Product Listings
Vonahi Security's product, vPenTest, is a Software as a Service (SaaS) platform aiming to transform network penetration testing by automation. It is focused on making offensive cybersecurity attainable and affordable for Managed Service Providers (MSPs) as well as internal IT teams, regardless of size. This platform simplifies the execution of network penetration testing for MSPs while offering companies a cost-effective method for real-time cybersecurity risk evaluation. The key objective of vPenTest platform is enabling businesses of varied sizes to carry out frequent network penetration tests at a reasonable cost. The platform stands out due to its offering of automated, comprehensive penetration testing that enhances the scalability, accuracy, and speed of network pentesting, minimizing human error. Through vPenTest, organizations can plan a network penetration test at any time, facilitating real-time risk evaluation against cyber-attacks by security teams.
Horizon3.ai is a fusion of former U.S. Special Operations cyber operators, startup engineers, and formerly frustrated cybersecurity practitioners. We're committed to helping solve our common security problems: ineffective security tools, false positives resulting in alert fatigue, blind spots, "checkbox” security culture, cybersecurity skills shortage, and the long lead time and expense of hiring outside consultants. Founded in 2019, Horizon3.ai is headquartered in San Francisco, CA.
Ridge Security provides an innovative solution for security testing through its product, RidgeBot, an Intelligent Penetration Testing Robot. RidgeBot utilizes advanced techniques to breach systems, similar to those used by hackers. When integrated into a system, RidgeBot seeks out, exploits and documents any vulnerabilities it uncovers. It operates within a predefined scope and can instantly adapt to highly complex structures. Ridge Security's offerings serve enterprise and web application teams, ISVs, government entities, educational institutions or any other party tasked with maintaining software security, allowing them to test their systems in an affordable and efficient manner.
BreachLock is a cyber security provider who offers Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Automated Penetration Testing and Red Teaming in one integrated platform. BreachLock seamlessly combines human-delivered, AI-powered, and automated solutions to accelerate vulnerability prioritization and remediation accuracy across your entire security ecosystem.
PTaaS for Security Control Validation: Identify and validate vulnerabilities across you internal and external attack surface for prioritization and remediation.
ASM for Risk Prioritization and Exposure Management: Prioritize exposed assets and associated vulnerabilities - known and unknown - across your entire attack surface, including Shadow IT and Dark Web exposures.
Automated Pentesting and Red Teaming for Attack Path Validation: Run real-world attacks and TTPs to evaluate your security readiness with automated penetration testing and Red Teaming as a Service (RTaaS).
Rapid7, Inc. aims to create a safer digital world by simplifying and making cybersecurity simpler and more accessible. Rapid7 empowers security professionals worldwide to manage a modern attack surface through its technology, research, and broad, strategic expertise. Rapid7’s comprehensive security solutions help over 11,000 customers unite cloud risk management with threat detection and response to reduce attack surfaces and eliminate threats quickly and precisely.
PortSwigger is a company that specializes in developing software tools used for security testing of web applications. The company's primary focus lies in the web security industry, and it's known for the creation of the Burp Suite, a tool commonly utilized by professionals in this field. The company is based near Manchester, UK and has a steady team of Java and .NET developers who contribute to maintaining and advancing the capabilities of the tools developed by the company.
Edgescan is a comprehensive CTEM (Continuous Threat Exposure Monitoring) solution which combines five crucial cybersecurity solutions. External Attack Surface Management (EASM), Risk prioritized Vulnerability Management (VM), Application Security Testing (AST), API Security Testing, and Penetration Testing as a Service (PTaaS). Using a combination of cyber analytics and human validation, Edgescan delivers near false positive free vulnerablity and exposure intel. The accuracy of the solution helps identify critical issues to speed up remediation. Organizations can experience reduced operational complexity, faster remediation times, and lower operating costs. Edgescan's platform also prioritizes risk by delivering validated vulnerability data combining EPSS, CISA KEV and EXF (Edgescan eXposure Factor) to provide simple priortization of vulnerabilities. Edgescans CTEM solution helps orgs achieve visibility and discovery in real time improving accuracy and reducing cost.
Check Point Software Technologies Ltd. is a company that offers cyber security solutions to governmental and business entities around the world. The company's solutions are designed to safeguard against a variety of cyber threats including malware and ransomware. With Check Point's multilevel security architecture, dubbed 'Infinity Total Protection with Gen V advanced threat prevention', cloud, network, and mobile devices of businesses are protected. Additionally, Check Point provides a comprehensive and easy-to-manage control security management system.
AppCheck is a Dynamic Application Security Testing (DAST) solution, developed and supported by experienced penetration testers. We approach security testing as a hacker would, leveraging multiple proprietary crawling engines to analyse target behaviour across both modern and traditional technologies, including Single Page Applications (SPAs), APIs, and complex authentication flows such as SSO, 2FA, and TOTP. Organisations can conduct unlimited security assessments across web applications, APIs, cloud services, networks, and internal or external assets.
Supporting production and UAT testing, AppCheck also enables ‘shift left’ security by integrating with CI/CD pipelines and build servers, including ADO, GitHub, Jenkins, TeamCity, CircleCI, TravisCI, Bamboo, and GitLab CI/CD. Allowing automated security testing throughout development, identifying risks as soon as changes are introduced.
AppCheck is also a CVE Numbering Authority (CNA), contributing to global security research
Astra Pentest is comprehensive platform featuring an automated vulnerability scanner, manual pentest capabilities, and an all-purpose vulnerability management dashboard that helps you streamline every step of the pentest process - from detection and prioritizations of vulnerabilities to collaborative remediation. Our Pentest platform emulates hackers behavior to find critical vulnerabilities in your application Web App, Mobile App, SaaS, APIs, Cloud Infrastructure (AWS/Azure/GCP), Network Devices (Firewall, Router, Server, Switch, Printer, Camera, etc), Blockchain/Smart Contract, and more proactively.
NetSPI is a cybersecurity company empowering security, IT, and business decision-makers to build and manage their Continuous Threat Exposure Management (CTEM) programs through its integrated SaaS platform. The NetSPI Platform combines Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS) as a Service into a single interface.
Enterprise and mid-market organizations use NetSPI to establish asset inventories, identify exposures, prioritize risks, manage vulnerabilities, and validate security controls at scale.
With 300+ in-house security experts, NetSPI has tested over 4M assets, completed 21K engagements, and reported 1.5M vulnerabilities. Customers use NetSPI to quickly address mission-critical security vulnerabilities while reducing false positives, alert fatigue, manual validation, and remediation time.
Pentest-Tools.com is a cloud-based solution for penetration testing and vulnerability assessments that supports the entire workflow of a security assessment.
The platform incorporates 20+ penetration testing tools and almost a dozen features dedicated to streamlining offensive security workflows, which include capabilities for automating 80% of repetitive tasks.
Our goal is to make standard security testing activities fast and easy to perform, helping offensive security professionals gain more time for high-value work and become more productive.
With Pentest-Tools.com, security professionals can deliver the same level of quality in their work, but faster and with lower costs.
Strobes is a cybersecurity platform designed for end-to-end continuous threat exposure management. This ensures that organizations are equipped with cutting-edge tools and methodologies to address evolving cyber threats. Our integrated solutions deliver unmatched visibility, control, and scalability for your protection. Strobes help you discover assets, perform vulnerability scans, conduct pen tests, and meet compliance requirements faster than ever before.
UnderDefense is a global cybersecurity provider that empowers companies to predict, prevent, detect and respond to present-day advanced and aggressive cyberattacks. UnderDefense supports 500+ clients globally with relevant solutions, including MDR, Penetration Testing, Compliance, Incident Response, Risk Reduction, and Security Consulting. UnderDefense's Security-as-a-Service platform offers a set of tools and services organizations need to respond to modern security challenges. With this solution, leaders can automate security routines, detect threats, solve compliance challenges, and avoid breaches.
GuidePoint Security, a cybersecurity firm, is focused on facilitating businesses in implementing robust cybersecurity measures. The primary business problem solved by the company revolves around the identification and management of cyber threats. Offering a wide range of services, GuidePoint Security assists organizations by providing in-depth understanding of the shifting threat environment, identifying vulnerabilities and gaps. The company also offers services related to product alignment with resource capacity, and helps organizations in carrying out savvy product evaluations and integrations. In essence, GuidePoint Security guides decision-making and cybersecurity product selection processes that are resource-efficient, thereby optimizing the overall cybersecurity stature of organizations.
Vumetric focuses primarily on providing specialized cybersecurity services. This ISO9001 certified company offers a range of services, amongst which penetration testing and IT security audits are the key ones. It operates across five continents, serving a diverse mix of entities that vary in scale and nature. It asserts its expertise in bringing proven practices to all its projects.
Kroll is a provider of independent risk and financial advisory solutions, utilizing their distinctive knowledge, data, and technology to assist clients in navigating intricate demands. With a team comprising over 6,500 professionals globally, Kroll brings into play nearly a century's worth of expertise in risk management, governance, transactions, and valuation. The company develops advanced solutions and offers intelligence that equips its clients with the foresight required to construct a lasting competitive edge. Kroll's values play a pivotal role in defining its relationships with clients and communities.
FireCompass is a Software as a Service (SaaS) platform devoted to Continuous Automated Red Teaming (CART) and Attack Surface Management (ASM). By relentlessly indexing and supervising the deep, dark, and surface web, this platform successfully determines the digital attack surface of an organization, including Shadow IT blind spots. To enhance security measures, FireCompass further automates multi-stage attacks that safely mimics real attackers, identifying potential breach paths before actual hackers. This continuous and proactive approach to security eliminates the requirement for multiple tools and substantial manual work. The platform caters to varied industries, with use instances in CART, ASM, Security Control Effectiveness Testing, Digital Footprint & Shadow IT Discovery, Ransomware and Supply Chain Risk Assessments, and M&A Risk evaluations.
ScienceSoft is an American IT outsourcing company operating in the US, Europe, and the Gulf Cooperation Council. The company specializes in full-cycle software development and delivers custom and platform-based enterprise solutions (ERP, CRM, EHR), software products, and SaaS apps. ScienceSoft’s service portfolio also includes technology consulting, managed IT services, data analytics, and cybersecurity.
Since its launch in 1989, ScienceSoft has implemented over 3,600 projects for 30+ industries, including healthcare, BFSI, retail, and manufacturing.
ScienceSoft’s quality and data security management systems are ISO 9001 and ISO 27001-certified.
HelpSystems, now rebranded as Fortra, focuses on addressing the increasing complexity of data protection in an era of escalating cyber threats. In an environment where the only certainty is change, the company acknowledges the necessity of adaptability for sustainable growth. Guided by feedback, Fortra takes on problem-solving and delivers tailored solutions to help organizations deal with their cybersecurity challenges effectively. Specializing in areas such as data security, infrastructure protection, managed services, and threat research and intelligence, the company strives to enhance security maturity and simultaneously reduce the operational challenges associated with it. The fundamental belief driving Fortra is the conviction that no problem is insurmountable. The company is committed to forging a secure future in cybersecurity.