloud Compliance, Shift Left Security, and AI-SPM.
© 2025 WebCatalog, Inc.