Alternatives to Check Point Application Control
Compare Check Point Application Control alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to Check Point Application Control in 2026. Compare features, ratings, user reviews, pricing, and more from Check Point Application Control competitors and alternatives in order to make an informed decision for your business.
-
1
ManageEngine Endpoint Central
ManageEngine
ManageEngine Endpoint Central is built to secure the digital workplace while also giving IT teams complete control over their enterprise endpoints. It delivers a security-first approach by combining advanced endpoint protection with comprehensive management, allowing IT teams to manage the entire endpoint lifecycle, all from a single console. With automated patching across Windows, Mac, Linux and 1,000+ third-party applications, it ensures vulnerabilities are mitigated before attackers can exploit them. Its next-gen antivirus (NGAV) feature, powered by AI-driven behavioural detection, provides 24/7 protection against ransomware, malware, and zero-day threats. Endpoint Central further strengthens enterprise defenses with a broad set of security capabilities, including vulnerability assessment and mitigation, peripheral device control, data loss prevention, application control, endpoint privilege management, encryption with FileVault and BitLocker, and browser security. -
2
ThreatLocker
ThreatLocker
The ThreatLocker suite of security tools are powerful and designed so that everyone from businesses to government agencies to academic institutions can directly control exactly what applications run on their networks. We envision a future in which all organizations can chart their own course free from the influence of cybercriminals and the damage their incursions cause, and our team of veteran cybersecurity professionals created ThreatLocker to make this vision a reality. The team at ThreatLocker has been developing cybersecurity tools for decades, including programs to enhance email and content security, and this is our most innovative and ambitious cybersecurity solution yet. We developed this unique cybersecurity system because we believe that organizations should have complete control of their networks and should not have to live in fear of the next malware attack. To learn more, visit ThreatLocker.com. -
3
Airlock Digital
Airlock Digital
Airlock Digital is an application control solution that enforces a Deny by Default security posture. It enables organizations to define trusted applications, scripts, libraries, and processes at a granular level using file hash, path, publisher, or parent process. Only those explicitly defined as trusted are allowed to execute. The platform supports Windows, macOS, and Linux systems, including legacy operating systems and operational technology (OT) environments. Airlock Digital includes allowlisting and blocklisting capabilities, integrated file reputation checks via VirusTotal, and detailed logging for audit and compliance. Exception management is supported through features such as rule-based overrides and time-bound One-Time Passwords (OTPs). Centralized policy management allows consistent enforcement across large and distributed environments. The platform is available as an on-premises deployment, in the cloud, or as a managed hosted service. -
4
Heimdal® Endpoint Detection and Response is our proprietary multi-solution service providing unique prevention, threat-hunting, and remediation capabilities. It combines some of the most advanced threat-hunting technologies: - Next-Gen Antivirus - Privileged Access Management - Application Control - Ransomware Encryption Protection - Patch & Asset Management - Email Security - Remote Desktop - Threat Prevention ( DNS based ) - Threat Hunting & Action Center With 9 modules working together seamlessly under one convenient roof, all within one agent and one platform, Heimdal Endpoint Detection and Response grants you access to all the essential cybersecurity layers your business needs to protect itself against both known and unknown online and insider threats. Our state-of-the-art product empowers you to quickly and effortlessly respond to sophisticated malware with stunning accuracy, protecting your digital assets and your reputation in the process as well.Starting Price: $0/month
-
5
Securden Unified PAM
Securden
Discover and consolidate all privileged account credentials into a centralized repository. Regulate access to all critical IT assets. Grant just-in-time access, and enforce least privilege on devices in the organization. • Enforce remote password resets on devices. • Manage Windows domain, service, local admin accounts & their dependencies. • Eliminate hardcoded-credentials from scripts and configuration files. • Automate password access for non-human identities with APIs. • Protect SSH keys, track usage & associate with UNIX devices. • Share accounts with granular access controls. • One-click remote access to assets without revealing passwords. • Grant Just-In-Time access to privileged accounts. • Shadow, Monitor & record live sessions. • Endpoint privilege management with application controls. • Integrate with AD, AzureAD for user provisioning. • Integrate with solutions for MFA, SIEM, ITSM & SSO. • Comply with regulations with audit trails & custom reports -
6
Securden Endpoint Privilege Manager
Securden
Eliminate local administrator rights on Windows servers and endpoints. Seamlessly elevate applications for standard users. Enforce the principle of least privilege and zero trust with Endpoint Privilege Management. Automate PEDM using policy-based application control. •Eliminate local admin rights on Windows endpoints •Manage applications that require administrative privileges •Define who can access what applications & automate application control through whitelisting & blacklisting •Policy-based access, even for offline endpoints & remote employees •On-demand privilege elevation on online & offline endpoints •Grant temporary full administrator privileged for standard users when required •Track application usage & privilege elevation trends •Continuously monitor local admin accounts & detect if new local admin accounts are created •Ensure compliance with regulations with comprehensive audit trails •Highly scalable and enterprise ready -
7
Zscaler
Zscaler
Zscaler, creator of the Zero Trust Exchange platform, uses the largest security cloud on the planet to make doing business and navigating change a simpler, faster, and more productive experience. The Zscaler Zero Trust Exchange enables fast, secure connections and allows your employees to work from anywhere using the internet as the corporate network. Based on the zero trust principle of least-privileged access, it provides comprehensive security using context-based identity and policy enforcement. The Zero Trust Exchange operates across 150 data centers worldwide, ensuring that the service is close to your users, co-located with the cloud providers and applications they are accessing, such as Microsoft 365 and AWS. It guarantees the shortest path between your users and their destinations, providing comprehensive security and an amazing user experience. Use our free service, Internet Threat Exposure Analysis. It’s fast, safe, and confidential. -
8
Heimdal Application Control
Heimdal®
Heimdal Application Control is a novel approach to integrative application management and user rights curation. Modular and easy to set up, App Control empowers the system administrator to create all-encompassing rule-based frameworks, streamline auto-dismissal or auto-approval flows, and enforce individual rights per Active Directory group. The tool’s uniqueness comes from its ability to perfectly pair with a (PAM) Privileged Access Management solution, imparting the user with granular oversight of software inventories and hardware assets. -
9
PolicyPak
Netwrix
The PolicyPak Platform gives organizations with different management and security requirements the flexibility to choose an edition right for them. In today's hybrid work environment, users access their desktops at the office, at home, traveling, through a kiosk, and virtually. Managing and securing these environments creates a challenge because not all management systems were designed for modern management scenarios. PolicyPak provides solutions that modernize and extend the power of your existing infrastructure. Using PolicyPak with your Active Directory simplifies how you manage and secure Active Directory joined computers with Microsoft Group Policy. Microsoft Group Policy is a powerful technology you rely upon day after day. But it needs a boost to meet your modern enterprise's management, security, reporting, and automation needs. -
10
AhnLab TrusGuard
AhnLab
The NGFW TrusGuard has been acknowledged by a through market assessment for its technology, performance and stability. The firewall, IPS, application control, VPN, C&C, Anti-Virus/Anti-Spam and DLP protect the business environment. TrusGuard has full lineup from the low-end to data center level models. Scales up to protect high-performance networks. Capable of handling growing network traffic, thanks to optimization for high-performance multicore environments. Ensures network stability. Protects network resources (such as, websites, database servers, applications servers, and client machines) from unknown network attacks with the 3-step defense. Covers IPv6 network environments. Complete support for IPv6 networks. Reduces total cost of operation (TCO). Offers cost cuts compared to integrating multiple security products Relieves operational and labor costs associated with managing multiple security solutions. Increases productivity and network efficiency. -
11
Carbon Black App Control
Broadcom
Carbon Black App Control is a robust application control solution designed to prevent malware, ransomware, and other unauthorized applications from running on endpoints. It enables organizations to enforce security policies by only allowing trusted applications to execute, reducing the risk of cyber threats and improving endpoint security. With its centralized management console, Carbon Black App Control provides visibility and control over the applications running in an organization, ensuring that all software complies with security policies. This solution offers real-time protection and detailed reporting capabilities, allowing IT teams to easily detect and respond to security incidents. -
12
Ivanti Application Control
Ivanti
Application Control combines dynamic allowed and denied lists with privilege management to prevent unauthorized code execution without making IT manage extensive lists manually and without constraining users. Automated requests and approvals via helpdesk systems lighten the load for IT staff while providing users a streamlined experience. With Application Control you can manage user privileges and policy automatically, at a granular level, and allow for optional self-elevation when exceptions occur. Give your users access to what they need quickly, with seamless app access that relies on granular, context-aware policies. Create flexible, preventive policies to help ensure only known and trusted applications can execute on a system. Enable automated requests for emergency privilege elevation or application access via integrated IT helpdesk system. -
13
Application Control Plus is an enterprise solution that leverages application control and privilege management features to fortify endpoint security. With application discovery, rule-based whitelisting/blacklisting, management of application-specific privileges, and just-in-time access enabled for temporary requirements, this software ensures that it caters to the end-to-end application needs of businesses. Ensure complete endpoint security by creating whitelists of applications that you trust, and keep all untrusted applications out of your network. Protect your risky legacy OS machines by deploying application control policies that prevent vulnerable applications without a patch from running. Augment the security of customer-facing systems such as point-of-sale or fixed-function machines by simulating an environment under lockdown using policies run in Strict Mode.
-
14
Trellix Application Control
Trellix
Advanced persistent threats (APTs) to control points, servers, and fixed devices via remote attack or social engineering make it increasingly difficult to protect your business. Trellix Application Control helps you outsmart cybercriminals and keeps your business secure and productive. Ensure that only trusted applications run on devices, servers, and desktops. As users demand more flexibility to use applications in their social and cloud-enabled business world, Trellix Application Control gives organizations options to maximize their whitelisting strategy for threat prevention. For unknown applications, Trellix Application Control provides IT with multiple ways to enable users to install new applications: User Notifications and user self-approvals. Prevents zero-day and APT attacks by blocking the execution of unauthorized applications. Use inventory search and pre-defined reports to quickly find and fix vulnerabilities, compliance, and security issues in your environment. -
15
Delinea Privilege Manager
Delinea
Privilege Manager is the most comprehensive endpoint privilege elevation and application control solution that operates at cloud speed and scale. You can prevent malware from exploiting applications by removing local administrative rights from endpoints and implementing policy-based application controls. Privilege Manager prevents malware attacks without causing any end user friction that slows productivity. Available both on-premises and in the cloud, enterprises and fast-growing teams can manage hundreds of thousands of machines through Privilege Manager. With built-in application control, real-time threat intelligence, and actionable reporting, it is easier than ever to manage endpoints and demonstrate compliance with least privilege policies to executives and auditors. -
16
WatchGuard Application Control
WatchGuard Technologies
Allow, block, or restrict access to applications based on a user’s department, job function, and time of day. It’s never been easier to decide who, what, when, where, why and how applications are used on your network. WatchGuard Application Control is part of the WatchGuard Basic Security Suite. The Basic Security Suite includes all the traditional network security services typical to a UTM appliance: Intrusion Prevention Service, Gateway AntiVirus, URL filtering, application control, spam blocking and reputation lookup. It also includes our centralized management and network visibility capabilities, as well as our standard 24x7 support. -
17
PC Matic
PC Matic
PC Matic Pro's application whitelisting is a critical preventative layer of cyber-protection that resides on top of other endpoint security solutions. zero trust whitelisting solutions prevent hacking and cyber-attacks. Block all malware, ransomware, and malicious scripts from executing. Protect your business data, users, and network with our whitelist cybersecurity solution. PC Matic Pro represents a long overdue shift in the cybersecurity industry to absolute prevention. Today's threats to critical infrastructure, industry, and all levels of government demand nothing less. PC Matic Pro provides a patented default-deny security layer at the device that blocks all unknown executions without introducing headaches for IT. Unlike traditional security solutions, customer infections aren’t required to strengthen the whitelist architecture. Local overrides can be added after prevention with a focus on accuracy and without concern for responding to an already active infection.Starting Price: $50 per year -
18
Usage Panda
Usage Panda
Layer enterprise-level security features over your OpenAI usage. OpenAI LLM APIs are incredibly powerful, but they lack the granular control and visibility that enterprises expect. Usage Panda fixes that. Usage Panda evaluates security policies for requests before they're sent to OpenAI. Avoid surprise bills by only allowing requests that fall below a cost threshold. Opt-in to log the complete request, parameters, and response for every request made to OpenAI. Create an unlimited number of connections, each with its own custom policies and limits. Monitor, redact, and block malicious attempts to alter or reveal system prompts. Explore usage in granular detail using Usage Panda's visualization tools and custom charts. Get notified via email or Slack before reaching a usage limit or billing threshold. Associate costs and policy violations back to end application users and implement per-user rate limits. -
19
Google Cloud Firewalls
Google
Google Cloud firewalls are fully embedded in the cloud networking fabric, highly scalable, and granular to meet your enterprise’s unique security needs. Flexible and customizable: Benefit from protection at the organization, folder, and project level with flexible control over firewall rules and policies. Visibility and optimization: Gain insights into firewall rule usage and optimization opportunities to help you keep your deployment safe and easy to manage. Granular controls: Leverage network tags and service accounts to define granular control for both north-south and east-west traffic. -
20
Arista NG Firewall
Arista
Arista's Next Generation Firewall (NG Firewall) is a comprehensive network security platform designed to simplify and enhance organizational cybersecurity. It integrates multiple security functions into a single, modular software solution, providing a user-friendly interface for efficient management. NG Firewall proactively blocks malware, hacking attempts, phishing schemes, and other threats before they reach user devices, ensuring robust protection across the network. The platform offers real-time, database-driven reporting without the need for additional appliances. Administrators can monitor network status via a centralized dashboard, maintain compliance with detailed event logs, and receive alerts on network anomalies or unusual user behavior. NG Firewall effectively manages rogue applications, encrypted web requests, malware distribution points, and spam, providing granular control over network traffic. -
21
Palo Alto Networks Threat Prevention
Palo Alto Networks
Organizations face a barrage of attacks by threat actors driven by a variety of motives, including profit, ideology/hacktivism, or even organizational discontent. Attackers’ tactics continue to evolve, and traditional IPS solutions have not been able to keep pace and effectively protect organizations. To prevent intrusions, malware and command-and-control at each stage of its lifecycle and shut down advanced threats, Threat Prevention accelerates the security capabilities of our next-generation firewalls, protecting the network from advanced threats by identifying and scanning all traffic, applications, users, and content, across all ports and protocols. Daily threat intelligence is automatically curated, delivered to the NGFW and implemented by Threat Prevention to stop all threats. Reduce resources, complexity and latency by automatically blocking known malware, vulnerability exploits, and C2 using existing hardware and security teams. -
22
Forcepoint NGFW
Forcepoint
The Forcepoint Next Generation Firewall has multiple layers of defenses that protect your network, your endpoints, and your users against modern, advanced threats. Ability to manage large quantities of firewalls and fleets of firewalls at scale without compromising performance. Ease of management, the granularity of controls, and scalability of management capabilities. Assessed block rate, IP Packet Fragmentation/TCP Segmentation, false-positive testing, stability, and reliability. Assessed ability to protect against evasions, HTTP evasions, and a combination of evasion techniques. Designed like software, rather than hardware, NGFW gives you the flexibility to deploy on hardware, virtually or in the cloud. Open API's let you customize automation and orchestrations to your own specifications. Our products routinely undergo rigorous certification testing to meet the most stringent needs of sensitive and critical industries, agencies, organizations and governments around the world. -
23
Centralize and simplify your firewall admin and intrusion prevention. With visibility across ever-changing and global networks, you can manage modern applications and malware outbreaks in real-time. Easily switch between managing hundreds of firewalls, controlling applications, and blocking intrusion attempts and the spread of malware. Write a policy and scale its enforcement across multiple security controls within your network. Enjoy unified management and control over firewalls, applications, intrusion prevention, and file and malware protection. Comprehensibly manage your firewalls using our on-premises hardware or from any virtual environment of your choice. Flexibly deploy the same manager on your public cloud infrastructure, or boost productivity one step further with our cloud-delivered solution. Detect the most sophisticated threats sooner across all vectors and prioritize by impact for faster responses.
-
24
Sangfor Athena NGFW
Sangfor Technologies
Sangfor Athena NGFW is a next-generation firewall that provides comprehensive protection for network perimeters using AI-powered threat detection. It blocks over 99% of external threats in real time through cloud-delivered AI and integrates network and web application security into a single appliance. The firewall includes a built-in SOC Lite module for rapid threat assessment and incident response. Sangfor’s solution connects with a holistic security ecosystem, including endpoint protection, secure web gateways, and extended detection and response tools. Recognized for its proven security effectiveness, Athena NGFW holds top ratings in independent cybersecurity tests. It is trusted by enterprises across industries to safeguard valuable data and maintain stable network performance. -
25
OpenText ZENworks Suite
OpenText
OpenText ZENworks Suite is a unified endpoint management platform designed to simplify the way organizations manage devices, applications, security policies, and software updates. It centralizes control of thousands of endpoints, ensuring consistent deployment, compliance, and visibility across the organization. With automated patching, encryption, and policy-driven security, ZENworks strengthens protection while reducing IT workload. The suite helps IT teams eliminate tool sprawl by consolidating asset management, endpoint security, software delivery, and device configuration into one solution. Hybrid work support makes it easy to manage devices remotely and securely without complicated infrastructure. Ultimately, ZENworks improves operational efficiency, lowers IT costs, and enhances organizational productivity. -
26
Palo Alto Networks Strata
Palo Alto Networks
Strata is our industry-leading network security suite. Prevent attacks and manage network transformation while consistently securing users, applications, and data, wherever they reside. Drawing on data collected through PAN-OS device telemetry, Device Insights gives you an overview of the health of your next-generation firewall deployment and identifies areas of improvement. Driven by innovation and dedicated to protecting your business proactively, our award-winning security features the world's first ML-Powered NGFW and empowers you to stay ahead. Best-in-class capabilities, natively integrated, resulting in simplified and highly effective networking and security. Our ML-Powered Next-Generation Firewalls enable you to stay ahead of unknown threats, see everything, including IoT, and reduce errors with automatic policy recommendations. -
27
Appmobi
Appmobi
Appmobi has a serious solution, automated real-time threat detection and remediation. With over 2 million apps in the App Store, 5 billion mobile phones in use, and over 8 billion connected devices in the market today, keeping up with every cyber threat to such a massive number of apps and devices has become a nearly impossible task for IT teams. Appmobi puts the power back into the hands of IT to monitor and resolve app and IoT threats in real-time. Our easy-to-use solution tracks usage patterns, notifies IT when there is a threat, and even takes remedial actions to stop breaches before they occur. Appmobi draws from behavioral and environmental data to monitor usage patterns in real-time and uses artificial intelligence and a customizable rules engine to identify suspicious behavior that may lead to an application breach or data hack. When a rule or string of rules is triggered, Appmobi can recommend a course of action or automatically launch immediate protections. -
28
Check Point Mobile Access
Check Point Software
Check Point Mobile Access is the safe and easy solution to securely connect to corporate applications over the Internet with your Smartphone, tablet or PC. Integrated into the Check Point Next Generation Firewalls (NGFW), Mobile Access provides enterprise-grade remote access via both Layer-3 VPN and SSL/TLS VPN, allowing you to simply and securely connect to your email, calendar, contacts and corporate applications. Easy access for mobile workers – simply connect from mobile devices to secure connectivity for smartphones, tablets, PCs and laptops. Communicate securely with proven encryption technology, two-factor authentication, and User-Device pairing to eliminate network security threats. Integrated in Next Generation Firewalls enables consolidation of security controls decreasing costs. -
29
Smoothwall Firewall
Smoothwall
Smoothwall Firewall features anti-malware protection, HTTPS inspection, anonymous proxy detection & blocking, and intrusion detection & prevention, to provide you with a complete all-in-one protection package. Combines with Smoothwall Filter for a complete all in one protection package. Can be purchased independently or combined to offer a unified threat management solution. Combines Layer 7 application control with perimeter firewall and stateful packet inspection to provide Next-Generation firewall functionality. Smoothwall is an eligible firewall service provider for Category 2 E-Rate funding. Combines with Smoothwall Filter - the only fully content-aware web filter in US education. You can choose which Filter deployment method works for you. Our US-based customer support team are education specialists and available to help whenever you need them. -
30
Check Point URL Filtering
Check Point Software Technologies
Web access is a predominant route for attacks on enterprises. Check Point URL Filtering controls access to millions of web sites by category, users, groups, and machines to protect users from malicious sites and enable safe use of the Internet. URL Filtering employs UserCheck technology, which educates users on web usage policy in real time. Protects users with cloud-based categorization and UserCheck technology. Enable on any Check Point security gateway reducing total cost of ownership. Unified security across all aspects of the web with full application control integration. Security teams must be able to isolate, secure, and control every device on the network at all times. Check Point solutions provide you with the ability to block infected devices from accessing corporate data and assets, including employees’ mobile devices and workstations, IoT devices and industrial control systems. -
31
baramundi Management Suite
baramundi Software USA
Modular, scalable and highly cost-effective Unified Endpoint Management system for comprehensive IT management, security and workflow automation. Modules work together via a single database in a single user interface. Select any of 18 available modules now and add others as needed for OS Install & Cloning, Patch Management, Vulnerability Management, MDM, Remote Control, Inventory, VM Management, SNMP Device Management, Application Control, Disaster Recovery, Personal Backup and more.Starting Price: $5000.00/one-time -
32
Powered by the Global Intelligence Network, Symantec WebFilter and Intelligence Services deliver real-time web content protection, security categorization and web application control. The web filtering service automatically filters and categorizes billions of URLs into over 80 predefined categories, including 12 security categories that can be easily managed by IT administrators. When combined with Symantec Secure Web Gateway, including Blue Coat ProxySG, you have the most accurate and granular web application control policy engine for your entire enterprise web filter and cloud access protection. The Advanced Intelligence Services provide additional new services that add more flexibility and options to your webfilters, content control, policy and security management with URL threat risk levels and geolocation.
-
33
Delinea Cloud Access Controller
Delinea
Gain granular control over web applications and web-based cloud management platforms. Delinea's Cloud Access Controller provides a comprehensive PAM solution that operates at cloud speed and is quick to deploy and secure access to any web application. With Cloud Access Controller, you can easily integrate your existing authentication solutions with any web application without having to write any additional code. Apply granular RBAC policies that enforce least privilege and zero trust initiatives, even to custom and legacy web applications. Specify what an individual employee is allowed to read or modify within any web application. Grant, manage and revoke access to cloud applications. Specify who gets access to what, at a granular level. Track usage of each and every cloud application. Clientless session recording without agents. Secure access to all web applications, including social media, custom, and legacy web applications. -
34
Workspace ONE
Omnissa
Simply and securely deliver and manage any app on any device with Workspace ONE, an intelligence-driven digital workspace platform. Workspace ONE integrates access control, application management and multi-platform endpoint management into a single platform and is available as a cloud service or on-premises deployment. Enables enterprises to maximize employee engagement and productivity by empowering employees with a personalized experience and Day One access to any app on any device. Embrace a single, cloud-native solution for unified endpoint management—for any device and any use case. Eliminate silos and manage every device and app type faster, with fewer point solutions and more capabilities. Secure devices, users, and data with conditional access, automated patching, and configuration policies to achieve a comprehensive Zero Trust security approach. -
35
AirDroid Business
Sand Studio
AirDroid Business is a full-fledged Enterprise Mobile Device Management (EMM/MDM) Solution for managing and securing all Android endpoints with powerful remote monitoring and remote control features. Some popular device types are smartphones and tablets, digital signages, POS, restaurant kiosks, IoT, and other OEM Android endpoints. It is a solution that can ensure SMBs and Enterprises enhance their business mobility and device security, along with an excellent support team for the best customer service. AirDroid Business MDM Solution Highlights: *Multiple enrollment options: Zero-Touch Enrollment, AE Enrollment, Enroll with Device Owner, Regular Enrollment *Google Play apps management *Unattended remote access *Batch operations *Kiosk mode & Policy *Remote control with Black Screen security mode *Location tracking *Application management service(AMS) *Whitelisting and blocklisting browsers & apps *Remote monitor devices’ status *Real-time alerts & notificationsStarting Price: $12 /device/year -
36
Juniper Secure Edge
Juniper Networks
Juniper Secure Edge provides full-stack Secure Services Edge (SSE) capabilities to protect web, SaaS, and on-premises applications and provide users with consistent and secure access that follows them wherever they go. When combined with Juniper’s AI-driven SD-WAN, Juniper Secure Edge provides a best-in-suite SASE solution that helps you deliver seamless and secure end-user experiences that leverage existing architectures and grow with them as they expand their SASE footprint. Identifies applications and inspects traffic for exploits and malware with over 99.8 percent effectiveness. Protects web access by enforcing acceptable use policies and preventing web-borne threats. Provides visibility into SaaS applications and granular controls to ensure authorized access, threat prevention, and compliance. Classifies and monitors data transactions and ensures business compliance requirements and data-protection rules are followed. -
37
VIPRE Endpoint Security
VIPRE Security Group
VIPRE Endpoint delivers comprehensive defense against today’s sophisticated malware without the complexity of other solutions. We keep your total cost of ownership low while providing advanced security powered by machine learning, real-time behavioral analysis, and a global threat intelligence network. VIPRE combines a modern endpoint solution with time-saving efficiencies, ensuring your organization stays secure and operational. Protecting files, applications, and networks, VIPRE offers complete malware defense. It also helps enforce internet usage policies with granular controls that support employer duty-of-care. Dynamic dashboards provide real-time insights into the status of your endpoint environment, making it easier to monitor and manage security across your organization. Available as a core next-generation AV solution, a full EDR solution, or a combined EDR+MDR solution, we have a package that will work for you.Starting Price: $34/seat/year -
38
Mosyle
Mosyle
An Enhanced MDM, an Endpoint Security, an Internet Privacy & Security, an Identity Management, an Application Management... NO LONGER five separate solutions. Mosyle is the only solution that fully integrates five different applications on a single Apple-only platform, allowing businesses and schools to easily and automatically deploy, manage and protect all Apple devices -
39
Palo Alto Networks Cloud NGFW
Palo Alto Networks
Palo Alto Networks Cloud NGFW for AWS delivers advanced network security designed specifically for cloud environments. It offers easy deployment with no infrastructure to manage, allowing users to protect AWS VPCs quickly through a managed service available on AWS Marketplace. The firewall provides consistent policy management, supports automation through APIs and Terraform, and integrates with Panorama for unified management. Cloud NGFW blocks intrusions, data exfiltration, and command-and-control traffic while enforcing Zero Trust principles. Its deep learning capabilities detect and prevent zero-day attacks in real time, offering full Layer 7 protection against web-based threats and evasions. This service streamlines cloud security by eliminating complex legacy appliances and securing traffic crossing trust boundaries. -
40
Protect applications from malicious and unwanted internet traffic with a cloud-based, PCI-compliant, global web application firewall service. By combining threat intelligence with consistent rule enforcement, Oracle Cloud Infrastructure Web Application Firewall strengthens defenses and protects internet-facing application servers. Adopt an edge security strategy with a web application firewall that aggregates threat intelligence from multiple sources including WebRoot BrightCloud® and more than 250 predefined OWASP, application, and compliance-specific rules. Protect applications deployed in Oracle Cloud Infrastructure, on-premises, and in multicloud environments with access controls based on geolocation data, whitelisted and blacklisted IP addresses, HTTP URL, and HTTP header. Identify and block malicious bot traffic with an advanced set of verification methods, including JavaScript, CAPTCHA, device fingerprinting, and human interaction algorithms.
-
41
SonicWall Mobile Connect
SonicWall
SonicWall Mobile Connect is a secure remote access solution that enables employees to safely connect to corporate resources from various devices, including those running iOS, macOS, Android, Chrome OS, and Kindle Fire. By establishing an encrypted SSL VPN tunnel, Mobile Connect ensures that all data transmitted between the device and the corporate network remains protected from interception. This application integrates seamlessly with SonicWall's Secure Mobile Access (SMA) and next-generation firewall appliances, allowing IT administrators to enforce granular access policies based on user identity, device type, and application. Additionally, Mobile Connect supports features such as per-application VPN, context-aware authentication, and centralized policy management, providing a comprehensive solution for secure mobile access.Starting Price: Free -
42
Relution
Relution
Manage iOS, Android, and Windows 10/11 devices. Secure via restrictions and configurations. Use Apple DEP & VPP, Android Enterprise & Samsung Knox. Inventory and manage native and public Apple, Android, and Windows mobile apps. Review, approve, and publish apps for usage on mobile devices. Enable employees, partners, and external stakeholders to access your enterprise apps through your own app store in your corporate identity. Manage your Apple iOS and Android tablets easily and securely and deploy the right apps in your school. Companies, Authorities and Teams of every size benefit from Relution's Mobile Device and App Management. Resellers, Educational Institutions and IT Retailers use Relution to provide the service to their customers. Relution is one of the most relevant IT applications in the digital education space. For over 10 years, Relution has been the mobile device management solution for privacy-compliant and cross-platform device management.Starting Price: $2 per month -
43
Lumen Web Application Firewall
Lumen Technologies
Lumen℠ Web Application Firewall protects your data, employees and customers with seamless security that deters hackers and cyber-criminals. LumenSM Web Application Firewall delivers crucial web and application protection that helps prevent attacks and reduce costly data breaches and downtime by combining multiple defenses that accurately pinpoint and prevent attacks without blocking your customers. Provides a critical additional layer of protection to your perimeter firewall infrastructure with 24x7 monitoring so you can react quickly and efficiently to threats as they emerge. Identifies leaks of sensitive data—such as credit cardholder information and social security numbers—by inspecting encrypted traffic and detecting and blocking malicious web requests. Analyze current web applications to determine vulnerabilities with an application security review and analysis to identify possible flaws that could harm your website security, resulting in costly downtime for your business. -
44
Palo Alto Networks Next-Generation Firewalls
Palo Alto Networks
Palo Alto Networks offers ML-powered Next-Generation Firewalls (NGFW) that use inline deep learning to detect and stop the most evasive and unknown zero-day threats. These firewalls provide zero-delay signature updates, ensuring threats are blocked within seconds across the network. The platform delivers detailed visibility into IoT and connected devices, profiling them accurately to prevent unmanaged access. With AI-driven operations, it maximizes security effectiveness while minimizing downtime and resource costs. Recognized as a leader by industry analysts like Forrester, Palo Alto Networks’ NGFWs protect organizations of all sizes and complexities. They support a wide range of deployment environments including branch offices, data centers, public cloud, and 5G networks under a unified security architecture. -
45
GlassWire
GlassWire
Instantly see who or what your PC is talking to on GlassWire's network monitoring graph, plus see what your PC may have connected to in the past. Detect spyware, malware, badly behaving apps, and bandwidth hogs, then block their connections. Monitor other PCs on your network and get alerted when new unknown devices join your WiFi. GlassWire warns you of network related changes to your PC, or unusual changes to your apps that could indicate malware. GlassWire offer a Consumer Solution and a Business solution, to suit the needs of both personal users and IT professionals. Among the features: Real-Time Monitoring to keep an eye on active and past network activity Threat. Threat Detection. GlassWire's built-in firewall detects and blocks potential threats. Application Tracking to Identify which applications are using your network and track their usage patterns. Bandwidth Usage, to stay informed about data consumption, And many more!Starting Price: $35.88/year/user -
46
Azure Web Application Firewall
Microsoft
Azure Web Application Firewall is a cloud-native service that protects web apps from common web-hacking techniques such as SQL injection and security vulnerabilities such as cross-site scripting. Deploy the service in minutes to get complete visibility into your environment and block malicious attacks. Protect your web applications in just a few minutes with the latest managed and preconfigured rule sets. The Azure Web Application Firewall detection engine combined with updated rule sets increases security, reduces false positives, and improves performance. Use Azure Policy to help enforce organizational standards and assess compliance at scale for Web Application Firewall resources. Get an aggregated view to evaluate the overall state of your environment.Starting Price: $0.443 per gateway per hour -
47
Ivanti Security Controls
Ivanti
Ivanti Security Controls is an automated patch management solution that simplifies security through unified prevention, detection, and response across physical and virtual environments. It automatically discovers vulnerabilities and missing OS or third-party application patches, then deploys updates to servers, workstations, VMs, and templates, online or offline, via agentless patching and remote task scheduling to minimize disruption. Granular privilege management implements just enough and just-in-time administration to remove full admin rights while elevating access temporarily for approved tasks. Dynamic allowlisting enforces preventive policies so only known, trusted applications can execute, supported by a data-gathering mode that monitors application usage to refine controls and eliminate false positives. CVE-to-patch list creation automates grouping of relevant updates from any vulnerability assessment, and REST APIs enable integration and orchestration. -
48
Ivanti Neurons for Secure Access is a unified, cloud-based platform that integrates traditional VPN (Ivanti Connect Secure) and Zero Trust access (Ivanti Neurons for Zero Trust Access) gateways under a single pane of glass, delivering real-time insights and centralized control for hybrid work environments. It automatically discovers, classifies, and catalogs private applications, gathers usage metrics for chargebacks, and enforces granular access policies with continual verification of users, devices, and apps. A comprehensive visibility dashboard spans all gateways, users, devices, and activities, while adaptive security leverages user behavior analytics to detect anomalies and dynamically respond to emerging threats. Gateway lifecycle management simplifies deployment, configuration, upgrades, and retirement, and clean REST APIs enable extensibility with third-party identity providers, SIEM, UEM, vulnerability assessment, and endpoint protection tools.
-
49
AP Lens
AP Lens
AP Lens is a Sandbox Browser that isolates networks using DNS Whitelisting. We stop the attack before it reaches the network. What does AP Lens provide? - Web Filtering: Flexible and user-friendly content blocking. - Anti-Phishing: Stop look-alike domains with 100% accuracy. - Ransomware Protection: Isolate the network without affecting business applications. - Secure Remote Work: Enforce internet usage policies without VPN slowness. - No More 0-Day Attacks: Escape the limits of blacklisting with AP Lens Augmented Whitelist. - Compliant: AP Lens meets regulatory requirements requested by cybersecurity insurance policies. - One-Click Installation: No need for a lengthy setup process or updating from the user's side. - No Maintenance: Stop malware and phishing without continuous monitoring. Our team builds on over 20 years of experience in cyber security, cloud security, and information protection in industries such as private banking and the public sector.Starting Price: $5 -
50
Pangolin
Pangolin
Pangolin is an open source, identity-aware tunneled reverse-proxy platform that lets you securely expose applications from any location without opening inbound ports or requiring a traditional VPN. It uses a distributed architecture of globally available nodes to route traffic through encrypted WireGuard tunnels, enabling devices behind NATs or firewalls to serve applications publicly via a central dashboard. Through the unified dashboard, you can manage sites and resources across your infrastructure, define granular access-control rules (such as SSO, OIDC, PINs, geolocation, and IP restrictions), and monitor real-time health and usage metrics. The system supports self-hosting (Community or Enterprise editions) or a managed cloud option, and works by installing a lightweight agent on each site while using the central control server to handle ingress, routing, authentication, and failover.Starting Price: $15 per month
