Intruder
intruder.io
Intruder is an attack surface management platform that empowers organizations to discover, detect, and fix weaknesses on any vulnerable assets across their network. It provides actionable remediation advice on a continuous basis, by customizing the output of multiple industry-leading scanners using the expert advice of our in-house security team.
Useberry
useberry.com
Useberry is a one-stop product research platform to seamlessly gather user feedback and insights throughout the product development lifecycle. From initial ideas and designs to prototyping, and from website creation to refining information architecture, Useberry enables you to create user-validated digital products. Our mission at Useberry is to empower product teams with a robust, easy-to-use platform for conducting fast and efficient user testing studies. By offering an array of advanced analytical tools, we make it easier for you to integrate user insights into your design process and enhance the overall user experience. With Useberry, you can translate user feedback into actionable design strategies, meeting and exceeding user expectations. Adopted by global brands like Microsoft, Dell, Envato, and Accenture, Useberry is the go-to platform for UI/UX pioneers, agile product managers, innovative marketers, and proactive product teams. Key Features: 1. Seamless Integrations: Useberry integrates with leading prototyping platforms, including Figma, Adobe XD, ProtoPie, InVision, Marvel, and Sketch, providing a streamlined workflow that maximizes efficiency and promotes collaboration. 2. Usability Testing for Prototypes & Websites: Useberry offers diverse usability testing tools including Open Analytics, Single Tasks, and 5-Second tests among others. This allows for a more comprehensive understanding of your product's usability. 3. Information Architecture Studies: Through Card Sorting and Tree Testing, Useberry assists in organizing and structuring your website or app in a way that resonates with your users. 4. Participant Pool: Gain access to a diverse, vetted, and verified mix of consumers, professionals, and hard-to-reach audiences from 34 countries worldwide. Profiled on hundreds of attributes, to match even the most niche and demanding testing needs. 5. Sharing Link: Recruit your own participants easily, by sharing a link. Share it via email, and social media, or embed it on your website. Your audience, your choice. 6. Click Tracking: Get a graphical representation, including heatmaps, of every click or tap on your prototype and website. Analyze which elements of the UI your users engage with and make the right UX improvements. 7. Recordings: Watch every step of your user’s navigation & interactions, including mouse movement. Get back rich video insights capturing your user’s face, voice, and screen. 8. User Flows: Get a visualization of a user’s path from one screen to the next. Discover how your users behave and which screens they’re on when they decide to leave. 9. Surveys: Useberry provides the ability to conduct surveys, with single & multiple select choices, opinion scales, and open questions. 10. Metrics: Gain rich quantitative insights into user behavior with task completion rates, time on task, and misclick rates. With Useberry, you’re not just developing a product, you're crafting a user-centered digital experience that is tailored to your audience's needs, all while saving valuable time, effort, and resources.
Mandiant
mandiant.com
Mandiant provides solutions that protect organizations against cyber security attacks, leveraging innovative technology and expertise from the frontlines.
Veracode
veracode.com
Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-assisted remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.
Resolver
resolver.com
See risk. Build resilience. Resolver gathers all risk data and analyzes it in context—revealing the true business impact within every risk. Resolver’s Risk Intelligence Platform traces the extended impact of all types of risk—whether compliance or audit, incidents, or threats—and translates those effects into quantifiable business metrics. So, customers can communicate risk persuasively, framing it in terms of the business. And with this changed perspective, comes an entirely new role for risk to play. Finally, risk goes from being seen as a barrier, to becoming a strategic partner driving the business. Welcome to the new world of Risk Intelligence. Resolver's mission is to transform Risk management to Risk Intelligence. Its intuitive and integrated risk software for enterprise organizations offers solutions for corporate security, risk & compliance, and information security teams. Resolver empowers businesses to respond effectively to regulatory and market shifts, to discover insights from security and risk incidents, and to streamline risk operations throughout the organization. Resolver is a Kroll operated business. Kroll provides proprietary data, technology and insights to help customers stay ahead of complex demands related to risk, governance and growth. Kroll solutions deliver a powerful competitive advantage, enabling faster, smarter and more sustainable decisions. With 5,000 experts around the world, Kroll creates value and impact for both customers and communities.
Pentera
pentera.io
Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. Its customers include Casey's General Stores, Emeria, LuLu International Exchange, IP Telecom PT, BrewDog, City National Bank, Schmitz Cargobull, and MBC Group. Pentera is backed by leading investors such as K1 Investment Management, Insight Partners, Blackstone, Evolution Equity Partners, and AWZ. Visit https://pentera.io/ for more information.
Recorded Future
recordedfuture.com
Recorded Future is the world’s largest threat intelligence company. Recorded Future’s Intelligence Cloud provides end-to-end intelligence across adversaries, infrastructure, and targets. Indexing the internet across the open web, dark web, and technical sources, Recorded Future provides real-time visibility into an expanding attack surface and threat landscape, empowering clients to act with speed and confidence to reduce risk and securely drive business forward. Headquartered in Boston with offices and employees around the world, Recorded Future works with over 1,800 businesses and government organizations across more than 75 countries to provide real-time, unbiased and actionable intelligence. Learn more at recordedfuture.com.
Xygeni
xygeni.io
Secure your Software Development and Delivery! Xygeni Security specializes in Application Security Posture Management (ASPM), using deep contextual insights to effectively prioritize and manage security risks while minimizing noise and overwhelming alerts. Our innovative technologies automatically detect malicious code in real-time upon new and updated components publication, immediately notifying customers and quarantining affected components to prevent potential breaches. With extensive coverage spanning the entire Software Supply Chain—including Open Source components, CI/CD processes and infrastructure, Anomaly detection, Secret leakage, Infrastructure as Code (IaC), and Container security—Xygeni ensures robust protection for your software applications. Trust Xygeni to protect your operations and empower your team to build and deliver with integrity and security.
BugBase
bugbase.ai
BugBase is a Continuous Vulnerability Assessment Platform that conducts comprehensive security operations such as bug bounty programs and next-gen pentesting (VAPT) to assist startups and enterprises in effectively identifying, managing and mitigating vulnerabilities.
YesWeHack
yeswehack.com
Founded in 2015, YesWeHack is a global Bug Bounty and VDP Platform. YesWeHack offers companies an innovative approach to cybersecurity with Bug Bounty (pay-per-vulnerability discovered), connecting more than 45,000 cybersecurity experts (ethical hackers) across 170 countries with organisations to secure their exposed scopes and reporting vulnerabilities in their websites, mobile apps, infrastructure and connected devices. YesWeHack runs private (invitation based only) programs and public programs for hundreds of organisations worldwide in compliance with the strictest European regulations. In addition to the Bug Bounty platform, YesWeHack also offers: a creation and management solution for Vulnerability Disclosure Policy (VDP), a Pentest Management Platform, a learning platform for ethical hackers called Dojo and a training platform for educational institutions, YesWeHackEDU.
Patchstack
patchstack.com
Protect websites from plugin vulnerabilities with Patchstack. Be first to receive protection from new security vulnerabilities.
Havoc Shield
havocshield.com
All-in-one cybersecurity solution for financial services. Built to satisfy GLBA, FTC Safeguards, IRS Tax Preparer, New York DFS and other financial industry security requirements. Havoc Shield quickly removes the fear and risk of a lacking cybersecurity program by providing an industry-compliant plan, expert guidance, and professional security tools in an all-in one-platform.
prooV
proov.io
With prooV Red Cloud, you can assess how technologies will react in the case of a cyberattack before you implement them It is a tailored, cloud-based environment that gives you the flexibility to carry out complex cybersecurity attacks on any type of software you are testing. You can use Red Cloud with the PoC Platform to include red team testing in your initial software testing and evaluation process, or you can use it on its own.
Probely
probely.com
Probely is a web vulnerability scanner that enables customers to easily test the security of their Web Applications & APIs. Our goal is to narrow the gap between development, security, and operations by making security an intrinsic characteristic of web applications development life-cycle, and only report security vulnerabilities that matter, false-positive free and with simple instructions on how to fix them. Probely allows Security teams to efficiently scale security testing by shifting security testing to Development or DevOps teams. We adapt to our customers’ internal processes and integrate Probely into their stack. Probely scan restful APIs, websites, and complex web applications, including rich Javascript applications such as single-page applications (SPA). It detects over 20,000 vulnerabilities, including SQL injection, Cross-Site Scripting (XSS), Log4j, OS Command Injection, and SSL/TLS issues.
CloudWize
cloudwize.io
CloudWize is a no-code Cloud Security Center of Excellence that gives you maximum cloud compliance & security. Get 360° Protection from Architecture Design to Runtime. CludWize enforces cloud regulations with over 1K rules running continuously, scans your cloud vulnerabilities, and remediates them automatically. With our unique investigation graph engine, you can detect and fix cloud issues in minutes instead of days and weeks. This holistic solution offers a blackbox web app penetration test, evolved IAM (identity access management), IaC (infrastructure as code) risk scanning, Data Security Posture Management, and more. Why deal with many tools when you can have everything in one place? CNAPP + WAAP + KSPM – CSPM + CWPP + CIEM + CASB + DSPM + CNSP = CloudWize (CSCoE)
Beagle Security
beaglesecurity.com
Beagle Security helps you identify vulnerabilities in your web applications, APIs, GraphQL and remediate them with actionable insights before hackers harm you in any manner. With Beagle Security, you can integrate automated penetration testing into your CI/CD pipeline to identify security issues earlier in your development lifecycle and ship safer web applications. Major features: - Checks your web apps & APIs for 3000+ test cases to find security loopholes - OWASP & SANS standards - Recommendations to address security issues - Security test complex web apps with login - Compliance reports (GDPR, HIPAA & PCI DSS) - Test scheduling - DevSecOps integrations - API integration - Team access - Integrations with popular tools like Slack, Jira, Asana, Trello & 100+ other tools
The Code Registry
thecoderegistry.com
The Code Registry is the world's first AI-powered code intelligence and insights platform, designed to safeguard and optimize software assets for businesses. By providing an independent, secure replication of code repositories and delivering in-depth analysis and reporting, The Code Registry empowers business leaders and senior IT experts to manage their development teams and software budgets more effectively. With a focus on security, efficiency, and transparency, The Code Registry is setting a new standard in code management and analysis. By signing up to any of our subscription tiers you will have complete access to; > Independent secure automated Code Vault back-ups > Full code security scans > Open Source dependency and licence detection > Code Complexity Analysis > AI Quotient™ > Full Git History > Proprietary 'code-to-replicate' code valuation > Automated comparison reporting. The Code Registry. Know Your Code™
Cycode
cycode.com
Cycode is the only end-to-end software supply chain (SSC) security solution to provide visibility, security, and integrity across all phases of the SDLC. Cycode integrates with all of your software delivery pipeline tools and infrastructure providers to enable complete visibility and hardened security posture through consistent governance and security policies. Cycode further reduces the risk of breaches with a series of scanning engines that look for issues like hardcoded secrets, IAC misconfigurations, code leaks and more. Cycode’s patented knowledge graph tracks code integrity, user activity, and events across the SDLC to find anomalies and prevent code tampering.
Webscale
webscale.com
Overview Webscale is the Cloud Platform for Modern Commerce, offering security, scalability, performance and automation for global brands. The Webscale SaaS platform leverages automation and DevOps protocols to simplify the deployment, management and maintenance of infrastructure in multi-cloud environments, including Amazon Web Services, Google Cloud Platform, and Microsoft Azure. Webscale powers thousands of B2C, B2B, and B2E ecommerce storefronts in twelve countries and eight of the Fortune 1000 businesses and has offices in Santa Clara, CA, Boulder, CO, San Antonio, TX, Bangalore, India and London, UK.
Inspectiv
inspectiv.com
Inspectiv's Pentesting and fully-managed Bug Bounty as a Service helps security teams discover impactful vulnerabilities before they're exploited without the complexity, cost, and hassle of traditional bug bounty and manual testing. The Inspectiv platform allows you to review prioritized vulnerability findings, filter out the noise, get the signal that matters to you, and seamlessly orchestrate your actions. Learn more at inspectiv.com.
Edgio
edg.io
Edgio (NASDAQ: EGIO) helps companies deliver online experiences and content faster, safer, and with more control. Our developer-friendly, globally scaled edge network, combined with our fully integrated application and media solutions, provide a single platform for the delivery of high-performing, secure web properties, and streaming content. Through this fully integrated platform and end-to-end edge services, companies can deliver content quicker and more securely, boosting overall revenue and business value. All services run at the edge of our private, global network with 250 Tbps of bandwidth capacity. We process 5% of all web traffic and are rapidly growing. Edgio is trusted and relied on by TD Ameritrade, Plus500, Solvay Bank, Yahoo, Shoe Carnival, Canadian Hockey League, World Champion Fantasy, Mars Wrigley, Coach, and Kate Spade.
Censys
censys.com
Censys’ Exposure Management solution arms organizations a real-time, contextualized view into all of their internet and cloud assets. This information empowers security teams to aggregate, prioritize, and remediate advanced threats and exposures. Censys offers the most up-to-date data available on the internet by conducting daily scans on the top 137 ports and top 1,440 ports in the cloud. Through Censys' dedicated infrastructure and leading Internet Map we scan 45x more services than the nearest competitor. Censys' platform covers key use cases like external attack surface management with >95% attribution accuracy, cloud asset discovery with vendor-agnostic cloud connectors, exposure & risk management, security framework & compliance, and monitoring of mergers & acquisition or subsidiary risk. See why the U.S. Government and over 50% of the Fortune 500 use Censys.
Astra
getastra.com
Astra’s Pentest is a comprehensive penetration testing solution with an intelligent automated vulnerability scanner coupled with in-depth manual pentesting. Our Pentest platform emulates hackers behavior to find critical vulnerabilities in your application proactively. The automated scanner performs 10,000+ security checks, including security checks for all CVEs listed in the OWASP top 10 and SANS 25. It also conducts all required tests to comply with ISO 27001 and HIPAA. Astra offers an developer friendly pentest dashboard enabling easy analysis of the vulnerability, assign vulnerabilities to team members, and collaborate with security experts. And if the users don’t want to get back to the dashboard every time they can simply integrate the dashboard with slack and manage vulnerability easily. Integrate Astra with your CI/CD pipeline and ensure vulnerability assessment in the software development lifecycle. Astra can be integrated with Circle CI, Slack, Jenkins, Gitlab, Github, Azure and bitbucket With accurate risk scoring, zero false positives, and thorough remediation guidelines, Astra’s Pentest helps you prioritize the fixes, allocate resources efficiently, and maximize the ROI. Astra Continuous compliance scanning ensures that you stay compliant to (SOC2, ISO27001, PCI, GDPR etc.)
SureCloud
surecloud.com
Keep your business secure and compliant with SureCloud. Everything you need today and tomorrow is in its integrated GRC platform, which anyone can use. SureCloud GRC is built on its industry-first Dynamic Risk Intelligence technology, designed to empower you to proactively manage your GRC landscape by understanding the story within your data. This allows you to analyze, predict, and respond to risks before they become critical issues. The future of GRC delivered today. Its industry-first Dynamic Risk Intelligence technology enables you to be more proactive by revealing the full story and sequence of events across your programs with unparalleled visibility and certainty. It empowers you to anticipate and address potential risks before they escalate, ensuring you're always ahead of risk and compliance challenges. Leveraging advanced event-driven architecture and event sourcing, SureCloud GRC captures and analyzes every detail in real-time, giving you the tools to take proactive control and provide long-term business assurance.
Scrut Automation
scrut.io
Scrut is a one-stop shop for compliance. Scrut is an automation platform that 24/7 monitors and collects evidence of an organisation’s security controls while streamlining compliance to assure audit readiness. Our software provides the fastest solution for achieving and maintaining SOC 2, ISO 27001, HIPAA, PCI, or GDPR compliance in a single place so that you can focus on your business and leave compliance to us. Scrut handles all the infosec compliance standards and internal SOPs in a single-window dashboard. Scrut automatically maps the evidence to applicable clauses across multiple standards while eliminating redundant and repetitive tasks – saving your money and time.
Oversecured
oversecured.com
Enterprise vulnerability scanner for Android and iOS apps. It offers app owners and developers the ability to secure each new version of a mobile app by integrating Oversecured into the development process.
Zerocopter
zerocopter.com
Zerocopter enables you to confidently leverage the skills of the world's most knowledgable ethical hackers to secure your applications.
ReconwithMe
reconwithme.com
An ISO 27001 Complaint tool ReconwithMe is an automated vulnerability scanning tool founded by security engineers who saw a need for positive change and innovation in the cybersecurity space. ReconWithMe helps scan vulnerabilities such as XSS, SQL injection, Missing headers, Clickjacking, API misconfigurations, CVE’s detection in services used, etc in your server and API. Reconwithme is providing enterprise security solutions worldwide. To address cyber security threats, it ensures web applications stay as safe as can be, helping your organizations automate detection, streamline operations, anticipate threats, and act fast.
Securily Pentest
securily.com
Securily addresses the complex and costly problem of cybersecurity for SMEs with its AI-enhanced penetration testing platform. By blending cutting-edge AI with expert human oversight, Securily provides thorough, efficient, and affordable security assessments. This unique approach not only detects vulnerabilities but also guides remediation, helping businesses strengthen their defenses and comply with industry standards effortlessly.
Cobalt
cobalt.io
Cobalt unifies the best of human security talent and effective security tools. Our end-to-end offensive security solution enables customers to remediate risk across a dynamically changing attack surface. We are best known for the speed and quality of our pentests, and driven by customer demand, we now offer a broad range of testing products and security services to support the needs of AppSec and InfoSec teams. Since 2013, we have secured over 10,000 assets, conducting over 4,000 pentests in 2023 alone. Over 1,300 customers rely on Cobalt, and our Cobalt Core of 450 elite pentesters. Our expert testers average 11 years of experience and hold top certifications. Combing the knowledge of the Core with the purpose-build Cobalt platform, we provide continuous collaboration through any engagement, including real-time findings reporting, access to Attack Surface Monitoring and Dynamic Application Security Testing (DAST), as well as integrations into over 50 business systems including Slack, Jira, and ServiceNow to speed remediation efforts.
© 2025 WebCatalog, Inc.