GreyNoise Intelligence Inc. is a cybersecurity company established in 2017 and headquartered in Washington, D.C. The company specializes in collecting and analyzing data related to Internet-wide scanning and attack activities, effectively filtering out irrelevant background noise to reduce false positives. By labeling and categorizing this mass Internet activity, GreyNoise provides organizations with Anti-Threat Intelligence, which helps security teams focus on genuine threats rather than distractions. Its platform enhances analyst efficiency through various tools, including an API, platform integrations, and a visualizer. Additionally, GreyNoise offers a free service called GreyNoise Alerts, which notifies organizations of suspicious activities detected on their networks.
Nisos LLC, founded in 2015 and based in Alexandria, Virginia, offers a range of IT consulting services focused on cybersecurity and threat mitigation. The company specializes in areas such as cyber due diligence, incident response, adversarial attribution, and insider threat detection. Nisos provides services aimed at protecting clients' reputations and assets through strategies like attack simulation, compromise assessment, and executive protection. Additionally, it addresses challenges related to platform abuse and supply chain integrity, enabling clients to make informed decisions and strengthen their defenses against increasing adversarial threats.
Developer of asset intelligence technology designed to offer real-time, precise, and actionable asset data. The company's platform provides agentless architecture, visibility, near real-time intelligence, limitless customization, and meaningful visualization for end-to-end visibility across the entire technology domain, providing enterprise-wide teams with big-picture insights to increase security and business velocity.
Decentriq makes data collaboration simple and safe by leveraging confidential computing. Sensitive data is extremely valuable and at the same time very hard to leverage and analyze safely. Decentriq’s software platform enables our clients and partners to securely analyze sensitive data. No friction, easy to test and apply while providing state-of-art security. The platform proves the privacy and security of the data from any other party, including us. It allows complete confidentiality for computations, even while sitting in a public cloud. More under: confidentialcomputing.cloud
Corellium specializes in ARM-based mobile device virtualization, providing a unique platform that supports both on-site and cloud environments. The company develops security research software aimed at enhancing mobile security research, mobile app testing, and IoT device modeling. Its offerings feature native performance combined with the convenience of cloud access, equipping developers with advanced tools to foster scalability, efficiency, and innovation in the creation of ARM-based devices. By focusing on these capabilities, Corellium plays a crucial role in the evolving landscape of mobile technology and security.
Karamba Security Ltd. develops security software specifically designed for connected vehicles, focusing on safeguarding the internal systems that control car operations. The company's primary offering, Electronic Control Units Endpoint Security, provides solutions for dropper detection and malware prevention, thereby protecting connected cars from cyber threats. This technology fortifies the externally connected controllers within automobiles, which manage telematics, infotainment, and on-board diagnostics, ensuring that only valid code and behaviors are permitted to run. By maintaining the integrity of the vehicle's Controller Area Network (CAN Bus), Karamba's solutions help prevent unauthorized access and attacks. Founded in 2015 and headquartered in Bloomfield Hills, Michigan, the company serves automotive manufacturers and Tier-1 system providers. In addition to automotive applications, Karamba's patented software is applicable to various connected devices and systems, including Industry 4.0 controllers and IoT endpoints, functioning automatically with minimal performance impact.
Expel, Inc. is a managed security software company that specializes in providing SOC-as-a-service, which includes security monitoring and response for cloud, hybrid, and on-premises environments. Founded in 2016 and based in Herndon, Virginia, Expel leverages existing security signals from its customers to enhance the value of their current security investments. By connecting to customer technology remotely via APIs rather than agents, Expel can initiate monitoring within hours, allowing internal teams to concentrate on their unique security priorities. The company aims to streamline and improve the security operations of organizations, enabling them to respond effectively to emerging threats.
Scythe Inc. is a cybersecurity company based in Arlington, Virginia, founded in 2017. The company specializes in designing and developing a platform that enables organizations to create and simulate various adversarial campaigns. This capability allows businesses to rigorously test their security controls with a high level of detail, helping them identify vulnerabilities and improve their overall security posture. By providing a comprehensive environment for security testing, Scythe aims to enhance organizational resilience against potential cyber threats.
Panaseer Limited develops a cloud-based cybersecurity intelligence platform that assists enterprise security teams in making informed risk decisions. Founded in 2014 and headquartered in London, with an office in New York, the company offers the Panaseer Security Data Lake, which provides real-time insights into an organization's assets, applications, users, and data sets. This platform identifies gaps in security controls and aligns them with industry standards while facilitating regulatory compliance. By ingesting data from various sources, both cloud-based and on-premises, Panaseer enables organizations to monitor and analyze their cybersecurity posture effectively. The platform automates reporting processes, tailoring insights for stakeholders at different levels, thereby enhancing decision-making across the organization. Security leaders utilize Panaseer’s capabilities to prioritize risks based on their potential impact on the business and optimize overall cyber hygiene practices.
Hack The Box Ltd. is an online platform established in 2017, located in Folkestone, United Kingdom, that focuses on enhancing skills in penetration testing and cybersecurity. The platform provides a variety of challenges that simulate real-world scenarios, allowing users to engage in capture the flag style exercises. This interactive approach enables individuals, universities, and businesses to learn new techniques and improve their hacking abilities, addressing the growing need for cybersecurity expertise in various sectors.
Decentriq makes data collaboration simple and safe by leveraging confidential computing. Sensitive data is extremely valuable and at the same time very hard to leverage and analyze safely. Decentriq’s software platform enables our clients and partners to securely analyze sensitive data. No friction, easy to test and apply while providing state-of-art security. The platform proves the privacy and security of the data from any other party, including us. It allows complete confidentiality for computations, even while sitting in a public cloud. More under: confidentialcomputing.cloud
Vectrix Security, Inc. specializes in developing a cloud security platform that provides comprehensive security coverage for various cloud and SaaS services. Founded in 2020 and based in San Francisco, the company offers a marketplace of plug-and-play security tools, including a library of security scanners that integrate seamlessly with platforms like AWS, GitHub, G Suite, and Salesforce. Vectrix's platform enables users to easily monitor for critical security issues, such as misconfigurations and suspicious activities, with just one click. Designed by former security engineers from notable companies, Vectrix aims to empower security teams and engineers with an effective solution to quickly establish cloud and SaaS security.
Nisos LLC, founded in 2015 and based in Alexandria, Virginia, offers a range of IT consulting services focused on cybersecurity and threat mitigation. The company specializes in areas such as cyber due diligence, incident response, adversarial attribution, and insider threat detection. Nisos provides services aimed at protecting clients' reputations and assets through strategies like attack simulation, compromise assessment, and executive protection. Additionally, it addresses challenges related to platform abuse and supply chain integrity, enabling clients to make informed decisions and strengthen their defenses against increasing adversarial threats.
IriusRisk, developed by Continuum Security, SL, is a comprehensive tool designed to manage and assess software security risks throughout the software development lifecycle. Founded in 2008 and based in Huesca, Spain, the company focuses on providing solutions that integrate seamlessly into existing development workflows, ensuring that security processes support rather than hinder development speed. IriusRisk caters primarily to enterprises in the financial and technology sectors, enabling them to proactively address security challenges while promoting a culture of secure software development. In addition to IriusRisk, the company also offers BDD-Security, a security testing framework that further enhances its suite of security management tools.
GreyNoise Intelligence Inc. is a cybersecurity company established in 2017 and headquartered in Washington, D.C. The company specializes in collecting and analyzing data related to Internet-wide scanning and attack activities, effectively filtering out irrelevant background noise to reduce false positives. By labeling and categorizing this mass Internet activity, GreyNoise provides organizations with Anti-Threat Intelligence, which helps security teams focus on genuine threats rather than distractions. Its platform enhances analyst efficiency through various tools, including an API, platform integrations, and a visualizer. Additionally, GreyNoise offers a free service called GreyNoise Alerts, which notifies organizations of suspicious activities detected on their networks.
RangeForce delivers the most effective way to level-up and accurately assess the skills of your cybersecurity team through a scalable, interactive, on-demand cyber-skill training platform and integrated cyber range.
Calypso AI Corp. develops software products to solve artificial intelligence risks for national security and highly-regulated industries. It offers Vespr software platform, an integrated model accreditation and model risk management system that enables users to monitor artificial systems for ongoing performance, compliance, and security thresholds. Its solution is also used by teams to validate, monitor, and secure their artificial intelligence. The company was incorporated in 2018 and is based in San Mateo, California with additional offices in New York, Virginia, and Ireland.
Expel, Inc. is a managed security software company that specializes in providing SOC-as-a-service, which includes security monitoring and response for cloud, hybrid, and on-premises environments. Founded in 2016 and based in Herndon, Virginia, Expel leverages existing security signals from its customers to enhance the value of their current security investments. By connecting to customer technology remotely via APIs rather than agents, Expel can initiate monitoring within hours, allowing internal teams to concentrate on their unique security priorities. The company aims to streamline and improve the security operations of organizations, enabling them to respond effectively to emerging threats.
Secure Code Warrior develops an online secure by making security visible and providing skills/tools to write secure code from start. It helps companies scale secure coding excellence as coders and development team build. The company empowers Developers to write secure code, achieving rapid improvements in security compliance and consistency, as well as a better quality and speed of code writing. Secure Code Warrior has developed the first gamified competitive Developer Quality Assurance platform that helps individual software developers build their own secure coding skills while providing organizations and executives with the visibility and metrics to understand the secure code skill strengths and weaknesses of their development teams and individual developers. It includes support for nearly 30 programming languages and frameworks and delivers more than 3,500 training modules that cover more than 140 different software weaknesses; including the all-important OWASP Top 10. Secure Code Warrior was founded in 2015 and is headquartered in Sydney, New South Wales, Australia.
Expel, Inc. is a managed security software company that specializes in providing SOC-as-a-service, which includes security monitoring and response for cloud, hybrid, and on-premises environments. Founded in 2016 and based in Herndon, Virginia, Expel leverages existing security signals from its customers to enhance the value of their current security investments. By connecting to customer technology remotely via APIs rather than agents, Expel can initiate monitoring within hours, allowing internal teams to concentrate on their unique security priorities. The company aims to streamline and improve the security operations of organizations, enabling them to respond effectively to emerging threats.
RangeForce delivers the most effective way to level-up and accurately assess the skills of your cybersecurity team through a scalable, interactive, on-demand cyber-skill training platform and integrated cyber range.
The leading provider of cyber risk management software, RiskLens empowers business executives, risk officers and CISOs to manage their organization's cyber risk from the business perspective by quantifying it in financial terms. RiskLens was founded in 2011 and is headquartered in Spokane, Washington.
GreyNoise Intelligence Inc. is a cybersecurity company established in 2017 and headquartered in Washington, D.C. The company specializes in collecting and analyzing data related to Internet-wide scanning and attack activities, effectively filtering out irrelevant background noise to reduce false positives. By labeling and categorizing this mass Internet activity, GreyNoise provides organizations with Anti-Threat Intelligence, which helps security teams focus on genuine threats rather than distractions. Its platform enhances analyst efficiency through various tools, including an API, platform integrations, and a visualizer. Additionally, GreyNoise offers a free service called GreyNoise Alerts, which notifies organizations of suspicious activities detected on their networks.
Scythe Inc. is a cybersecurity company based in Arlington, Virginia, founded in 2017. The company specializes in designing and developing a platform that enables organizations to create and simulate various adversarial campaigns. This capability allows businesses to rigorously test their security controls with a high level of detail, helping them identify vulnerabilities and improve their overall security posture. By providing a comprehensive environment for security testing, Scythe aims to enhance organizational resilience against potential cyber threats.
Secure Code Warrior develops an online secure by making security visible and providing skills/tools to write secure code from start. It helps companies scale secure coding excellence as coders and development team build. The company empowers Developers to write secure code, achieving rapid improvements in security compliance and consistency, as well as a better quality and speed of code writing. Secure Code Warrior has developed the first gamified competitive Developer Quality Assurance platform that helps individual software developers build their own secure coding skills while providing organizations and executives with the visibility and metrics to understand the secure code skill strengths and weaknesses of their development teams and individual developers. It includes support for nearly 30 programming languages and frameworks and delivers more than 3,500 training modules that cover more than 140 different software weaknesses; including the all-important OWASP Top 10. Secure Code Warrior was founded in 2015 and is headquartered in Sydney, New South Wales, Australia.
RiskSense, Inc. specializes in cyber risk management solutions, offering a cloud-based platform designed to assess and manage cybersecurity risks. The RiskSense Platform allows organizations to evaluate their cyber risk exposure, orchestrate remediation efforts, and monitor outcomes through a self-managed Software as a Service (SaaS) model. Key offerings include vulnerability assessments via RiskSense Vulnerability Discovery, which identifies misconfigurations and security weaknesses, and RiskSense Attack Surface Validation, which assesses vulnerabilities exploited by cyber adversaries. The platform employs risk-based scoring, analytics, and technology-accelerated penetration testing to provide actionable remediation plans and improve the efficiency of security and IT teams. Additionally, it delivers a comprehensive view of cybersecurity risk across organizational levels through the RiskSense Security Score (RS3), integrating internal and external vulnerability data, threat intelligence, and asset criticality to prioritize risk mitigation efforts. Founded in 2006 and headquartered in Sunnyvale, California, RiskSense also operates in Albuquerque, New Mexico, and India.
Cloud Conformity Pty. Ltd. is a software platform that assists companies and IT professionals in monitoring their AWS cloud infrastructure. Founded in 2016 and based in Pyrmont, Australia, the company offers three Software as a Service (SaaS) products focused on audit, security, and cost management. Its platform includes features such as real-time threat detection, cost optimization, compliance, and automation, providing a comprehensive solution for cloud security and governance. Cloud Conformity aims to ensure that its clients' cloud environments are secure, compliant, and efficient at all times. As of October 2019, it operates as a subsidiary of Trend Micro Incorporated.
Panaseer Limited develops a cloud-based cybersecurity intelligence platform that assists enterprise security teams in making informed risk decisions. Founded in 2014 and headquartered in London, with an office in New York, the company offers the Panaseer Security Data Lake, which provides real-time insights into an organization's assets, applications, users, and data sets. This platform identifies gaps in security controls and aligns them with industry standards while facilitating regulatory compliance. By ingesting data from various sources, both cloud-based and on-premises, Panaseer enables organizations to monitor and analyze their cybersecurity posture effectively. The platform automates reporting processes, tailoring insights for stakeholders at different levels, thereby enhancing decision-making across the organization. Security leaders utilize Panaseer’s capabilities to prioritize risks based on their potential impact on the business and optimize overall cyber hygiene practices.
Provider of a cloud based financial security service
Expel, Inc. is a managed security software company that specializes in providing SOC-as-a-service, which includes security monitoring and response for cloud, hybrid, and on-premises environments. Founded in 2016 and based in Herndon, Virginia, Expel leverages existing security signals from its customers to enhance the value of their current security investments. By connecting to customer technology remotely via APIs rather than agents, Expel can initiate monitoring within hours, allowing internal teams to concentrate on their unique security priorities. The company aims to streamline and improve the security operations of organizations, enabling them to respond effectively to emerging threats.
Bugcrowd Inc. operates a crowdsourced cybersecurity platform that connects organizations with a global community of security researchers to identify vulnerabilities in their applications. Founded in 2011 and headquartered in San Francisco, the company provides a range of security testing solutions for web, mobile, source code, and client-side applications. Bugcrowd facilitates both private and public bounty programs, allowing companies of various sizes to efficiently assess their software security and reward researchers for valid findings. The platform supports customized security testing programs tailored to meet the specific needs of clients across multiple sectors, including financial services, healthcare, retail, automotive, technology, and government. Bugcrowd has established strategic partnerships to enhance its offerings and continues to play a significant role in the cybersecurity landscape.
Anomali, Inc. is a provider of a threat intelligence platform designed to enhance the detection and identification of cyber threats within organizations. The platform correlates millions of threat indicators with real-time network activity and extensive forensic log data, facilitating threat detection at various stages of the attack lifecycle and enabling proactive mitigation of potential damage. Anomali offers several solutions, including Anomali Reports for data breach detection tailored to small and medium-sized businesses, and Anomali Enterprise Breach Analytics, which delivers personalized threat intelligence for enterprises. Its ThreatStream platform integrates machine-readable threat intelligence with existing security systems, while the ThreatStream Integrator connects to external threat intelligence sources. Anomali supports collaboration among organizations through trusted circles to share threat intelligence and analysis. The company serves a diverse clientele, including IT personnel, security analysts, and executives across sectors such as healthcare, energy, government, and technology. Founded in 2013 and headquartered in Redwood City, California, Anomali was previously known as Threatstream, Inc. before rebranding in 2016.
The leading provider of cyber risk management software, RiskLens empowers business executives, risk officers and CISOs to manage their organization's cyber risk from the business perspective by quantifying it in financial terms. RiskLens was founded in 2011 and is headquartered in Spokane, Washington.
Panaseer Limited develops a cloud-based cybersecurity intelligence platform that assists enterprise security teams in making informed risk decisions. Founded in 2014 and headquartered in London, with an office in New York, the company offers the Panaseer Security Data Lake, which provides real-time insights into an organization's assets, applications, users, and data sets. This platform identifies gaps in security controls and aligns them with industry standards while facilitating regulatory compliance. By ingesting data from various sources, both cloud-based and on-premises, Panaseer enables organizations to monitor and analyze their cybersecurity posture effectively. The platform automates reporting processes, tailoring insights for stakeholders at different levels, thereby enhancing decision-making across the organization. Security leaders utilize Panaseer’s capabilities to prioritize risks based on their potential impact on the business and optimize overall cyber hygiene practices.
Karamba Security Ltd. develops security software specifically designed for connected vehicles, focusing on safeguarding the internal systems that control car operations. The company's primary offering, Electronic Control Units Endpoint Security, provides solutions for dropper detection and malware prevention, thereby protecting connected cars from cyber threats. This technology fortifies the externally connected controllers within automobiles, which manage telematics, infotainment, and on-board diagnostics, ensuring that only valid code and behaviors are permitted to run. By maintaining the integrity of the vehicle's Controller Area Network (CAN Bus), Karamba's solutions help prevent unauthorized access and attacks. Founded in 2015 and headquartered in Bloomfield Hills, Michigan, the company serves automotive manufacturers and Tier-1 system providers. In addition to automotive applications, Karamba's patented software is applicable to various connected devices and systems, including Industry 4.0 controllers and IoT endpoints, functioning automatically with minimal performance impact.
RiskSense, Inc. specializes in cyber risk management solutions, offering a cloud-based platform designed to assess and manage cybersecurity risks. The RiskSense Platform allows organizations to evaluate their cyber risk exposure, orchestrate remediation efforts, and monitor outcomes through a self-managed Software as a Service (SaaS) model. Key offerings include vulnerability assessments via RiskSense Vulnerability Discovery, which identifies misconfigurations and security weaknesses, and RiskSense Attack Surface Validation, which assesses vulnerabilities exploited by cyber adversaries. The platform employs risk-based scoring, analytics, and technology-accelerated penetration testing to provide actionable remediation plans and improve the efficiency of security and IT teams. Additionally, it delivers a comprehensive view of cybersecurity risk across organizational levels through the RiskSense Security Score (RS3), integrating internal and external vulnerability data, threat intelligence, and asset criticality to prioritize risk mitigation efforts. Founded in 2006 and headquartered in Sunnyvale, California, RiskSense also operates in Albuquerque, New Mexico, and India.
HUMAN is a cybersecurity company focused on safeguarding enterprises from bot attacks, thereby enhancing digital experiences for genuine users. The company employs its advanced Human Verification Engine to protect applications, APIs, and digital media from malicious bot activity, which can lead to significant financial losses and degrade user experience. HUMAN verifies over 10 trillion interactions weekly for major companies and internet platforms, ensuring that digital engagements are legitimate. Its solutions cover a range of sectors, including advertising, publishing, and enterprise, addressing various threats such as automated fraud, data scraping, and account takeovers. Founded in 2012 and headquartered in New York, with additional offices in Washington, D.C., London, and Victoria, HUMAN continues to innovate in the field of online security.
Expel, Inc. is a managed security software company that specializes in providing SOC-as-a-service, which includes security monitoring and response for cloud, hybrid, and on-premises environments. Founded in 2016 and based in Herndon, Virginia, Expel leverages existing security signals from its customers to enhance the value of their current security investments. By connecting to customer technology remotely via APIs rather than agents, Expel can initiate monitoring within hours, allowing internal teams to concentrate on their unique security priorities. The company aims to streamline and improve the security operations of organizations, enabling them to respond effectively to emerging threats.
RiskSense, Inc. specializes in cyber risk management solutions, offering a cloud-based platform designed to assess and manage cybersecurity risks. The RiskSense Platform allows organizations to evaluate their cyber risk exposure, orchestrate remediation efforts, and monitor outcomes through a self-managed Software as a Service (SaaS) model. Key offerings include vulnerability assessments via RiskSense Vulnerability Discovery, which identifies misconfigurations and security weaknesses, and RiskSense Attack Surface Validation, which assesses vulnerabilities exploited by cyber adversaries. The platform employs risk-based scoring, analytics, and technology-accelerated penetration testing to provide actionable remediation plans and improve the efficiency of security and IT teams. Additionally, it delivers a comprehensive view of cybersecurity risk across organizational levels through the RiskSense Security Score (RS3), integrating internal and external vulnerability data, threat intelligence, and asset criticality to prioritize risk mitigation efforts. Founded in 2006 and headquartered in Sunnyvale, California, RiskSense also operates in Albuquerque, New Mexico, and India.
Cofense, formerly known as PhishMe, specializes in phishing threat management, addressing the vulnerabilities of human behavior in organizations. Its intelligence-driven platform empowers employees to actively identify, report, and mitigate various threats, including spear phishing, malware, and drive-by attacks. Cofense serves a diverse clientele across multiple sectors, including defense, energy, financial services, healthcare, and manufacturing, as well as other Global 1000 companies. By providing tools for penetration testing, social engineering, abuse management, incident response, and data forensics, Cofense helps organizations understand user security behavior, enhance overall security, improve incident response capabilities, and minimize the risk of security breaches.
Anomali, Inc. is a provider of a threat intelligence platform designed to enhance the detection and identification of cyber threats within organizations. The platform correlates millions of threat indicators with real-time network activity and extensive forensic log data, facilitating threat detection at various stages of the attack lifecycle and enabling proactive mitigation of potential damage. Anomali offers several solutions, including Anomali Reports for data breach detection tailored to small and medium-sized businesses, and Anomali Enterprise Breach Analytics, which delivers personalized threat intelligence for enterprises. Its ThreatStream platform integrates machine-readable threat intelligence with existing security systems, while the ThreatStream Integrator connects to external threat intelligence sources. Anomali supports collaboration among organizations through trusted circles to share threat intelligence and analysis. The company serves a diverse clientele, including IT personnel, security analysts, and executives across sectors such as healthcare, energy, government, and technology. Founded in 2013 and headquartered in Redwood City, California, Anomali was previously known as Threatstream, Inc. before rebranding in 2016.
Bugcrowd Inc. operates a crowdsourced cybersecurity platform that connects organizations with a global community of security researchers to identify vulnerabilities in their applications. Founded in 2011 and headquartered in San Francisco, the company provides a range of security testing solutions for web, mobile, source code, and client-side applications. Bugcrowd facilitates both private and public bounty programs, allowing companies of various sizes to efficiently assess their software security and reward researchers for valid findings. The platform supports customized security testing programs tailored to meet the specific needs of clients across multiple sectors, including financial services, healthcare, retail, automotive, technology, and government. Bugcrowd has established strategic partnerships to enhance its offerings and continues to play a significant role in the cybersecurity landscape.
ProtectWise is a cybersecurity company based in Denver that specializes in Cloud-Powered Network Detection and Response (NDR). Founded in April 2013, it offers advanced analytics for cloud, hybrid, and enterprise traffic, enabling organizations to enhance their security through real-time and retrospective threat detection. The platform provides full-fidelity packet captures that are indexed and retained indefinitely, creating a searchable network memory. With a focus on pervasive visibility and automated threat detection, ProtectWise employs machine learning and flow-based traffic algorithms to identify threats in real time and uncover previously unknown threats. The company emphasizes an intuitive and immersive visualizer for analytics and forensics, which aids in effective incident response and threat hunting. ProtectWise has raised over $70 million in funding and is led by industry veterans from prominent security firms.
Shadow Networks, Inc. is a privately-held company based in Santa Clara, California, that specializes in security solutions for enterprise and government networks. Established in 2010, the company offers a range of services, including wireless internet, cybersecurity, web design, and hosting. Its flagship product, ShadowBox, is an appliance that creates large-scale simulated hosts and networks to enhance security without compromising actual network performance. The company focuses on developing Active Threat Deception™ solutions to address sophisticated cyber threats, particularly Advanced Persistent Threats (APTs), which remain undetected by many existing security measures. With a management team composed of former executives from leading networking and security firms, Shadow Networks leverages over five years of government-funded research and proven technologies deployed at the U.S. Department of Defense. This innovative approach aims to improve the detection and mitigation of complex cyber attacks, ultimately transforming the security landscape for enterprises and government agencies.
Cofense, formerly known as PhishMe, specializes in phishing threat management, addressing the vulnerabilities of human behavior in organizations. Its intelligence-driven platform empowers employees to actively identify, report, and mitigate various threats, including spear phishing, malware, and drive-by attacks. Cofense serves a diverse clientele across multiple sectors, including defense, energy, financial services, healthcare, and manufacturing, as well as other Global 1000 companies. By providing tools for penetration testing, social engineering, abuse management, incident response, and data forensics, Cofense helps organizations understand user security behavior, enhance overall security, improve incident response capabilities, and minimize the risk of security breaches.
Bugcrowd Inc. operates a crowdsourced cybersecurity platform that connects organizations with a global community of security researchers to identify vulnerabilities in their applications. Founded in 2011 and headquartered in San Francisco, the company provides a range of security testing solutions for web, mobile, source code, and client-side applications. Bugcrowd facilitates both private and public bounty programs, allowing companies of various sizes to efficiently assess their software security and reward researchers for valid findings. The platform supports customized security testing programs tailored to meet the specific needs of clients across multiple sectors, including financial services, healthcare, retail, automotive, technology, and government. Bugcrowd has established strategic partnerships to enhance its offerings and continues to play a significant role in the cybersecurity landscape.
Digital Shadows Ltd. is a cyber threat intelligence company focused on protecting organizations from data loss and targeted cyber attacks. Founded in 2011, the company offers several services, including Data SearchLight, which detects data loss and leaked materials, and Threat SearchLight, which monitors hostile groups to understand potential threats. Additionally, Brand Protect tracks online mentions of an organization to alert clients of damaging information or compliance breaches. VIP Protect further enhances security by identifying personal threats and preventing exposure of sensitive information. The company serves a diverse clientele across sectors such as financial services, healthcare, and national security, helping them discover sensitive data exposed through various online platforms. Based in London with an office in Dallas, Digital Shadows maintains a strategic partnership with Lockpath, Inc.
Drawbridge Networks, Inc., founded in 2014 and based in New York, specializes in innovative cybersecurity solutions aimed at countering sophisticated cyber attacks. Recognizing that modern threats often bypass traditional enterprise network perimeters, the company has developed PathProtect, a tool that provides enhanced visibility and control over network activity. PathProtect enables security teams to segment sensitive systems and quickly quarantine compromised hosts, thereby mitigating the risks associated with lateral movement within an organization’s network. As a subsidiary of OPAQ Networks, Inc. since 2017, Drawbridge Networks is focused on empowering organizations to effectively manage and protect their network environments against evolving cyber threats.
Anomali, Inc. is a provider of a threat intelligence platform designed to enhance the detection and identification of cyber threats within organizations. The platform correlates millions of threat indicators with real-time network activity and extensive forensic log data, facilitating threat detection at various stages of the attack lifecycle and enabling proactive mitigation of potential damage. Anomali offers several solutions, including Anomali Reports for data breach detection tailored to small and medium-sized businesses, and Anomali Enterprise Breach Analytics, which delivers personalized threat intelligence for enterprises. Its ThreatStream platform integrates machine-readable threat intelligence with existing security systems, while the ThreatStream Integrator connects to external threat intelligence sources. Anomali supports collaboration among organizations through trusted circles to share threat intelligence and analysis. The company serves a diverse clientele, including IT personnel, security analysts, and executives across sectors such as healthcare, energy, government, and technology. Founded in 2013 and headquartered in Redwood City, California, Anomali was previously known as Threatstream, Inc. before rebranding in 2016.
Endgame is a leading endpoint security platform that transforms security operations teams and incident responders from crime scene investigators into hunters that prevent damage and loss, and dramatically reduces the time and cost associated with incident response and compromise assessment. Endgame’s platform uses machine learning and data science to prevent and detect unique attacks at the earliest and every stage of the attack lifecycle.
Endgame’s integrated response stops attacks without disrupting normal business operations. It was founded in 2008 and has been operating in Arlington, Virginia.
HUMAN is a cybersecurity company focused on safeguarding enterprises from bot attacks, thereby enhancing digital experiences for genuine users. The company employs its advanced Human Verification Engine to protect applications, APIs, and digital media from malicious bot activity, which can lead to significant financial losses and degrade user experience. HUMAN verifies over 10 trillion interactions weekly for major companies and internet platforms, ensuring that digital engagements are legitimate. Its solutions cover a range of sectors, including advertising, publishing, and enterprise, addressing various threats such as automated fraud, data scraping, and account takeovers. Founded in 2012 and headquartered in New York, with additional offices in Washington, D.C., London, and Victoria, HUMAN continues to innovate in the field of online security.
ProtectWise is a cybersecurity company based in Denver that specializes in Cloud-Powered Network Detection and Response (NDR). Founded in April 2013, it offers advanced analytics for cloud, hybrid, and enterprise traffic, enabling organizations to enhance their security through real-time and retrospective threat detection. The platform provides full-fidelity packet captures that are indexed and retained indefinitely, creating a searchable network memory. With a focus on pervasive visibility and automated threat detection, ProtectWise employs machine learning and flow-based traffic algorithms to identify threats in real time and uncover previously unknown threats. The company emphasizes an intuitive and immersive visualizer for analytics and forensics, which aids in effective incident response and threat hunting. ProtectWise has raised over $70 million in funding and is led by industry veterans from prominent security firms.
CertiVox solutions deliver simple, powerful information security to all things Internet (mainframes, too!), protecting business and individual privacy through the cloud and at rest. CertiVox was founded in 2009 to provide technology and services based on a simple belief: that everyone deserves the right to secure their information exchanges simply and easily. CertiVox's leading-edge encryption, key management and identity management solutions are currently in use at hundreds of the world’s leading corporations and used by individuals across the globe to protect their privacy. The companies passion is to create and share unique, cutting-edge cryptographic innovations for enterprise cloud computing and all things Internet. CertiVox are the only company in the global market today that has the technology in place to arm businesses and individuals with easy-to-use certificateless security solutions for any device and platform. Whether you are a business that wants to safeguard your company’s intellectual property, an ISV or SaaS provider that needs to embed cryptography and key management into your application, or an individual who wants to preserve the privacy of your personal data, CertiVox gives you the power to secure your information for all things Internet. CertiVox’s leading-edge solutions – including MIRACL (Multiprecision Integer and Rational Arithmetic C/C++ Library) Cryptographic SDK, on-demand encryption Key Management Service (KMS) and Identity Management Service (IDMS) – enable cloud service providers, independent software vendors (ISVs), communication providers, and smart device and semiconductor manufacturers to secure their voice and data communication solutions with ease. The PrivateSky Secure Information Exchange Service (SIX) gives individuals, businesses and their partners and customers easy-to-use tools to quickly encrypt email, files and documents without complex infrastructure or user burden. Compliance with mandatory encryption and privacy statues has never been easier. The bottom line: CertiVox's revolutionary certificateless cryptography, identity and key management solutions have taken the hassle out of Internet security, making it easy to securely exchange your information in any form, any time.
Damballa specializes in advanced threat protection, focusing on the detection of active threats that evade conventional security measures. The company employs data science and machine learning techniques to identify successful infections and assess the risk posed by compromised devices, regardless of their operating system or threat vector. Damballa's solutions are designed to discover previously unknown threats, making the company a key player in cybersecurity. It safeguards nearly a billion endpoints across various sectors, including enterprises and major telecommunications providers. The firm also addresses issues related to botnet formation, providing essential safeguards against the misuse of Internet-enabled devices for harmful activities.
Shadow Networks, Inc. is a privately-held company based in Santa Clara, California, that specializes in security solutions for enterprise and government networks. Established in 2010, the company offers a range of services, including wireless internet, cybersecurity, web design, and hosting. Its flagship product, ShadowBox, is an appliance that creates large-scale simulated hosts and networks to enhance security without compromising actual network performance. The company focuses on developing Active Threat Deception™ solutions to address sophisticated cyber threats, particularly Advanced Persistent Threats (APTs), which remain undetected by many existing security measures. With a management team composed of former executives from leading networking and security firms, Shadow Networks leverages over five years of government-funded research and proven technologies deployed at the U.S. Department of Defense. This innovative approach aims to improve the detection and mitigation of complex cyber attacks, ultimately transforming the security landscape for enterprises and government agencies.
Acalvio specializes in Advanced Threat Defense (ATD) solutions that focus on detecting, engaging, and responding to malicious activities within organizations. The company employs patented innovations in deception technology and data science to provide a streamlined DevOps approach, facilitating easy deployment, monitoring, and management of its solutions. Acalvio's platform enhances threat intelligence by leveraging data from both internal and partner ecosystems, which helps organizations achieve a layered defense strategy. This approach not only reduces false positives but also fosters the extraction of actionable intelligence for effective remediation. By enabling early detection of advanced threats and improving security operations center (SOC) efficiency, Acalvio significantly reduces attacker dwell time and supports proactive threat-hunting capabilities for its clients.
Anomali, Inc. is a provider of a threat intelligence platform designed to enhance the detection and identification of cyber threats within organizations. The platform correlates millions of threat indicators with real-time network activity and extensive forensic log data, facilitating threat detection at various stages of the attack lifecycle and enabling proactive mitigation of potential damage. Anomali offers several solutions, including Anomali Reports for data breach detection tailored to small and medium-sized businesses, and Anomali Enterprise Breach Analytics, which delivers personalized threat intelligence for enterprises. Its ThreatStream platform integrates machine-readable threat intelligence with existing security systems, while the ThreatStream Integrator connects to external threat intelligence sources. Anomali supports collaboration among organizations through trusted circles to share threat intelligence and analysis. The company serves a diverse clientele, including IT personnel, security analysts, and executives across sectors such as healthcare, energy, government, and technology. Founded in 2013 and headquartered in Redwood City, California, Anomali was previously known as Threatstream, Inc. before rebranding in 2016.
Bugcrowd Inc. operates a crowdsourced cybersecurity platform that connects organizations with a global community of security researchers to identify vulnerabilities in their applications. Founded in 2011 and headquartered in San Francisco, the company provides a range of security testing solutions for web, mobile, source code, and client-side applications. Bugcrowd facilitates both private and public bounty programs, allowing companies of various sizes to efficiently assess their software security and reward researchers for valid findings. The platform supports customized security testing programs tailored to meet the specific needs of clients across multiple sectors, including financial services, healthcare, retail, automotive, technology, and government. Bugcrowd has established strategic partnerships to enhance its offerings and continues to play a significant role in the cybersecurity landscape.
PerspecSys provides privacy, residency and security solutions for the cloud. Backed by leading venture capital funds, PerspecSys’ Cloud Protection Gateway solutions permit cloud applications to be easily adopted throughout the enterprise. With PerspecSys, sensitive data never leaves a company’s control, eliminating the risks of data transfer, processing, and storage so organizations can realize the benefits of mission-critical cloud computing services.
PerspecSys provides privacy, residency and security solutions for the cloud. Backed by leading venture capital funds, PerspecSys’ Cloud Protection Gateway solutions permit cloud applications to be easily adopted throughout the enterprise. With PerspecSys, sensitive data never leaves a company’s control, eliminating the risks of data transfer, processing, and storage so organizations can realize the benefits of mission-critical cloud computing services.
Endgame is a leading endpoint security platform that transforms security operations teams and incident responders from crime scene investigators into hunters that prevent damage and loss, and dramatically reduces the time and cost associated with incident response and compromise assessment. Endgame’s platform uses machine learning and data science to prevent and detect unique attacks at the earliest and every stage of the attack lifecycle.
Endgame’s integrated response stops attacks without disrupting normal business operations. It was founded in 2008 and has been operating in Arlington, Virginia.
Cofense, formerly known as PhishMe, specializes in phishing threat management, addressing the vulnerabilities of human behavior in organizations. Its intelligence-driven platform empowers employees to actively identify, report, and mitigate various threats, including spear phishing, malware, and drive-by attacks. Cofense serves a diverse clientele across multiple sectors, including defense, energy, financial services, healthcare, and manufacturing, as well as other Global 1000 companies. By providing tools for penetration testing, social engineering, abuse management, incident response, and data forensics, Cofense helps organizations understand user security behavior, enhance overall security, improve incident response capabilities, and minimize the risk of security breaches.
Private Equity Round in 2012
Digital Signal, founded in 2001 and based in Chantilly, Virginia, specializes in three-dimensional long-range facial recognition technology tailored for both government and commercial clients. The company develops LIDAR-based biometric solutions designed to identify non-cooperative individuals and detect faces in crowded environments. Its technology offers comprehensive identity intelligence, encompassing enrollment, monitoring, and identity analytics. By leveraging the advanced capabilities of 3D facial scanning, Digital Signal's solutions can accurately identify subjects in motion or at various angles, even when wearing sunglasses, which enhances surveillance efficiency and effectiveness. The company also provides customized applications to meet specific customer requirements.
Founded in 2009, Fixmo Inc. is the mobile risk management (MRM) company that empowers organizations to mitigate risks around mobile deployments. Using Fixmo's solutions including its flagship Sentinel product, enterprises and government agencies ensure the integrity, compliance and auditability of every device used by their mobile workforce. Through a technology transfer agreement, Fixmo has commercialized and further advanced powerful MRM technologies initially developed by the U.S. National Security Agency (NSA). The company is headquartered in Sterling, VA with offices in Toronto. For more information about mobile risk management visit www.fixmo.com or follow @fixmo on Twitter.
CyberCore Technologies LLC, based in Elkridge, Maryland, provides a range of information communications and technology (ICT) services to government and commercial clients. Founded in 2000, the company specializes in the procurement, integration, configuration, and deployment of various ICT products and mission-critical systems. Its managed services encompass infrastructure management, troubleshooting, and incident resolution for devices such as printers, network access nodes, and desktops, operating under firm-fixed price consumption models and service level agreements. Additionally, CyberCore offers professional services that include software engineering, IT service delivery, help desk support, vulnerability assessments, systems engineering, system administration, and cyber defense. The company has established long-term partnerships with various organizations, including the Department of Defense and the Department of Homeland Security, and focuses on effective technology strategy execution to ensure customer success.
Digital Signal, founded in 2001 and based in Chantilly, Virginia, specializes in three-dimensional long-range facial recognition technology tailored for both government and commercial clients. The company develops LIDAR-based biometric solutions designed to identify non-cooperative individuals and detect faces in crowded environments. Its technology offers comprehensive identity intelligence, encompassing enrollment, monitoring, and identity analytics. By leveraging the advanced capabilities of 3D facial scanning, Digital Signal's solutions can accurately identify subjects in motion or at various angles, even when wearing sunglasses, which enhances surveillance efficiency and effectiveness. The company also provides customized applications to meet specific customer requirements.
Damballa specializes in advanced threat protection, focusing on the detection of active threats that evade conventional security measures. The company employs data science and machine learning techniques to identify successful infections and assess the risk posed by compromised devices, regardless of their operating system or threat vector. Damballa's solutions are designed to discover previously unknown threats, making the company a key player in cybersecurity. It safeguards nearly a billion endpoints across various sectors, including enterprises and major telecommunications providers. The firm also addresses issues related to botnet formation, providing essential safeguards against the misuse of Internet-enabled devices for harmful activities.
Neohapsis specializes in providing security services and governance, risk, and compliance solutions for enterprises and government agencies. The company offers a comprehensive range of application security services, which include application assessments, architecture design assessments, threat modeling, and secure software development lifecycle evaluations. In the realm of cloud security, Neohapsis facilitates rapid deployment of secure cloud applications, conducts cloud application and infrastructure assessments, and ensures cloud data compliance. The firm also addresses various compliance requirements, such as those related to payment card industry data security standards and HIPAA. Additionally, Neohapsis provides IT risk management, third-party risk management, and advisory services, as well as mobile security solutions covering mobile applications, infrastructure, and device security. The organization's expertise extends to network and endpoint security, ensuring a holistic approach to safeguarding information assets.
Unitrends increases uptime and confidence in a world in which IT professionals must do more with less. Unitrends leverages high-availability hardware and software engineering, cloud economics, enterprise power with consumer-grade design, and customer-obsessed support to natively provide all-in-one enterprise backup and continuity. The result is a “one throat to choke” set of offerings that allow our customers to focus on their business rather than backup.
CloudShield is a provider of multi-gigabit, multi-function, programmable, deep packet inspection platforms targeted at large network operators. The company's unique capabilities allow existing content inspection, monitoring, and security applications to be performed at true gigabit speeds on even small packet sizes, and enables entirely new classes of applications and revenue generating services. The CloudShield platform can inspect, process, and modify packets at multi-gigabit speeds without introducing noticeable latency. Through its application partners, CloudShield has helped deliver solutions to carriers in North America, Europe and Asia as well as several important federal government customers.
Arxan Technologies, Inc. specializes in application protection solutions designed to secure software across various platforms, including mobile devices, desktops, servers, and IoT systems. The company offers a range of products, such as GuardIT, which safeguards managed, interpreted, and native code, and EnsureIT, which ensures protection without disrupting the software development lifecycle or performance. Their TransformIT technology employs white box cryptography, while Arxan for Web focuses on defending against server-side attacks and credential theft. Additionally, Arxan provides professional services, including risk assessment and protection design, alongside training and consultation. The company caters to a diverse clientele, including Fortune 500 organizations in sectors such as financial services, healthcare, gaming, and automotive. Founded in 2001 and headquartered in San Francisco, Arxan has established strategic partnerships with firms like IBM and Cigital, enhancing its position as a leader in application security. With over one billion application instances protected, Arxan Technologies offers robust, patented security capabilities that address the evolving threats facing modern applications.
Neohapsis specializes in providing security services and governance, risk, and compliance solutions for enterprises and government agencies. The company offers a comprehensive range of application security services, which include application assessments, architecture design assessments, threat modeling, and secure software development lifecycle evaluations. In the realm of cloud security, Neohapsis facilitates rapid deployment of secure cloud applications, conducts cloud application and infrastructure assessments, and ensures cloud data compliance. The firm also addresses various compliance requirements, such as those related to payment card industry data security standards and HIPAA. Additionally, Neohapsis provides IT risk management, third-party risk management, and advisory services, as well as mobile security solutions covering mobile applications, infrastructure, and device security. The organization's expertise extends to network and endpoint security, ensuring a holistic approach to safeguarding information assets.
Application Security, Inc. specializes in providing database security, risk, and compliance solutions for enterprises both in the United States and internationally. The company's offerings include DBProtect, a comprehensive enterprise solution for database security that encompasses database scanning, vulnerability assessment, and activity monitoring, along with AppDetectivePro, a network-based vulnerability assessment tool that identifies database applications, assesses their security, and addresses vulnerabilities and misconfigurations. Their products facilitate activity monitoring, auditing, compliance, and risk management, ultimately helping organizations enhance their data protection strategies to include database security. The company serves diverse sectors such as government, banking, healthcare, manufacturing, and communications. Founded in 2001 and headquartered in New York, Application Security, Inc. has expanded its presence with additional offices in North America and the United Kingdom, and has established strategic partnerships with major technology firms.
VistaScape is a developer for government and commercial high-value asset protection. VistaScape Security Systems is changing the perspective and expectations of security solution users by replacing traditional human detection and error with consistent computer intelligence and analysis.
CounterStorm, Inc. specializes in providing modular threat detection and mitigation software development kits (SDKs) tailored for security and infrastructure companies, as well as advanced government and commercial users. Founded in 2001 and headquartered in New York, the company was previously known as System Detection, Inc. In 2008, CounterStorm became a subsidiary of Trusted Computer Solutions, Inc. Its offerings enable organizations to enhance their cybersecurity measures through flexible and adaptable software solutions.
CloudShield is a provider of multi-gigabit, multi-function, programmable, deep packet inspection platforms targeted at large network operators. The company's unique capabilities allow existing content inspection, monitoring, and security applications to be performed at true gigabit speeds on even small packet sizes, and enables entirely new classes of applications and revenue generating services. The CloudShield platform can inspect, process, and modify packets at multi-gigabit speeds without introducing noticeable latency. Through its application partners, CloudShield has helped deliver solutions to carriers in North America, Europe and Asia as well as several important federal government customers.
Previstar, Inc. specializes in providing web-based software solutions aimed at enhancing emergency preparedness and response for various sectors, including the armed services and homeland security. The company's offerings include the Continual Preparedness System, which automates incident management processes; CEMPlanner, a tool that guides users through the creation of compliant emergency management plans; Long Term Care (LTC), which supports nursing home facilities in improving their emergency preparedness; and OPENTST, a software application that facilitates the secure exchange of critical information during emergencies. Previstar's products assist in developing exercise plans, preparing for bioterrorism threats, responding to natural disasters, and bolstering the readiness of healthcare facilities. Headquartered in Alexandria, Virginia, the company also operates a research and development facility in Knoxville, Tennessee. Previously known as RAMSAFE Technologies LLC, it rebranded to Previstar, Inc. in 2006.
Orchestria, a leader in Information Protection and Control, provides the software and solutions to help organizations protect and control this critical resource wherever it is stored or used and significantly reduce the risks associated with uncontrolled information. Orchestria addresses a broad set of risks while optimizing the operational burdens associated with the detection and remediation of these risks. Orchestria helps customers prevent data loss, address messaging compliance concerns, and enforce information classification and control.
Core Security provides enterprises with market-leading, threat-aware, identity, access and vulnerability management solutions that enable actionable intelligence.
Digital Evolution is a provider of Web Services Management and Security solutions. The company's products and services provide organizations with the ability to take advantage of XML and Web Services in distributed computing environments while ensuring the performance, efficiency and security of an enterprise Web services infrastructure. The company is headquartered in Santa Monica, California, with sales offices in Boston, New York City, and San Francisco.
CloudShield is a provider of multi-gigabit, multi-function, programmable, deep packet inspection platforms targeted at large network operators. The company's unique capabilities allow existing content inspection, monitoring, and security applications to be performed at true gigabit speeds on even small packet sizes, and enables entirely new classes of applications and revenue generating services. The CloudShield platform can inspect, process, and modify packets at multi-gigabit speeds without introducing noticeable latency. Through its application partners, CloudShield has helped deliver solutions to carriers in North America, Europe and Asia as well as several important federal government customers.
VistaScape is a developer for government and commercial high-value asset protection. VistaScape Security Systems is changing the perspective and expectations of security solution users by replacing traditional human detection and error with consistent computer intelligence and analysis.
Arxan Technologies, Inc. specializes in application protection solutions designed to secure software across various platforms, including mobile devices, desktops, servers, and IoT systems. The company offers a range of products, such as GuardIT, which safeguards managed, interpreted, and native code, and EnsureIT, which ensures protection without disrupting the software development lifecycle or performance. Their TransformIT technology employs white box cryptography, while Arxan for Web focuses on defending against server-side attacks and credential theft. Additionally, Arxan provides professional services, including risk assessment and protection design, alongside training and consultation. The company caters to a diverse clientele, including Fortune 500 organizations in sectors such as financial services, healthcare, gaming, and automotive. Founded in 2001 and headquartered in San Francisco, Arxan has established strategic partnerships with firms like IBM and Cigital, enhancing its position as a leader in application security. With over one billion application instances protected, Arxan Technologies offers robust, patented security capabilities that address the evolving threats facing modern applications.
ClearCube Technology, Inc. specializes in centralized computing and desktop virtualization solutions, offering a range of products including PCoIP zero clients, mini PCs, blade PC workstations, and SmartVDI host platforms. The company also provides Sentral, a management software suite, alongside various professional services. ClearCube has pioneered the centralized computing industry with innovations such as the first blade PC and now offers a comprehensive array of specialized desktops that cater to diverse user requirements, from task-oriented to high-performance applications. Its products are designed for seamless integration with VMware Horizon virtualization tools and are widely adopted across markets such as government, healthcare, financial services, and education. ClearCube's solutions are particularly valued for their ability to enhance security and cost efficiency, making them a trusted choice for many major organizations, including federal agencies and large corporations. Founded in 1996 and based in Cedar Park, Texas, ClearCube was previously known as Vicinity Systems, Inc. before rebranding in 2000.