Select the Security Plan that works best for you, and implement it into your developer environment with a click.
Implement any number of Security Plans to tailor the security toolchain to your exact requirements.
Maturity Plans implement security toolchains with varying levels of security controls depending on your organization’s maturity.
Security Module Plans implement security toolchains tailored to specific use cases, like application security or cloud security.
Compliance and Standards Plans implement security toolchains tailored to specific compliance and standards requirements.
Start with Minimum Viable Security (MVS) to implement strong initial defense against common vulnerabilities, and work your way to the Max Security Plan if needed.
Coming soon! Will include SAST, SCA, Secrets detection, IaC scanning, and GitHub Misconfiguration scanning.
Coming soon! Will include everything in Minimum Viable Security Plan, plus CSPM.
Includes SAST, SCA, Secrets detection, IaC scanning, GitHub Misconfiguration scanning, CSPM, container scanning (coming soon!), SBOM, OSS license checking, and DAST.
Use Case Plans make it easy to plug holes in your security toolchain. Add any number of Use Case plans to tailor your toolchain to your specific needs.
Includes SAST, SCA, Secrets detection, SBOM, and OSS license checking.
Secure your CI/CD pipeline with GitHub misconfiguration detection.
Coming soon! Will include Cloud Security Posture Management (CSPM) and IaC scanning to surface cloud misconfigurations.
Leverage DAST to identify and mitigate vulnerabilities for web applications and APIs.
Tailor your security toolchain to meet specific compliance requirements and standards.
Includes the DAST and vulnerability management requirements to fulfill OWASP ASVS.
Includes IaC scanning, CSPM, secrets detection, and vulnerability management requirements for AWS FTR.
Coming soon! Will include the required x capabilities for SOC 2 compliance.
Coming soon! Will include the security controls needed to surface the most recent OWASP Top 10 vulnerabilities.
Coming soon! Will include the security controls needed to score well for the CIS Benchmark.