Alternatives to Push Security

Compare Push Security alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to Push Security in 2026. Compare features, ratings, user reviews, pricing, and more from Push Security competitors and alternatives in order to make an informed decision for your business.

  • 1
    Josys

    Josys

    Josys

    Josys is a modern AI-native identity security and governance platform. Enterprise AI adoption has made identity the fastest-growing attack surface — and the hardest to govern. Josys discovers, governs, and secures every identity - human, machine, and AI agent - across every application in the enterprise. Built on policy-led governance, Josys lets security and IT teams define access policies once and enforce them autonomously: risk is surfaced, access is controlled, and identity threats are remediated in real time, without manual oversight. Trusted by over 1,000 organizations and MSPs worldwide, Josys turns identity from the fastest-growing attack surface into an autonomously governed advantage. For more information, visit josys.com.
    Compare vs. Push Security View Software
    Visit Website
  • 2
    Cisco Duo
    Cisco Duo is a cloud-based identity security solution that protects organizations from identity-based threats and boosts workforce productivity. Trusted by over 40,000 organizations worldwide, Duo delivers an exceptional access management experience across all users, devices, and applications, making access to resources secure, seamless, and easy. Duo with Cisco Identity Intelligence provides deep visibility across your identity ecosystem, adding a powerful security layer to any identity infrastructure. Offer users a world-class access experience through Duo Passport to eliminate MFA friction and fatigue without sacrificing security. To stop threats, Duo verifies user identities with strong authenticators including Duo passwordless, Verified Duo Push with number matching, and phishing-resistant factors like biometrics and FIDO2 security keys. Paired with deep insights into users’ devices, Duo gives you the control to adaptively limit access based on device health or user risk.
    Leader badge
    Starting Price: $3 per user per month
  • 3
    Guardz

    Guardz

    Guardz

    Guardz is the unified cybersecurity platform purpose-built for MSPs. We consolidate the essential security controls, including identities, endpoints, email, awareness, and more, into one AI-native framework designed for operational efficiency. Our identity-centric approach connects the dots across vectors, reducing the gaps that siloed tools leave behind so MSPs can see, understand, and act on user risk in real time. Backed by an elite research and threat hunting team, Guardz strengthens detection across environments, turning signals into actionable insights. With 24/7 AI + human-led MDR, Guardz utilizes agentic AI to triage at machine speed while expert analysts validate, mitigate, and guide response, giving MSPs scalable protection without adding headcount. Our mission is simple: give MSPs the scale, confidence, and clarity they need to stay ahead of attackers and deliver protection to every SMB they serve.
  • 4
    SailPoint

    SailPoint

    SailPoint Technologies

    You can’t do business without technology and you can’t securely access technology without identity security. In today’s era of “work from anywhere”, managing and governing access for every digital identity is critical to the protection of your business and the data that it runs on. Only SailPoint Identity Security can help you enable your business and manage the cyber risk associated with the explosion of technology access in the cloud enterprise – ensuring each worker has the right access to do their job – no more, no less. Gain unmatched visibility and intelligence while automating and accelerating the management of all user identities, entitlements, systems, data and cloud services. Automate, manage and govern access in real-time, with AI-enhanced visibility and controls. Enable business to run with speed, security and scale in a cloud-critical, threat-intensive world.
  • 5
    Vulcan Cyber

    Vulcan Cyber

    Vulcan Cyber

    At Vulcan Cyber we’re changing the way businesses reduce cyber risk through vulnerability remediation orchestration. We help IT security teams go beyond remedial vulnerability management to help them drive vulnerability remediation outcomes. The Vulcan platform consolidates vulnerability and asset data, with threat intelligence and customizable risk parameters to deliver risk-based vulnerability prioritization insights. But we don't stop there. Vulcan remediation intelligence takes the vulnerabilities that matter to your business and attaches the remedies and fixes needed to mitigate the threat. Then Vulcan orchestrates and measures the rest of the remediation process with integrations and inputs into application security, DevSecOps, patch management, configuration management, and cloud security tools, teams and functions. From scan to fix, Vulcan Cyber delivers the unique ability to orchestrate the entire vulnerability remediation process to GET FIX DONE at scale.
    Starting Price: $999 / month
  • 6
    Sonrai Security

    Sonrai Security

    Sonraí Security

    Identity and Data Protection for AWS, Azure, Google Cloud, and Kubernetes. Sonrai’s public cloud security platform provides a complete risk model of all identity and data relationships, including activity and movement across cloud accounts, cloud providers, and 3rd party data stores. Uncover all identity and data relationships between administrators, roles, compute instances, serverless functions, and containers across multi-cloud accounts and 3rd-party data stores. Inside the platform, our critical resource monitor continuously monitors your critical data sitting inside object stores (e.g. AWS S3, Azure Blob) and database services (e.g. CosmosDB, Dynamo DB, RDS). Privacy and compliance controls are monitored across multiple cloud providers and 3rd party data stores. Resolutions are coordinated with relevant DevSecOps teams.
  • 7
    Skybox Security

    Skybox Security

    Skybox Security

    The Skybox approach to risk-based vulnerability management starts with fresh vulnerability data from your entire network — physical IT, multi–cloud and operational technology (OT). Skybox uses a wide range of sources, including asset and patch management systems and network devices, to assess vulnerabilities without a scan. We also collect, centralize and merge data from multiple scanners to give you the most accurate vulnerability assessments on demand. Centralize and enhance vulnerability management processes from discovery to prioritization and remediation. Harness the power vulnerability and asset data, as well as network topology and security controls. Use network modeling and attack simulation to find exposed vulnerabilities. Augment vulnerability data with intelligence on the current threat landscape. Know your best remediation option, including patching, IPS signatures and network–based changes.
  • 8
    Tenable One Cloud Exposure (CNAPP)
    Tenable One Cloud Exposure is a cloud-native application protection platform designed to help organizations prevent cloud breaches and reduce risk across multi-cloud and hybrid environments. The platform helps teams identify and close gaps caused by misconfigurations, risky entitlements, vulnerabilities, exposed data, and cloud identity issues. As part of the Tenable One Exposure Management Platform, it provides deep visibility into cloud resources, identities, workloads, containers, and risk relationships. Tenable One Cloud Exposure supports capabilities such as cloud contextualization, continuous detection, vulnerability management, identity right-sizing, data protection, AI security, risk prioritization, and threat response. It helps security teams understand cloud exposure in context so they can prioritize the risks most likely to create real business impact.
  • 9
    Ping Identity

    Ping Identity

    Ping Identity

    Ping Identity builds identity security for the global enterprise with an intelligent identity platform that offers comprehensive capabilities including single sign-on (SSO), multi-factor authentication (MFA), directory, and more. Ping helps enterprises balance security and user experience for workforce, customer, and partner identity types with a variety of cloud deployment options including identity-as-a-service (IDaaS), containerized software, and more. Ping has solutions for both IT and developer teams. Enable digital collaboration with simple integrations to these popular tools. Support your employees wherever they are with integrations to these popular tools. Deploy quickly with interoperability across the entire identity ecosystem. Whether you just want single sign-on (SSO) or a risk-based, adaptive authentication authority, starting off with a PingOne solution package lets you only pay for what you need, and gives you room to grow.
    Starting Price: $5 per user per month
  • 10
    Tenable One Identity Exposure
    Tenable One Identity Exposure is an identity security solution designed to help organizations find and close identity-based attack paths before attackers exploit them. The platform provides visibility into identity hygiene across Active Directory and Entra ID environments. It helps teams unify identity inventory, map attack paths, harden security, and reduce risk across hybrid identity systems. Tenable One Identity Exposure supports identity security posture management by helping organizations understand how misconfigurations, risky permissions, and identity weaknesses can create breach opportunities. As part of the Tenable One exposure management platform, it connects identity risk with broader security visibility across the attack surface. Tenable One Identity Exposure is built to help security teams strengthen identity defenses, reduce attack chains, and improve protection against active threats.
  • 11
    Stack Identity

    Stack Identity

    Stack Identity

    We identify, eliminate and govern shadow access - unauthorized, unmonitored and invisible access to cloud data, applications and infrastructure before an attacker can exploit it. We transform cloud IAM operations with an automated and risk-driven approach to securing and governing cloud data. This empowers cloud and security teams to quickly identify every data access pattern; who, what, when, where and why there is data access and its impact on cloud data security. Stack Identity protects cloud data by prioritizing both the risk and impact of identity, access and data vulnerabilities, visualized via our live data attack map. We help you remediate all types of access risks – human and API-based, guiding identity practitioners, governance and compliance teams and data owners to take definitive action and provide SecOps and DevOps teams with an honest view of cloud security risks.
  • 12
    Silverfort

    Silverfort

    Silverfort

    Silverfort’s Unified Identity Protection Platform is the first to consolidate security controls across corporate networks and cloud environments to block identity-based attacks. Using innovative agentless and proxyless technology, Silverfort seamlessly integrates with all existing IAM solutions (e.g., AD, RADIUS, Azure AD, Okta, Ping, AWS IAM), extending coverage to assets that could not previously have been protected, such as legacy applications, IT infrastructure, file systems, command-line tools, and machine-to-machine access. Our platform continuously monitors all access of users and service accounts across both cloud and on-premise environments, analyzes risk in real time, and enforces adaptive authentication and access policies.
  • 13
    Nudge Security

    Nudge Security

    Nudge Security

    Discover every cloud and SaaS asset in your organization—in minutes. Expose shadow IT, eliminate SaaS sprawl, and take control of your supply chain. In just minutes, Nudge Security discovers, inventories, and continuously monitors every cloud and SaaS account employees have ever created. No network changes, endpoint agents, or browser extensions required. Accelerate security reviews to match the pace of SaaS adoption with insights on each provider’s security, risk, and compliance programs. Gain visibility across the SaaS supply chain to know if you’re in the blast radius of a data breach. The only way to manage SaaS security at scale is to engage with your workforce—not block them. Deliver helpful security cues based on proven behavioral science to nudge employees toward better decisions and behaviors.
    Starting Price: $4 per user per month
  • 14
    Proofpoint Identity Threat Defense
    In an ever-changing hybrid world, your organization depends on its employees, their virtual identities, and the endpoints they operate on to build and protect its assets. Threat actors have found unique ways to move laterally across your cloud environments by exploiting such identities. You need an innovative and agentless identity threat detection and response solution to discover and remediate modern identity vulnerabilities—a key part of today’s attack chain. Proofpoint Identity Threat Defense, previously Illusive, gives you comprehensive prevention and visibility across all your identities so you can remediate identity vulnerabilities before they become real risks. You can also detect any lateral movements in your environments and activate deception to ensure threat actors are stopped in action before they gain access to your corporate assets. It doesn’t get better than knowing you can prevent modern identity risks and stop real-time identity threats in action, all in one place.
  • 15
    Rezonate

    Rezonate

    Rezonate

    Rezonate detects and auto-remediates access configurations, risky activities, and weak security practices from build time to real-time, across your identity providers and IaaS for a complete identity risk reduction. Rezonate continuously synthesizes the data all your cloud applications, resources as well as your human and machine identities. The single, identity storyline it provides gives you a panoramic view of all your identity and access risk. Rezonate’s Identity Storyline goes beyond traditional overloaded graph views to tell you the story behind each identity, exposure and threat, so you can confidently pinpoint, prioritize and act to eliminate access risks. For every risk detected, exposure or an active threat, Identity Storyline tells how it came to be and what havoc it might wreak. Go beyond periodic configuration scans and unlock real-time view of every change and every activity across your cloud identity attack surface.
  • 16
    Tenable One Cloud Exposure CIEM
    Tenable One Cloud Exposure CIEM is a cloud infrastructure entitlement management solution designed to help organizations reduce identity and access risks in public cloud environments. The platform helps security teams identify and remove exposures caused by overly permissive access, excessive permissions, risky identities, and unmanaged entitlements. As part of Tenable’s unified CNAPP, it supports cloud adoption while helping organizations achieve least privilege at scale. Tenable One Cloud Exposure CIEM provides capabilities for access management, entitlement orchestration, risk assessment, automated remediation, just-in-time access, threat exposure, and compliance maintenance. The solution helps teams understand which identities and permissions create the greatest risk to cloud infrastructure. Tenable One Cloud Exposure CIEM is built to help organizations secure cloud environments by reducing identity-based attack paths and improving control over cloud entitlements.
  • 17
    Permiso

    Permiso

    Permiso Security

    Permiso is an identity security platform that secures human, non-human, and AI identities across cloud, SaaS, and on-premises environments. The platform is built around its Universal Identity Graph, which connects identities to credentials, machines, agents, permissions, and runtime activity to provide continuous visibility across authentication boundaries. Permiso helps organizations discover identities, evaluate identity risk, detect threats, and defend against account compromise, insider threats, and attacks targeting AI agents and non-human identities. The platform combines identity discovery, posture management, runtime monitoring, threat detection, and response capabilities into a single identity security solution. It continuously analyzes identity behavior, permissions, tool calls, API activity, and machine interactions to identify suspicious activity before it becomes an incident.
  • 18
    IBM Verify Identity Protection
    IBM’s identity threat detection and response and identity security posture management solution provide you with end-to-end visibility into user activity across the hybrid landscape of siloed IAM tools used across cloud, SaaS, and on-prem applications. IBM Verify Identity Protection provides the ISPM and ITDR functionality to keep your organization safe. Easily deployed without any agents or clients and designed to work in any cloud or network, IBM Verify Identity Protection extends your existing cybersecurity solutions by analyzing and delivering actionable identity risk information that is critical for your security operations. Detects and enables remediation of identity-related blind spots such as shadow assets, unauthorized local accounts, missing multi-factor authentication, and usage of unauthorized SaaS apps across any cloud or platform. Detect vulnerable misconfigurations caused by human error, hazardous deviations from policy, and inadequate implementations of identity tools.
  • 19
    Semperis

    Semperis

    Semperis

    In today’s cloud-first, mobile-first world, dependency on Active Directory is rapidly growing—and so is the attack surface. Expose blind spots. Paralyze attackers. Minimize downtime. Identity-driven cyber resilience for the hybrid enterprise. With the ever-expanding ecosystem of mobile workers, cloud services, and devices, identity is the only remaining control plane for keeping the bad guys out. And identity-centric security relies on the integrity of Active Directory to be effective. Semperis protects the heart of your identity infrastructure so you can go forth boldly into the digital future. For 90% of enterprises, Active Directory is the primary source of trust for identity and access. But it’s also the cyber kill chain’s weakest link – exploited in virtually every modern attack. And since Active Directory extends to the cloud, any tampering of it will cause a ripple effect across the entire identity infrastructure.
  • 20
    Microsoft Defender for Identity
    Help Security Operations teams protect on-premises identities and correlate signals with Microsoft 365 using Microsoft Defender for Identity. Helps eliminate on-premises vulnerabilities to prevent attacks before they happen. Helps Security Operations teams use their time effectively by understanding the greatest threats. Helps Security Operations by prioritizing information so they focus on real threats, not false signals. Get cloud-powered insights and intelligence in each stage of the attack lifecycle with Microsoft Defender for Identity. Help Security Operations identify configuration vulnerabilities and get recommendations for resolving them with Microsoft Defender for Identity. Identity security posture management assessments are integrated directly with Secure Score for visibility. Prioritize the riskiest users in your organization using a user investigation priority score based on observed risky behavior and number of prior incidents.
  • 21
    Unosecur

    Unosecur

    Unosecur

    Eliminate cloud permissions gap and maintain continuous security across multi-cloud environments. Central logging for all IAM credentials to provide granular insights and policy control, enforcing just-in-time permissions. Deep analytics to detect and mitigate privilege misconfigurations by applying least privilege principles, access control & right-sizing. Get audits for identity and access privileges and compliance at any time. Insightful reports for risk assessment, investigations, and forensics are always available and updated. Connect your cloud environment to Unosecur hassle-free within minutes and a few steps. Unosecur's advanced dashboard will give you full visibility of your cloud identity posture within a few hours after onboarding. Now, you are ready to remediate and report any identity and access permissions gap and perform access right-sizing at any time. Identity and access governance.
  • 22
    Cisco Identity Intelligence
    Cisco Identity Intelligence is an AI-powered solution that bridges the gap between authentication and access, providing top-tier security insights without interruptions. By closing the gaps between authentication and access, Cisco Identity Intelligence solution protects your attack surface before attackers can make their move. Get a full picture of identity activity and clean up vulnerable accounts, eliminate risky privileges, and block high-risk access attempts. With seamless deployment, Cisco Identity Intelligence solution powers other Cisco security suites, resulting in deeper functionality that informs the right response to any threat. Attackers' methods are becoming increasingly more complex, which is why Cisco Identity Intelligence solution is built to protect your organization against identity threats, no matter how sophisticated they are.
  • 23
    TrueFort

    TrueFort

    TrueFort

    Attackers will always find a way in. Insulate your environment against spreading compromise by enforcing a positive security model that curbs lateral movement. TrueFort gives security teams the scalable workload protection platform they need to secure hybrid environments. Next-gen firewalls and IP address-based controls are completely ineffective in modern infrastructure. Whether your workloads execute in the cloud, in virtual infrastructure, or on physical servers, TrueFort protects against advanced attacks with workload hardening, integrity monitoring, detection and response, and identity-based segmentation. Only TrueFort combines environment-wide security observability with real-time response, service account behavior analytics, file integrity monitoring, and CIS-certified hardening and file integrity monitoring that highlights differences between file and binary versions.
  • 24
    Stream Security

    Stream Security

    Stream Security

    Stay ahead of exposure risks & threat actors with real-time detection of config change impacts and automated threat investigations fused to posture and all activities. Track all changes, and detect critical exposure and toxic combinations before attackers do. Leverage AI to effectively address and fix issues using your preferred methods. Utilize any of your preferred SOAR tools to respond in real time or use our suggested code snippets. Harden and prevent external exposure & lateral movement risks, focus on risks that are truly exploitable. Detect toxic combinations of posture and vulnerabilities. Detect gaps from segmentation intent and implement zero-trust. Answer any cloud-related question fast with context. Maintain compliance, and prevent deviation from taking hold. We integrate with your existing investment. We can share more about our security policies and work with your security teams to deliver any specific requirements for your organization.
    Starting Price: $8,000 per year
  • 25
    Radiant Security

    Radiant Security

    Radiant Security

    Sets up in minutes and works day one to boost analyst productivity, detect real incidents, and enable rapid response. Radiant’s AI-powered SOC co-pilot streamlines and automates tedious tasks in the SOC to boost analyst productivity, uncover real attacks through investigation, and enable analysts to respond more rapidly. Automatically inspect all elements of suspicious alerts using AI, then dynamically selects & performs dozens to hundreds of tests to determine if an alert is malicious. Analyze all malicious alerts to understand detected issues’ root causes and complete incident scope with all affected users, machines, applications, and more. Stitch together data sources like email, endpoint, network, and identity to follow attacks wherever they go, so nothing gets missed. Radiant dynamically builds a response plan for analysts based on the specific containment and remediation needs of the security issues uncovered during incident impact analysis.
  • 26
    SecHard

    SecHard

    SecHard

    SecHard is a multi-module software for implementing zero-trust architecture. SecHard provides automated security hardening auditing, scoring, and remediation for servers, clients, network devices, applications, databases, and more. A powerful identity and access management software to get compliant with zero trust and to prevent attacks like privilege abuse, ransomware, and more. SecHard solves the risk awareness problem in asset management. Automated discovery, access, identification, and remediation features provide ultra-wide visibility for all regulations. With the passive scanning method, SecHard operates the vulnerability detection and management processes for all IT assets without creating any risks. SecHard auto-discovers the certificates in the company’s environment report the expiration dates of these certificates, and it can automatically renew some of these certificates through well-known certificate authorities.
  • 27
    InsightCloudSec
    You transform your business, we’ll keep your cloud services secure. InsightCloudSec enables you to drive innovation through continuous security and compliance. Achieve continuous security and compliance and prevent misconfigurations through unified visibility and monitoring and real-time automated remediation. Secure configurations and workloads through automated cloud security and vulnerability management across dynamic cloud environments. Manage identity and effective access across ephemeral resources, at scale. InsightCloudSec is a fully-integrated cloud-native security platform, your whole cloud security toolbox in a single solution. Consumer privacy (or the lack thereof) is a huge societal concern and the focus on protecting privacy is manifesting itself through many forms, including regulations like the California Consumer Privacy Act and General Data Protection Regulation.
    Starting Price: $66,000 per year
  • 28
    SecureKi

    SecureKi

    SecureKi

    Secure access for your business, customers, or employees with our unparalleled identity security backed by a zero–trust philosophy. When it comes to protecting your data, passwords are the weakest link. That is why multifactor authentication has become the identity and access management standard for preventing unauthorized access. Verify the identity of all users with SecureKi. Compromised access and credentials most often are the leading attack vectors of a security breach. Our comprehensive privileged access management is designed to manage and monitor privileged access to accounts and applications, alert system administrators on high-risk events, reduce operations complexity, and meet regulatory compliance with ease. Privilege escalation is at the core of most cyber-attacks and system vulnerabilities.
  • 29
    Uptycs

    Uptycs

    Uptycs

    Uptycs is the first unified CNAPP and XDR platform. Reduce risk by prioritizing responses to threats, vulnerabilities, misconfigurations, sensitive data exposure, and compliance mandates. With Uptycs, you can protect your entire enterprise, from laptops and servers to public and private cloud infrastructure. The platform streamlines your response to threats and offers a single UI and data model for easy management. Uptycs ties together threat activity as it traverses on-prem and cloud boundaries, delivering a more cohesive security posture. If you're looking for a powerful security solution that eliminates silos and tool sprawl, Uptycs is the answer. Looking for acronym coverage? We have you covered, including CNAPP, CWPP, CSPM, KSPM, CIEM, CDR, and XDR. Start with your Detection Cloud, Google-like search, and the attack surface coverage you need today. Be ready for what’s next. Shift up with Uptycs.
  • 30
    FYEO

    FYEO

    FYEO

    FYEO secures enterprises and individuals from cyber attacks with security audits, real-time threat monitoring and intelligence, anti-phishing solutions and decentralized identity management. End-to-end blockchain security services and auditing for Web3. Protect your organization and employees from cyberattacks with FYEO Domain Intelligence. Decentralized password management and identity monitoring services made simple. End user breach and phishing alert system. Uncover vulnerabilities and protect both your application and your users. Identify and address cyber risks across a company before you take on the liability. Protect your company from ransomware, malware, insider threats, and more. Our team works collaboratively with your development team to identify potentially critical vulnerabilities before they can be exploited by a malicious actor. FYEO Domain Intelligence delivers real-time cyber threat monitoring and intelligence to help secure your organization.
  • 31
    ZPOA Z Shield

    ZPOA Z Shield

    ZPOA Cybersecurity

    ZPOA is a unified cybersecurity platform designed to simplify security operations by consolidating multiple security tools into one centralized system. The platform combines SIEM, compliance automation, identity governance, endpoint protection, vulnerability management, user activity monitoring, and AI-powered threat investigations within a single dashboard. ZPOA helps security teams reduce operational complexity by providing real-time monitoring, automated threat detection, compliance tracking, and incident investigation tools in one integrated environment. The platform includes seven security modules that work together seamlessly, giving organizations complete visibility across assets, users, endpoints, cloud environments, and identity systems. With more than 690 pre-built connectors across 23 ecosystems, ZPOA integrates with major cybersecurity, cloud, and enterprise tools to streamline data collection and analysis.
  • 32
    Agari

    Agari

    Fortra

    Use Trusted Email Identity to protect workers and customers from advanced email attacks. Advanced email attacks target a major security vulnerability that legacy email security controls do not address. Agari gives employees, customers, and partners the confidence to trust their inbox. Unique AI with over 300m daily machine learning model updates understands the good to protect you from the bad. Global intelligence powered by trillions of global email messages provide deep insights into behaviors and relationships. Years of experience defining the email security standards that have been adopted by Global 2000 companies.
  • 33
    Axonius

    Axonius

    Axonius

    Axonius gives customers the confidence to control complexity by providing a system of record for all digital infrastructure. With a comprehensive understanding of all assets including devices, identities, software, SaaS applications, vulnerabilities, security controls, and the context between all assets, customers are able to mitigate threats, navigate risk, decrease incident response time, automate action, and inform business-level strategy — all while eliminating manual, repetitive tasks. Recognized as creators of the Cyber Asset Attack Surface Management (CAASM) category and innovators in SaaS Management Platform (SMP) and SaaS Security Posture Management (SSPM), Axonius is deployed in minutes and integrates with hundreds of data sources to provide a comprehensive asset inventory, uncover gaps, and automatically enforce policies and automate action.
  • 34
    IBM Security Randori Recon
    Get the most authentic view of what’s exposed. Discover what is exposed with our black-box approach. IBM Security Randori Recon builds a map of your attack surface to find exposed assets (on-prem or cloud), shadow IT, and misconfigured systems attackers can find, but you may be missing. Unlike other ASM solutions that rely on IPv4 range scans, our unique center of mass approach enables us to find IPv6 and cloud assets others miss. Only IBM Security Randori Recon gets you on target faster – automatically prioritizing the exposed software attackers are most likely to attack first. Built by attackers to identify attackable software, only Randori Recon provides you a real-time inventory of each instance of exposed and attackable software. Going far beyond vulnerabilities, Randori Recon looks at each target in context to build a unique priority score for each target. Practice makes perfect. Go beyond scanning and improve your team by testing your defenses under real-world conditions.
  • 35
    Attack Path Analysis
    Cloudnosys Attack Path maps and analyzes privilege-escalation and lateral-movement routes across cloud environments to reveal how misconfigurations, excessive permissions, and exposed resources could be chained into real-world breaches; it visualizes attack graphs with interactive drilldowns, prioritizes paths by contextual risk scoring (impact × exploitability), and recommends precise, actionable remediation steps to break the highest-risk chains, helping teams close the most dangerous routes first. The solution supports multi-cloud accounts, ingests identity, network, and resource telemetry to reconstruct realistic attack scenarios, simulates exploitation to test mitigation effectiveness, and integrates with existing cloud security workflows to trigger automated or guided fix playbooks, reducing time to detect, investigate, and remediate complex cross-resource threats while lowering alert fatigue.
  • 36
    DoubleClue

    DoubleClue

    DoubleClue

    DoubleClue is an Identity and Access Management platform from HWS Group in Bavaria to manage identities, rights and access. It secures company networks with modern multi factor authentication from cyberattacks targeted on digital identities / the "human factor". Plus, the platform offers an integrated password management and secure cloud storage for confidential data. Identity security, password management and secure cloud storage protected by adaptive multi-factor-authentication (MFA). On premises or in the cloud. DoubleClue protects the component of your business that is not covered by firewalls and virus scanners – the human factor, the most vulnerable part in any IT security. All digital accesses and applications, passwords and confidential data protected by a strong all-in-one platform. In the digital working world, employees demand maximum flexibility. Enable them to work from anywhere with any device without compromising their IT security.
  • 37
    Theom

    Theom

    Theom

    Theom is a cloud data security product that discovers and protects all data in cloud stores, APIs, and message queues. Like a bodyguard who closely follows and protects a high-value asset, Theom ensures controls follow the data regardless of how it is stored or accessed. Theom identifies PII, PHI, financial information, and trade secrets using agentless scanning and NLP classifiers, which support custom taxonomies. Theom discovers dark data, data that are never accessed, and shadow data, data whose security posture is different from the primary copy. Theom pinpoints confidential data, e.g., developer keys, in APIs and message queues. Theom estimates the financial value of data to help prioritize risks. Theom maps the relationships between data, access identities, and security attributes to uncover the risks to data. Theom shows how high-value data is accessed by identities (users and roles). Security attributes including user location, atypical access patterns, etc.
  • 38
    AXYVOR

    AXYVOR

    CipherThought Corp

    AXYVOR is an AI-native cybersecurity platform that unifies exposure management, identity threat detection, adversary intelligence, attack path analysis, and executive risk reporting into a single system operated by AI. Built for mid-market and enterprise security teams, AXYVOR continuously maps attack paths across cloud, identity, and endpoint environments, prioritizes the vulnerabilities that create real business risk, and delivers an AI-generated Board Risk Index that translates technical findings into financial and operational impact for executives and boards. AXYVOR integrates natively with leading EDR, SIEM, identity, and ITSM tools (CrowdStrike, SentinelOne, Okta, Splunk, Microsoft Sentinel, and more), deploying in days instead of months, at a fraction of the cost of legacy platforms like CrowdStrike, Splunk, or Wiz.
  • 39
    Primo

    Primo

    Primo

    Primo is an all-in-one AI-powered IT operations platform that helps organizations buy, track, secure, and remotely manage company devices and software from a single, centralized system by combining identity, mobile device management (MDM), endpoint detection and response, SaaS management, and global hardware procurement so teams no longer juggle multiple disconnected tools; IT can enforce security policies, push apps and updates, monitor and remediate issues across macOS, Windows, and Linux devices, and coordinate zero-touch deployments at scale, all while keeping identity and access workflows in sync with HR data to automate onboarding, offboarding, and permission changes. It integrates with 60+ HR and email tools to ensure a single source of truth for users and devices, offers real-time compliance and activity logs, supports role-based access and single sign-on, and provides AI-assisted automation to reduce manual work and improve security posture.
    Starting Price: €8 per month
  • 40
    Barracuda CloudGen Access
    Securely manage your remote workforce with instant provisioning of company or employee-owned devices and unmanaged contractor endpoints. Mitigate breach risks with Zero Trust secure access. Deliver continuous verification of user and device identity and trust to reduce attack surface. Empower employees with streamlined access, increased security and upgraded performance compared to traditional VPN technology. Security starts with access. The CloudGen Access Zero Trust model establishes unparalleled access control across users and devices without the performance pitfalls of a traditional VPN. It provides remote, conditional, and contextual access to resources and reduces over-privileged access and associated third-party risks. With CloudGen Access, employees and partners can access corporate apps and cloud workloads without creating additional attack surfaces.
  • 41
    BitSight

    BitSight

    Bitsight

    Bitsight is a leading Cyber Risk Intelligence platform that helps organizations identify, quantify, and reduce cybersecurity risk across their entire digital ecosystem. Powered by advanced AI and the industry’s largest external cybersecurity dataset, Bitsight delivers real-time visibility into security posture, threat exposure, and attack surface risk. Trusted by more than 3,500 customers worldwide and over 68,000 organizations on its platform, Bitsight enables security teams, risk leaders, and executives to proactively manage cyber risk through continuous security monitoring, third-party risk management (TPRM), vulnerability intelligence, and external attack surface management (EASM). Bitsight uncovers critical security gaps across cloud environments, digital identities, and complex third- and fourth-party vendor ecosystems. Bitsight is a unified cyber risk intelligence platform designed to support compliance, improve security posture, and drive data-informed risk decisions.
  • 42
    GlobalSign IoT Identity
    Provision, secure and manage device identities with a PKI-based cloud IoT Identity Platform, purpose built for scalable, flexible and interoperable IoT security. GlobalSign’s next-generation IoT Identity Platform delivers everything you need for full device identity lifecycle management from design and manufacturing, through deployment, management and sunsetting. Provision and secure device identities with a purpose-built, PKI-based platform for exceptional security. Public Key Infrastructure is the de facto credential for IoT and IIoT device identity. Simplify, optimize and harden how you enroll, secure and manage PKI-based, IoTdevice identities with a full-featured IoT registration authority service that ensures secure, customizable device enrollment. It’s the key to provisioning unique, strong and secure device identities.
  • 43
    Google Cloud Security Command Center
    Security and risk management platform for Google Cloud. Understand the number of projects you have, what resources are deployed, and manage which service accounts have been added or removed. Identify security misconfigurations and compliance violations in your Google Cloud assets and resolve them by following actionable recommendations. Uncover threats targeting your resources using logs and powered by Google’s unique threat intelligence; use kernel-level instrumentation to identify potential compromises of containers. Discover and view your assets in near-real time across App Engine, BigQuery, Cloud SQL, Cloud Storage, Compute Engine, Cloud Identity and Access Management, Google Kubernetes Engine, and more. Review historical discovery scans to identify new, modified, or deleted assets. Understand the security state of your Google Cloud assets. Uncover common web application vulnerabilities such as cross-site scripting or outdated libraries in your web applications.
  • 44
    Cloudsec Inspect
    Cloud services and containers are prime targets for attackers. Secure your multi-cloud migration and harden DevOps containers with automated scanning. Cloudsec Inspect is a consolidated, scalable solution that helps organizations automate the security of IaaS, virtual machines and firewalls. It provides full visibility of cloud infrastructures through detailed records and assessment to improve your risk posture and vulnerability exposure. Organizations are increasing their reliance on AWS, Azure and Google Cloud to deliver cost effective infrastructure. Our cloud security solution not only help address your migration to the cloud in a secure way, it continuously monitor your multi- and hybrid environment for any IT misconfigurations and compliance issues. As organizations migrate to the cloud and realize cost saving, it’s important to ensure essential security controls and compliance standards are maintained. Cloudsec Inspect ensures you are fully protected.
  • 45
    Rotate

    Rotate

    Rotate

    Use the Rotate cloud security platform to secure any business with modular hubs and seamless integrations designed to scale your security needs. Gain greater context on cyberattacks and improve remediation by identifying alerts across all hubs, correlating them, and prioritizing incidents by risk level. Synthesize, consolidate, and manage all hubs in Rotate’s XDR. Use your multi-tenancy control center for vulnerability scans and rapid deployments. Manage unlimited clients through a single pane of glass. Empower your business customers with a complete cybersecurity solution and reduce portfolio risk. Rotate protects all types of organizations in the new world of digital-first work. Get complete cybersecurity for every employee who uses email or brings a device to work. Cyber insurance is essential for any organization at risk of a cyber attack, but coverage can be expensive. Comprehensive protection like the type provided by Rotate can help reduce the overall cost of insurance.
  • 46
    BlueFlag Security

    BlueFlag Security

    BlueFlag Security

    BlueFlag Security provides multi-layer defense, protecting developer identities and their tools throughout the software development lifecycle (SDLC). Don't let uncontrolled developer and machine identities become the Achilles' heel of your software supply chain. Weaknesses in these identities create a backdoor for attackers. BlueFlag seamlessly integrates identity security across the SDLC safeguarding your code, tools, and infrastructure. BlueFlag automates the rightsizing of permissions for developer and machine identities, enforcing the principle of least privilege throughout the dev environment. BlueFlag enforces strong identity hygiene by deactivating off-boarded users, managing personal access tokens, and restricting direct access to developer tools and repositories. BlueFlag's ensures early detection and prevention of insider threats and unauthorized privileged escalation by continuously monitoring behavior patterns across the CI/CD.
  • 47
    Saviynt

    Saviynt

    Saviynt

    Saviynt provides intelligent identity access management and governance for cloud, hybrid and on-premise IT infrastructures to accelerate enterprise digital transformation. Our platform integrates with leading IaaS, PaaS, and SaaS applications including AWS, Azure, Oracle EBS, SAP HANA, SAP, Office 365, SalesForce, Workday, and many others. Our innovative IGA 2.0 advanced risk analytics platform won the Trust Award and was named an industry leader by Gartner.
  • 48
    CloudEagle.ai

    CloudEagle.ai

    CloudEagle.ai

    CloudEagle.ai is an AI-powered SaaS Management, AI Governance, and Identity Governance platform that helps organizations discover, govern, and optimize every SaaS and AI application across the enterprise, including applications outside traditional SSO or IT visibility. CloudEagle enables teams to detect Shadow IT and Shadow AI, automate provisioning and deprovisioning beyond the IDP, govern AI application usage, run continuous access reviews, optimize licenses, and streamline renewals using real usage and benchmarking insights. With 500+ integrations and AI-driven contract and usage intelligence, CloudEagle centralizes application access, spend, contracts, renewals, and compliance visibility into a single governance platform.
  • 49
    enhanced.io

    enhanced.io

    enhanced.io

    enhanced.io is a security operations platform offering extended detection and response (XDR) across networks, cloud, identity systems, IoT and operational technology. It monitors assets and traffic beyond the reach of endpoint agents, using advanced detection methods. With integration across 400+ systems, including firewalls, cloud platforms, identity providers, and endpoint tools, it supports existing infrastructure. The platform addresses threats like ransomware, phishing, insider attacks, and IoT/OT risks via a unified interface. Vulnerability management prioritizes risks and aids remediation, while compliance reporting aligns with frameworks like HIPAA, GDPR, ISO 27001, NIST CSF, PCI-DSS, and SOC 2. A Fractional Security Director bridges communication with the security operations center. The platform operates on a fixed-cost subscription with 24/7 monitoring.
  • 50
    Linx Security

    Linx Security

    Linx Security

    Linx Security is an AI-native identity security and governance platform designed to give organizations full visibility and control over the entire identity lifecycle. It enables teams to map, monitor, and manage all identities, including human and non-human, across applications, cloud environments, and on-prem systems, helping reduce blind spots and shrink the identity attack surface. It provides a unified system that connects identity, security, and IT operations, allowing them to manage access, enforce policies, and maintain compliance from a single place. Using AI-powered analytics, Linx continuously analyzes identity relationships, entitlements, and access patterns to detect risks, anomalies, and gaps such as dormant accounts, excessive privileges, weak authentication, or missing security controls. It includes features like identity security posture management, just-in-time access, and lifecycle automation, enabling organizations to replace standing privileges.