Field index
Categories
Every tool in the stack starts life as a category — a job to be done, like stopping phishing or vaulting privileged credentials. Browse all 32, grouped under the nine domains that make up the cybersecurity landscape.
Network & Perimeter
Controls that inspect, segment, and protect traffic in and out of your environment — the perimeter and network infrastructure everything else runs on.
Next-Generation Firewall
NGFWControls traffic entering and leaving a network. In addition to addresses and ports, it identifies applications, inspects content, and blocks known attack patterns.
9 tools
Intrusion Detection & Network Detection and Response
IDS/NDRWatches raw network traffic — not just what a firewall lets through — to spot attacker behavior like scanning, lateral movement, and command-and-control that other tools miss, and either alerts on it or blocks it automatically.
18 tools
SASE, SSE & Zero Trust Network Access
SASE/ZTNAReplaces the old model of routing all remote traffic through a corporate VPN with cloud-delivered security that connects each user directly to the specific app or site they need, checking identity and device health on every request instead of trusting anyone on the network.
6 tools
DDoS Protection
Absorbs and filters floods of junk traffic aimed at knocking a website, API, or network offline, so legitimate visitors keep getting through even while an attacker is trying to overwhelm the connection.
4 tools
Endpoint & Device
Protecting the laptops, servers, and mobile devices where malicious activity executes.
Endpoint Protection Platform
EPPThe baseline defense installed on every laptop and server: blocks known malware before it runs, locks down risky device behavior, and gives IT one place to enforce security policy across the whole fleet.
6 tools
Endpoint & Extended Detection and Response
EDR/XDRRecords process, file, and network activity on laptops and servers so security teams can detect, investigate, and contain attacks that bypass preventive controls.
12 tools
Mobile & Unified Endpoint Management
MDM/UEMLets IT enroll every laptop, phone, and tablet employees use for work, push configuration and security settings to them, keep them patched, and wipe them remotely if they're lost, stolen, or an employee leaves.
3 tools
Identity & Access
Who can log in, to what, with how much privilege — the modern security perimeter.
Identity & Access Management / Single Sign-On
IAM/SSOThe system employees log into once to reach every other work app, and the system IT uses to control who gets access to what — the front door for almost everything else in a company's software stack.
4 tools
MFA & Passwordless Authentication
MFAAdds a second proof of identity beyond a password — or replaces the password entirely with a fingerprint, device passkey, or security key — so a stolen password alone isn't enough for an attacker to log in as you.
2 tools
Privileged Access Management
PAMLocks down the small number of accounts that can do serious damage — admin logins, database credentials, service accounts — behind checkout, time-limits, and recording, instead of leaving powerful passwords sitting around unmonitored.
5 tools
Identity Governance & Administration
IGAAnswers the audit question 'who has access to what, and why' — running periodic reviews of every employee's permissions, modeling access by role, and proving to auditors that unneeded access gets removed.
3 tools
Cloud Security
Securing cloud infrastructure, workloads, and configurations across providers.
Cloud-Native Application Protection / Posture Management
CNAPP/CSPMChecks cloud accounts and workloads for misconfigurations, vulnerable software, exposed resources, and excessive permissions, then connects related findings into attack paths.
14 tools
Container & Kubernetes Security
Protects the containers and Kubernetes clusters modern apps run in — scanning images for known vulnerabilities before deployment, watching running containers for suspicious behavior, and enforcing safe cluster configuration.
8 tools
Cloud Access Security Broker
CASBShows IT which cloud applications employees use, including unapproved services, and applies access and data-protection rules to sanctioned SaaS products such as Microsoft 365 and Salesforce.
5 tools
Application Security
Finding and fixing vulnerabilities in the software you build and depend on.
Static Application Security Testing
SASTReads an application's source code without running it, looking for coding mistakes — like SQL injection or hardcoded secrets — that could become exploitable vulnerabilities, and flags them before the code ever ships.
10 tools
Dynamic Application Security Testing
DASTTests a running web application or API with malicious inputs and analyzes the responses, finding vulnerabilities that appear only when the complete application is deployed.
8 tools
Software Composition Analysis & Supply Chain Security
SCAInventories every open-source library an application depends on — including the dependencies of those dependencies — and flags known vulnerabilities, risky licenses, or tampered packages hiding in that supply chain.
8 tools
WAF & API Security
WAFSits in front of web applications and APIs to block common attacks like SQL injection in real time, and — because so much traffic is now API calls instead of web pages — discovers and protects every API endpoint, including the ones nobody documented.
7 tools
Data Security
Discovering, classifying, and protecting sensitive data wherever it lives.
Data Loss Prevention
DLPWatches for sensitive data — customer records, source code, financial files — trying to leave the organization through email, USB drives, cloud uploads, or printers, and blocks or flags it before it gets out.
5 tools
Data Security Posture Management
DSPMFinds and classifies sensitive data across cloud storage, SaaS applications, and databases, including untracked copies, then maps which identities can reach it.
5 tools
Encryption & Key Management
KMSCreates, stores, rotates, and audits the cryptographic keys used to protect data, often using dedicated hardware, and helps enforce encryption across applications and infrastructure.
8 tools
Certificate Lifecycle Management
CLMFinds every TLS and machine certificate an organization owns — including the forgotten and shadow ones nobody's tracking — renews them automatically before they expire and take a service down, and runs the private certificate authorities that issue them, so the trust machines place in each other never quietly breaks.
8 tools
Security Operations
The tooling of detection and response: collect signals, investigate, act.
Security Information & Event Management
SIEMThe security team's central log warehouse: collects events from everything in the environment, correlates them into alerts, and gives analysts one place to search when something looks wrong.
12 tools
Security Orchestration, Automation & Response
SOARAutomates the repetitive parts of responding to an alert — pulling context, opening a ticket, blocking an IP, notifying a user — so analysts spend less time on manual busywork and more time on the alerts that need human judgment.
10 tools
Threat Intelligence
TICollects current information about threat groups, techniques, malicious infrastructure, and active campaigns so teams can tune detections and prioritize relevant threats.
6 tools
Vulnerability Management
VMScans devices, servers, and applications for known vulnerabilities, ranks findings using severity and exploit context, and tracks remediation over time.
6 tools
Attack Surface Management & Breach/Attack Simulation
ASM/BASMaps systems reachable from outside the organization and safely exercises attack techniques to measure whether existing controls detect or block them.
7 tools
Digital Forensics & Incident Response
DFIRThe specialized toolkit and expertise brought in once a breach is suspected or confirmed — reconstructing exactly what happened, how far it spread, and what evidence proves it, so the incident can be contained and explained.
7 tools
Resilience & Recovery
Recovering from ransomware, deletion, and disasters with protected backups and tested restore procedures.
GRC & Human Layer
Governance, compliance, and the people-focused controls attackers target first.
GRC & Compliance Automation
GRCMaps security controls to frameworks such as SOC 2 and ISO 27001, collects evidence, tracks risks and exceptions, and produces records for auditors, customers, and regulators.
9 tools
Security Awareness Training
SATTeaches employees to recognize phishing and other social-engineering attacks through simulated attacks and short training modules, and gives security teams a way to measure and reduce human risk across the organization.
6 tools
Email Security
Filters phishing, malware, impersonation, and scam messages before they reach an employee, and provides tools to investigate or remove messages that arrive.
9 tools