Sponsors

Address
3421 Hillview Avenue
Palo Alto, California 94304
United States of America

Website
www.broadcom.com

Make Google part of your security team with unmatched threat visibility, a unified security platform, and Mandiant frontline experts — supercharged by AI.

Organisations can reduce digital risk and secure their AI transformation with the same cybersecurity specialists, capabilities, and secure enterprise platforms Google uses to keep more people and organisations safe online than anyone else in the world, powered by our industry-leading threat intelligence. AI enhances all of these components, enabling security teams to detect more threats, minimise toil, and take productivity to new levels.

Address
70 Sir John Rogerson's Quay
Dublin 2, Dublin D02 R296
Ireland

Website
cloud.google.com/security?hl=en

Social Networks

ThreatSpike is a UK-headquartered cybersecurity and IT services company transforming how organisations manage IT and security. Its fixed-price subscription replaces outdated MSPs with proactive support, strategic planning, and security, helping customers avoid rising costs, poor service, and burnout of internal teams.

The solutions include:

* ThreatSpike Red – unlimited human-led penetration testing, including red teaming and threat simulations.
* ThreatSpike Blue – an all-in-one detection and response platform with 24/7 SOC and deep telemetry.
* ThreatSpike Black – fully managed IT services that deliver modern infrastructure, expert helpdesk, and strategic planning.

ThreatSpike addresses real-world challenges: over dependence on a few key internal resources, unresponsive MSPs with limited hours, and poor visibility into whether IT is actually improving or staying secure.

With a single team, one contract, and no surprise costs, ThreatSpike helps organisations in hospitality, retail, logistics, and manufacturing stay secure, supported, and ahead of the curve.

Address
30 Crown Place
London, EC2A 4EB
United Kingdom

Website
www.threatspike.com

Social Networks

Black Duck meets the board-level risks of modern software with True Scale Application Security, ensuring uncompromised trust in software for the regulated,
AI-powered world. Only Black Duck solutions free organizations from tradeoffs between speed, accuracy, and compliance at scale while eliminating security, regulatory, and licensing risks. Whether in the cloud or on premises, Black Duck is the only choice for securing mission-critical software everywhere code happens.
With Black Duck, security leaders can make smarter decisions and unleash business innovation with confidence. Learn more at www.blackduck.com.

Address
The Hive Reading - Hive 02, 1530 Arlington Business Park
Theale, RG7 4SA
United Kingdom

Website
www.blackduck.com

Clover Security defines design-led product security, embedding AI agents into design and engineering workflows to catch risks early, enforce secure patterns, and guide teams in real time.

Address
401 Park Avenue South
10th fl
New York, New York 10016-8808
United States of America

Website
clover.security

Social Networks

KnowBe4 empowers your workforce to make smarter security decisions every day. Trusted by over 70,000 organisations worldwide, KnowBe4 helps you strengthen your security culture and manage human risk. KnowBe4 offers a comprehensive AI-driven
‘best-of-suite’ platform for human risk management (HRM), creating an adaptive defence layer that fortifies user behavior against the latest cybersecurity threats.
The HRM+ platform includes modules for awareness and compliance training, cloud email security, real-time security coaching, crowdsourced anti-phishing, AI Defence Agents and more. As the only global security platform of its kind, KnowBe4 transforms your largest attack surface—your workforce—into your biggest asset, actively protecting your organisation against cybersecurity threats.

Address
1 Leeds City Office Park, 1st Floor, Meadow Lane
Leeds, LS11 5BD
United Kingdom

Website
www.knowbe4.com

Social Networks

OX Security is the creator of VibeSec, the first AI-Native vibe security platform that stops insecure AI-generated code before it ever exists. By embedding dynamic security context directly into AI coding tools, VibeSec ensures every line of code is secure from inception. Finally, security moves faster than vulnerabilities.

Address
Beit Gibor Sport, Derech Menachem Begin 7, Ramat Gan, 526810
Ramat Gan, 5268102
Israel

Website
www.ox.security

Social Networks

Push Security is the most advanced security tool in the browser. It brings real-time detection and response to the layer where users work — and where attackers operate.


By deploying a powerful agent inside the browser, Push gives defenders full visibility into user activity, attacker behavior, and browser-level risk. It detects threats like phishing kits and session hijacking, enforces protective controls like MFA and SSO, and provides the telemetry security teams need to investigate fast.


Push works in any modern browser, deploys in minutes, and integrates easily with the rest of your stack — making it accessible to teams of any size.

Address
2 Kingdom Street, 6th Floor
London, W2 6BD
United Kingdom

Website
pushsecurity.com

Social Networks

runZero provides a single source of truth for exposure management across your total attack surface. Without requiring agents, authentication, or appliances, runZero delivers the most complete and accurate visibility into every asset and exposure across internal, external, IT, OT, IoT, mobile, and cloud environments—including uncovering unknown and unmanageable devices and broad classes of exposures that evade traditional tools. Founded in 2018 by HD Moore, runZero is trusted by more than 500 companies and 30,000 users worldwide to mitigate risks faster, meet compliance requirements, and improve overall security.

Address
1512 Bluebonnet Lane
Austin, Texas 78704
United States of America

Website
www.runzero.com

Social Networks

Stop ransomware! ThreatLocker® improves enterprise-level server and endpoint security with zero trust controls, including Allowlisting, Ringfencing™, Elevation, Storage, Network Control, Configuration Management, and Operational Alert solutions.

Address
1950 Summit Park Dr, Suite 400
Orlando, Florida 32810
United States of America

Website
www.threatlocker.com

Social Networks

TuxCare secures the open-source software the world builds on. Our mission is to take the risk out of innovation by keeping open-source systems continuously protected, compliant, and running without the disruptions, headaches, or gaps that often come with conventional open-source security and support.

We provide enterprise-optimized security, compliance, and support across your organization’s open-source technology stack. Our rebootless patching technology ensures systems stay up to date without disruptions or downtime. Our enterprise-ready support for community Linux distributions, including AlmaLinux and Rocky Linux, gives organizations the reliability of commercial support without the lock-in. For end-of-life operating systems, runtimes, libraries, and applications, our Endless Lifecycle Support delivers long-term security updates that keep critical workloads safe well beyond community support windows.

And, to help security teams cut through the noise, we built Radar – our patch-aware vulnerability scanner that eliminates false positives. Instead of overwhelming teams with endless alerts, Radar delivers clarity, mapping vulnerabilities directly to patch availability and helping teams act quickly on the issues that truly matter.

More than 1.2 million workloads are already protected by TuxCare across enterprises, government agencies, service providers, universities, and research institutions worldwide. Our customers trust us to reduce operational overhead, maintain continuous compliance, and maximize uptime for their most critical environments.

But TuxCare isn’t just another vendor. We’re reshaping the way organizations approach open-source security. We’re not just patching systems – we’re redesigning how open source stays secure, compliant, and unstoppable at scale.

Address
2318 Louis Road
Palo Alto, California 94303
United States of America

Website
www.tuxcare.com

Social Networks

Appdome’s mission is to protect every mobile business and user in the world from scams, fraud, bots, and attacks.

Appdome’s patented AI-Native XTM Platform is designed to protect every aspect of mobile business now and in the future.

From mobile DevOps to mobile applications, networks, APIs, and Customer Identity, Appdome uses AI to generate Android & iOS defense plugins for 400+ mobile app security, anti-fraud, bot defense, anti-malware, geo compliance, social engineering, deepfake and Customer Identity defenses on demand.

Appdome holds several patents including U.S. Patents 9,934,017 B2, 10,310,870 B2, 10,606,582 B2, 11,243,748 B2 and 11,294,663 B2. Additional patents pending.

Address
3 Twin Dolphin Drive, Suite 375
Redwood City, California 94065
United States of America

Website
www.appdome.com

Social Networks

Concentric AI is intelligent data security made easy. Its Semantic Intelligence™ platform uses context-aware AI to discover sensitive data, monitor risks, automate remediation, simplify compliance, and accelerate investigations. It delivers smart, targeted protection by understanding how data is used, shared, and exposed. Concentric AI also offers managed services to keep security programs lean, scalable, and effective. This end-to-end platform protects data at rest, data in motion, and all the GenAI tools users interact with—so organizations can stay compliant, reduce exposure, and safeguard critical information wherever it lives and however it travels.�

Address
3031 Tisch Way
ste 306
San Jose, California 95128-2530
United States of America

Website
concentric.ai

Social Networks

Datadog is an observability and security platform that unifies metrics, traces, logs, security signals, and more across your stack into a single pane of glass. Observe any stack at any scale, secure applications from code to cloud, and act faster with automated workflows all in Datadog. Your data is enhanced with AI-powered insights and automated remediation, streamlining collaboration between Dev, Ops, and Security teams for faster troubleshooting and improved system health and security.

Address
620 8th Avenue
45th floor
New York, New York 10018
United States of America

Website
www.datadoghq.com

Social Networks

HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). Our platform unites agentic AI solutions with the ingenuity of the largest community of security researchers to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems.

Address
4th Floor, St. James House,St. James Square
4th Floor
Cheltenham, GL50 3PR
United Kingdom

Website
www.hackerone.com

JFrog Ltd. (Nasdaq: FROG) delivers the essential platform to secure the world’s software where fragmented point solutions fail. Our unified Software Supply Chain Platform provides a single source of truth for managing risk, empowering organizations to embed automated security and policy enforcement into every stage of the software lifecycle.
This provides the comprehensive visibility and control needed to ensure the integrity and security of your entire software portfolio. It’s why a majority of the Fortune 100 trust JFrog to build and release trusted software with speed and confidence.
Once you leap forward, you won’t go back! Learn more at jfrog.com and follow us on X: @jfrog.

Address
3 Hamachshev Street,P.O. Box 8187
Netanya, 4250465
Israel

Website
jfrog.com

Social Networks

Trusted by the world’s leading companies, Mend.io offers the first AI native application security platform designed to help organizations proactively secure AI generated code and AI components, empowering them to manage application risk effectively in modern software development.

Address
Ariel Sharon 4 Street
Givatayim, 532004
Israel

Website
www.mend.io

Rubrik is a cybersecurity company and our mission is to secure the world’s data. We pioneered Zero Trust Data SecurityTM to help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, built with a Zero Trust design and powered by machine learning, delivers complete cyber resilience in a single platform across enterprise, cloud, and SaaS. Our platform automates data policy management and enforcement, safeguards sensitive data, delivers data threat analytics and response, and orchestrates rapid cyber and operational recovery.

Address
7 Albemarle Street
London, W1S 4HQ
United Kingdom

Website
www.rubrik.com

Social Networks

Snyk, the leader in secure AI software development, empowers organizations to build fast and stay secure by unleashing developer productivity and reducing business risk. The company’s AI Trust Platform seamlessly integrates into developer and security workflows to accelerate secure software delivery in the AI Era. Snyk delivers trusted, actionable insights and automated remediation, enabling forward-thinking organizations to innovate without limits. Snyk is redefining secure AI-driven software delivery for over 4,500 customers worldwide today.

Address
24 Eversholt Street
London, NW1 1AD
United Kingdom

Website
snyk.io

Social Networks

Attackers don’t go through your tools – they go around them, leveraging gaps in your program and exploiting identities to reach your critical assets. Our mission is to demystify tradecraft and stop adversaries in their tracks.

Address
100 N Pitt St, Suite 310
Alexandria, Virginia 22314
United States of America

Website
specterops.io

Social Networks

Tines is an intelligent workflow platform that powers the world’s most important workflows. IT and security teams of all sizes, from Fortune 50 to startups, trust Tines for everything from phishing response, vulnerability and patch management, software lifecycle management, employee lifecycle management, and everything in between. Leaders across a wide array of industries –including Canva, Databricks, Elastic, Kayak, Intercom, and McKesson– use Tines AI-powered workflows to operate more effectively, mitigate risk, reduce tech debt, and do the work that matters most.

Address
10 Westland SquarePearse Street
Dublin, Dublin D02 CX36
Ireland

Website
www.tines.com

Torq is transforming cybersecurity with its autonomous SecOps platform powered by Hyperautomation and agentic AI. By connecting the entire security stack, Torq empowers organizations to instantly and precisely remediate security events, and orchestrate complex security processes at scale.�

Multinational enterprise companies including Virgin Atlantic, Chipotle Mexican Grill, Kenvue (BAND-AID, Listerine, Tylenol, and Neutrogena), PepsiCo, Procter & Gamble, Siemens, Telefónica, Valvoline, Wiz, and Zoominfo are achieving extraordinary SOC efficiency outcomes with Torq’s platform.

Address
HaMelacha Street 3, Floor 10-11
Tel Aviv-Yafo, 6721503
Israel

Website
torq.io

Social Networks

Wiz protects everything organizations build and run in the cloud, transforming security through a new operating model that connects code, cloud, and runtime context.

The Wiz CNAPP platform empowers security, development, and operations teams to rapidly identify and remove critical risks, so they can build fast and securely. Wiz provides full-stack visibility, clear priorities, and attack path analysis, helping teams focus on what truly matters and reduce real risk.

With Wiz, organizations can embrace the speed of cloud and AI with confidence, knowing they have a unified platform to detect, prevent, and respond to threats across the entire lifecycle.

Wiz is trusted by leading companies including Agoda, Avery Dennison, BMW, Cushman & Wakefield, DocuSign, Mars, Plaid, Priceline, Salesforce, and Slack. The company is backed by Advent, Aglaé, Andreessen Horowitz, Blackstone, Cyberstarts, Greenoaks, Greylock, Index Ventures, Insight Partners, Lightspeed, Salesforce, Sequoia, Thrive Capital, and Wellington.

Address
50 Broadway, Suite 4, 7th Floor
London, SW1H 0DB
United Kingdom

Website
www.wiz.io

Social Networks

Airia delivers the industry's first unified enterprise AI orchestration and security platform, purpose-built to eliminate AI anxiety and accelerate adoption. Airia guides the world's most innovative enterprises through their AI transformation journey by addressing the critical gap between rapid innovation and governance requirements—empowering teams to build and deploy AI agents fast while maintaining enterprise-grade control.

Address
756 W Peachtree Street NW
Atlanta, Georgia 30308
United States of America

Website
airia.com

Social Networks

BlinkOps is the Agentic Security Automation Platform. It gives security teams the ability to build and deploy task-specific AI agents that automate detection, investigation, containment, and coordination across the enterprise. Each agent is defined by the team, scoped to a clear responsibility, and operates within structured, auditable workflows. These agents act independently or in coordination with one another, forming a distributed automation layer that reflects how real security teams work.
Agents in Blink are built using several supported methods: a no-code drag and drop builder, low-code logic, Python or Bash scripts, or natural language through Blink Copilot. Regardless of how they’re created, all agents run through Blink’s deterministic automation engine. This guarantees consistency, control, and auditability. Every action taken is governed by rules that teams define and review.
Unlike general-purpose LLM assistants, Blink agents are bounded. They only operate on the tasks, systems, and data they are explicitly granted access to. Security teams retain full control over decision logic, data access, escalation paths, and execution timing. When needed, agents can coordinate with humans using Blink’s built-in case management tools, which allow real-time collaboration between automation and human judgment.
Blink’s platform also includes the Analyst Copilot, an LLM-powered assistant that helps SOC analysts streamline investigations. Copilot understands incident context, can access associated case data, and can be used to trigger enrichment actions or even full remediation, all from within the same interface. It reduces the manual steps required during triage, speeds up resolution, and helps analysts operate more efficiently.
To support long-term adoption and scale, Blink includes Automation-as-a-Service. This offering allows organizations to outsource agent development and workflow maintenance to Blink’s team. As environments evolve or new threats emerge, Blink can continuously adapt automation without relying solely on internal resources.
Security teams use Blink to automate work across the entire SOC lifecycle, from alert intake and correlation to investigation and containment. Agents can take input from EDRs, SIEMs, cloud logs, identity systems, and more. They can write back into ticketing platforms, messaging apps, or response tools. This full-loop coverage allows teams to operationalize detection and response logic in near real time.
Importantly, Blink blends LLM-based flexibility with deterministic safeguards. AI-generated steps and natural language inputs are always compiled into structured workflows before execution. This ensures security and traceability without sacrificing speed.
The result is a platform that supports fast, safe, and precise automation, on your terms. Blink enables teams to scale their impact, accelerate threat response, and reduce burnout by turning routine security work into reliable, autonomous execution. Every agent becomes part of the operating fabric of the SOC, always on and always working within the rules the team defines.

Address
150 Menachem Begin Street
Tel Aviv-Yafo, 6492105
Israel

Website
www.blinkops.com

Social Networks

We are Bugcrowd. Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge Platform™. Our network of hackers brings diverse expertise to uncover hidden weaknesses, adapting swiftly to evolving threats, even against zero-day exploits. With unmatched scalability and adaptability, our data and AI-driven CrowdMatch™ technology in our platform finds the perfect talent for your unique fight. We are creating a new era of modern crowdsourced security that outpaces threat actors.

Unleash the ingenuity of the hacker community with Bugcrowd, visit www.bugcrowd.com

Address
300 California Street, Suite 220
San Francisco, California 94104
United States of America

Website
www.bugcrowd.com

Social Networks

Censys is the authority for Internet intelligence and insights. Delivering the most complete, accurate, and up-to-date global map of Internet infrastructure, Censys provides industry leading solutions for attack surface management, threat hunting, and proactive incident response. Global governments, Fortune 500 companies, and security providers around the world trust Censys to uncover risks faster, respond more effectively, and prevent breaches before they happen. Learn more at censys.com.

Address
116 South Main Street
Ann Arbor, Michigan 48104-1903
United States of America

Website
censys.com

Social Networks

Cracken is the world’s first AI Security Copilot for Red Defense. We use safe, real attack logic to validate what’s exploitable—moving security from visibility to proof. Built by warfighters, trusted by hackers, and validated by Gartner for advancing beyond exposure management into Automated Exposure Validation (AEV), Cracken turns defense into active, intelligent offense.

Outcomes (what you get):

- Verified exposure, not noise: Prove which paths are exploitable and which are safe to ignore.
- Faster hardening: Prioritize by exploitability and cut time to fix from days to minutes.
- Fewer breaches, smaller blast radius: Break attack chains before release and reduce zero?day exposure windows.
- Board?grade evidence: Audit?ready logs that show what was attempted, what succeeded, what blocked, and how risk changed.
- Improve resilience, detection, and response strategy.
- Operational confidence: Map validated findings to controls and compliance with full traceability.

Why Cracken is different:

- Agentic attack logic that thinks like an adversary and chains real TTPs.
- Human?in?the?loop precision and safety.
- Zero?day path discovery beyond known CVEs.
- Nation?state pedigree and board?grade transparency.

Where teams use Cracken:
- Agentic AI Security Copilot for red?first decisioning.
- Red Team Operations that simulate nation?state campaigns, continuously.
- Penetration Testing at coder speed with repeatable, explainable runs.
- Attack Surface Management that proves impact, not just maps assets.
- Continuous Exposure Management that validates (AEV), then drives action.
- Threat Hunting that converts TTP intel into evidence?backed outcomes.

Cracken isn’t another dashboard. It’s offense?grade AI that makes defense proactive, provable, and fast. If you need to brief the board with evidence, compress risk windows, and operate at the speed of your adversaries, come see Cracken in the Business Hall booth 111.

*** Weaponize Defense. Release The Cracken.

Address
3790 El Camino Real, Unit 500
Palo Alto, California 94306
United States of America

Website
cracken.ai

CYJAX is an award-winning technology company and provider of digital threat intelligence services to international corporations, law enforcement agencies and the public sector.

Using our state-of-the-art technology and our world-class team of analysts, CYJAX monitors the Internet to identify the digital risks to your organisation from cyber threats, reputational risk, and the Darknet.

CYJAX provides an Incident Response and Investigation service that provides a calming and structured approach in helping organisations when a breach does occur.

Our proactive methodologies make sense of the noise and help make intelligent decisions, securing the future for our customers.

Address
25 Wilton Road,Pimlico
Witan Way
London, SW1V 1LW
United Kingdom

Website
www.cyjax.com/site/home

Social Networks

Cymulate is the leader in exposure management that proves the threat and improves resilience. More than 1,000 customers worldwide rely on the Cymulate platform to prove, prioritize and optimize their threat resilience as they make threat validation a continuous process in their exposure management programs. Cymulate integrates with assessment tools and continuously tests defenses against the full kill chain of attack techniques providing cybersecurity teams with the automation and insights to prove and optimize threat resilience; accelerate detection engineering; drive continuous threat exposure management; and measure and baseline security posture. Prove the threat. Improve resilience.

Address
1 Ballards Lane
London, N3 1LQ
United Kingdom

Website
cymulate.com

Social Networks

Harness provides complete application security on the industry's leading AI DevOps platform. Combining application security testing with API protection and AI security, Harness helps organizations secure everything after code. Pipeline-native security can keep up with development, scale across 1000s of applications, and continuously monitor runtime risk - for both traditional and AI-native applications. Security, DevSecOps, and platform teams rely on Harness to eliminate blind spots, stop advanced threats, simplify compliance, and accelerate secure delivery without slowing innovation.

Address
55 Stockton Street, Floor 8
San Francisco, California 94108
United States of America

Website
www.harness.io

Social Networks

HPE is a leader in essential enterprise technology, bringing together the power of AI, cloud, and networking to help organizations achieve more. As pioneers of possibility, our innovation and expertise advance the way people live and work. We empower our customers across industries to optimize operational performance, transform data into foresight, and maximize their impact. Unlock your boldest ambitions, with HPE. Discover more at HPE.com

Address
210 Wharfedale Road
Winnersh Triangle
Wokingham, RG41 5TP
United Kingdom

Website
www.hpe.com

Address
100 Bishopsgate, 8th Floor
London, EC2N 4AG
United Kingdom

Website
www.huntress.com

IPinfo is the internet data company, providing the world’s most accurate IP data that delivers highly contextual metadata on each IP address, from geolocation and mobile carrier to privacy detection and proxies. IPinfo is trusted by more than 500,000 users, from developers to Fortune 500 companies, who use IP data to make smarter decisions, mitigate security risks, ensure regulatory compliance, and drive better customer experiences. IPinfo’s robust and secure API processes more than 1 billion requests daily, with data also available through direct download and leading cloud platforms, all backed by a team of data experts who are committed to precision. Discover the power of better IP data at IPinfo.io.

Address
5616 49th Avenue Southwest
Seattle, Washington 98136
United States of America

Website
ipinfo.io

Social Networks

Keeper Security is one of the fastest-growing cybersecurity software companies that protects thousands of organisations and millions of people in over 150 countries. Keeper is a pioneer of zero-knowledge and zero-trust security built for any IT environment. Its core offering, KeeperPAM®, is an AI-enabled, cloud-native platform that protects all users, devices and infrastructure from cyber attacks. Recognised for its innovation in the Gartner Magic Quadrant for Privileged Access Management (PAM), Keeper secures passwords and passkeys, infrastructure secrets, remote connections and endpoints with role-based enforcement policies, least privilege and just-in-time access. Learn why Keeper is trusted by leading organisations to defend against modern adversaries at KeeperSecurity.com.

Address
5A Kings Terrace, Lower Glanmire Road
Lower Glanmire Rd
Cork, Cork T23 DX49
Ireland

Website
www.keepersecurity.com

Social Networks

Minimus images radically reduce the amount of vulnerabilities that impact your cloud environment. Minimus is founded by the Twistlock team that pioneered container security and authored NIST SP 800-190. Minimus builds images from scratch, directly from upstream project sources, with only the minimal software needed to run the app, dramatically reducing their attack surface. Minimus images are OCI compliant and you deploy by changing a single line in deployment files. Minimus eliminates time consuming and low value remediation work for devs, is easy for ops to deploy and manage using their existing tools, and provides security with remarkably clear risk reduction and nearly instant time to value.

Minimus solves the endless treadmill of cloud software vulnerabilities by simply preventing them from existing. Minimus provides secure, minimal container and VM images, rebuilt from scratch daily to eliminate over 95% of CVEs.??Founded in 2022 by the team behind container security pioneer Twistlock, Minimus has raised a $51 million seed round from YL Ventures and Mayfield. The company is headquartered in Baton Rouge with offices in New York, Tel Aviv, and Portland, OR.

Address
1776 Broadway, Suite 705
New York, New York 10019
United States of America

Website
www.minimus.io

Securiti provides a unified Data+AI Command Center that helps CISOs gain complete visibility and control over sensitive data and AI usage across cloud, SaaS, and on-prem environments. Its platform integrates DSPM, AI security and governance, privacy automation, and regulatory compliance into a single framework that continuously discovers data, maps data-to-AI flows, assesses risks, and enforces policies. By consolidating data security and AI governance, Securiti enables security leaders to reduce exposure, manage emerging AI risks, meet global regulatory requirements, and safely accelerate AI adoption without increasing operational complexity.

Address
1 Ashley Road, 3rd Floor
Altrincham, WA14 2DT
United Kingdom

Website
securiti.ai

Smallstep�is the world’s first�Device Identity Platform™, enabling Zero Trust, certificate-based access to infrastructure, applications, and networks. Built in partnership with�Apple�and�Google, Smallstep uses cryptographic attestation and short-lived, hardware-backed credentials to replace passwords, SSH keys, and VPN clients. By integrating with tools like�Jamf,�Intune, and�Okta,�Smallstep ensures that only trusted users on compliant devices can access sensitive systems—delivering true Zero Trust security without user friction.

Address
548 Market Street, PMB 50584
San Francisco, California 94104
United States of America

Website
smallstep.com

Social Networks

Tenable® is the exposure management company, exposing and closing the cybersecurity gaps that erode business value, reputation and trust. The company’s AI-powered exposure management platform radically unifies security visibility, insight and action across the attack surface, equipping modern organizations to protect against attacks from IT infrastructure to cloud environments to critical infrastructure and everywhere in between. By protecting enterprises from security exposure, Tenable reduces business risk for more than 44,000 customers around the globe. Learn more at tenable.com.

Address
5 Pine Trees, 3rd Floor, Chertsey Lane
Staines-upon-Thames, TW18 3HR
United Kingdom

Website
www.tenable.com

Social Networks

Most companies discover they've been breached way too late. Thinkst Canary fixes this: just 3 minutes of setup; no ongoing overhead; nearly 0 false positives, and you can detect attackers long before they dig in. Check out why our Canaries are deployed and loved on all 7 continents...https://canary.tools/love

Address
Unit L6, 5 Howe Street, Observatory
Cape Town, 7925
South Africa

Website
canary.tools

Social Networks

Vanta’s Trust Management Platform helps 14k+ companies - like Atlassian, Iceland Air, Duolingo, Nando's and Snowflake - start and scale their security programs and build trust with buyers.

Vanta saves security teams time and improves program visibility by automating 35+ compliance frameworks, such as SOC 2 and ISO 27001, and GRC workflows, like risk management.�

Address
Vanta, Kent House
London, W1W 8AJ
United Kingdom

Website
www.vanta.com

Social Networks

XBOW is the autonomous offensive security company redefining cyber defense for the AI era. Combining AI reasoning with offensive security workflows, the XBOW platform delivers expert-level security testing at machine speed. XBOW empowers security teams to transform from reactive to proactive defense at AI scale. For XBOW customers, autonomous offense is the best defense.

Address
600 1st Avenue
Suite 330 PMB 74837
Seattle, Washington 98104-2246
United States of America

Website
xbow.com

Social Networks

Zenity is the first security and governance platform purpose-built for AI agents - spanning SaaS, home grown platforms (Cloud), and end-user devices (Endpoint). Trusted by Fortune 500 enterprises, Zenity helps security teams confidently adopt AI by delivering defense in depth with full-lifecycle coverage: from agent discovery and posture management to real-time detection, inline prevention, and response. With an agent-centric approach that prioritizes how agents behave, what they access, and which tools they invoke, Zenity eliminates blind spots and enforces consistent policy and controls across environments so organizations can innovate with AI, without compromising security. Learn more at www.zenity.io.

Address
1 Rockefeller Plaza, Studio, 2nd floor
New York, New York 10020
United States of America

Website
www.zenity.io

Zero Networks is revolutionizing network security with its effortless microsegmentation solution that stops ransomware
and implements in days, not years. By automating asset tagging and policy creation, Zero Networks saves enterprises
an average of 86% on total cost of ownership compared to legacy microsegmentation solutions that rely on timeintensive manual processes. The Zero Networks platform combines advanced Identity Segmentation and Secure
Remote Access solutions, fortified by network-layer MFA, to accelerate Zero Trust initiatives for companies of any size.
This comprehensive approach enables organizations to stop lateral movement attacks, exceed compliance
requirements, achieve top-tier audit scores, and pass every penetration test.

Address
4 Berkovitch Street
Tel Aviv-Yafo, 516016151
Israel

Website
zeronetworks.com

Social Networks

Arctic Wolf® is a global leader in security operations, delivering the first cloud-native security operations platform to end cyber risk. Built on open XDR architecture, the Arctic Wolf AuroraTM Platform operates at a massive scale and combines the power of artificial intelligence with world-class security experts to provide 24×7 monitoring, detection, response, and risk management. We make security work.

Address
77 Grey Street
Newcastle upon Tyne, NE1 6EF
United Kingdom

Website
arcticwolf.com/uk

Social Networks

Auguria is a AI native data enrichment, labeling and automaton tool designer for SecOps teams that want to focus on security.

Address
999 Corporate Drive, Suite 100
Ladera Ranch, California 92694
United States of America

Website
auguria.io

Social Networks

Binalyze is the leader in AI-augmented automated investigation and response (AIR). AIR transforms the speed, depth, and efficiency of cyber investigations—reducing timelines from days or weeks to hours. Combining forensic-level visibility, automation, and embedded AI assistance, it empowers security, SOC, and MSSP teams to uncover root cause, validate alerts, and pivot seamlessly into threat hunting.
With integration across SIEM, EDR, and SOAR tools, AIR delivers a unified workflow from detection to resolution. From remote evidence collection to collaborative analysis, AIR accelerates decisions, strengthens outcomes, and enhances cyber resilience for enterprises and managed service providers worldwide.

Address
Mustafa Kemal Mahallesi Dumlupınar Bulvarı No:280/G İç Kapı No:1202, Çankaya
Ankara, 06100
Turkey

Website
www.binalyze.com

Social Networks

Bolster AI is a brand security platform that helps security teams predict, detect, and eliminate scams, impersonation, and online fraud before they reach customers. Attackers now spin up full end-to-end spoofed experiences across web, social platforms, app stores, and email. Bolster monitors this external ecosystem continuously, uncovers abuse early, and removes threats fast so companies can stay ahead of attacks that never touch their internal perimeter.
The platform discovers and analyzes look-alike sites, fake storefronts, counterfeit apps, and impersonation accounts at scale. Bolster provides clear insight into the patterns behind attacks, how threat actors are evolving, and where brand exploitation is gaining momentum. Security teams can explore trends, see how their exposure compares across their industry, and understand the root causes behind emerging campaigns.
Bolster AI’s automated takedowns eliminate the manual burden of handling external threats. Phishing sites, scam pages, and impersonation assets are removed quickly, supported by Bolster AI’s experienced SOC team. Every action is tracked in a transparent workflow so organizations always know what was found, what was taken down, and how quickly threats were neutralized.
Enterprises across financial services, e-commerce, technology, crypto, marketplaces, and consumer brands use Bolster AI to reduce external risk and protect customers from fraud. The platform integrates cleanly into existing SOC, SIEM, SOAR, and fraud operations workflows, giving security teams a unified way to monitor and reduce their external attack surface.
As scams grow in volume, automation, and sophistication, predictive external threat defense is becoming essential for any organization built on customer trust. Bolster AI gives teams the visibility, automation, and intelligence needed to stay ahead of attackers and safeguard their brand across every digital channel.

Address
2880 Lakeside Drive, Suite 150
Santa Clara, California 95054
United States of America

Website
www.bolster.ai

Corelight provides deep, passive visibility into network activity by analysing traffic with tools like Zeek and Suricata, detecting threats, lateral movement and abnormal behaviour across IT and OT environments without touching endpoints. GreyNoise complements this by classifying internet IP activity, identifying whether external scans and attacks come from common background noise or malicious, targeted sources. Together, Corelight uncovers what is happening inside a network, while GreyNoise explains who is on the outside and whether they matter, enabling organisations to reduce false positives, prioritise real threats and investigate attacks more efficiently.

Address
548 Market Street,PMB 77799
San Francisco, California 94104
United States of America

Website
www.corelight.com

Address
10 SE 1st Avenue, Suite B
Delray Beach, Florida 33444
United States of America

Website
www.corellium.com

Data is the fastest growing attack surface in the world. Cyera is a pioneer in the data security space that empowers security leaders at Paramount Pictures, AT&T, Peloton, Skechers, and others, to discover their data attack surface, control the use of data, monitor, detect, and quickly remediate risk. What makes Cyera unique is its agentless design that deploys in just five minutes across any environment - and its AI-powered classification engine that auto-learns over time, and delivers 95% accuracy. With Cyera, security leaders can focus on enabling their business to safely use data in all the ways they see fit - both now, and into the future.

Address
500 7th Avenue
New York, New York 10018-4502
United States of America

Website
www.cyera.com

Social Networks

DataDome stops cyberfraud and bots in real time, outpacing AI-driven attacks across websites, apps, and APIs. Named a Leader in The Forrester Wave™ for Bot Management, DataDome is trusted by leading brands like Tripadvisor, Zocdoc, and SoundCloud. Its multi-layered AI engine focuses on intent, not just identity - because it’s not about knowing who’s real, it’s about what they intend to do. With thousands of adaptive AI models, DataDome blocks every fraudulent click, signup, and login in under 2 milliseconds without compromising performance. Backed by a 24/7 SOC and expert threat researchers, DataDome autonomously stops over 400 billion attacks annually. With 50+ integrations, 30+ global PoPs, and record-fast time to value, DataDome is a recognized Leader on G2 and one of G2’s Best Security Products of 2024 - delivering protection that outperforms.

Address
29 Bd des Italiens
Paris, 75002
France

Website
datadome.co

Social Networks

EasyDMARC is a one-stop platform for securing your email domain infrastructure and boosting email deliverability for peace of mind. Trusted by 83,000 businesses globally, our time-saving solutions simplify and automate your DMARC journey, helping you minimize the risk of cyberattacks while ensuring your emails reach the right inboxes. EasyDMARC empowers businesses of all sizes to manage email authentication effortlessly.

Address
8 The Green #7668
Dover, Delaware 19901
United States of America

Website
easydmarc.com

Social Networks

Founded in 2014, EclecticIQ is a global leader in threat intelligence technology and services, empowering organizations to defend against advanced cyber threats in an ever-evolving digital landscape.

We partner with security teams globally, delivering our Intelligence Center™ platform to help cyber defenders make faster, smarter decisions against advanced cyber threats. At the core of our approach is Intelligence Compass™, a groundbreaking capability which maps threats directly to each organization's unique risk profile. By helping defenders focus on what truly matters, it reduces alert fatigue and ensures cybersecurity efforts align with strategic business priorities.

Trusted by governments and some of the world's most targeted sectors including finance, telecommunications, aviation, and critical infrastructure, EclecticIQ's combat- proven platform is designed by experienced defenders from the NSA, US Cyber Command, and Dutch Intelligence.

Intelligence Center™ provides a unified workspace for CTI and SOC teams, significantly reducing response times and operational complexity while meeting national security-grade standards.

Headquartered in Amsterdam with teams across Europe, North America, and APAC, EclecticIQ is building a safer digital future where businesses operate with confidence, resilience, and clarity in their cybersecurity posture.

Our AI-embedded platform transforms decades of frontline experience into predictive intelligence, giving your team the contextual insights human analysts alone can't deliver.

? Pioneering leadership: We've revolutionized threat intelligence since 2014 with our battle-tested platform that consistently outperforms competitors and sets new industry standards.

? Unrivalled expertise: Our platform leverages decades of frontline cyber defense experience, incorporating battle-tested intelligence methods that identify threats others miss.

? Collaborative excellence: We eliminate security silos with purpose-built tools for intelligence sharing, task management, and unified team response.

? Proactive innovation: We elevate your security beyond reactive defense by helping you anticipate, prioritize, and neutralize threats before they escalate, keeping you ahead of adversaries.

? Strategic foresight: Our platform provides real-time visibility across your threat landscape, eliminating blind spots and turning intelligence into strategic advantage.

EclecticIQ. Where AI precision meets security expertise.

Visit www.eclecticiq.com or follow us on LinkedIn and X for more information.

Address
De Ruijterkade 6
Amsterdam, 1013 AA
Netherlands

Website
www.eclecticiq.com

Social Networks

Fortra's Offensive Security portfolio delivers leading-edge tooling developed by advanced experts in the field. With Core Impact, Cobalt Strike, and Outflank Security Tooling (OST), security professionals can simulate advanced adversarial techniques across the full attack lifecycle. These solutions deliver specialized attack capabilities individually or can be used together to proactively validate security controls and defenses with dynamic and realistic assessments.

Address
1 Ashley Road, 3rd Floor
Altrincham, WA14 2DT
United Kingdom

Website
www.fortra.com

Social Networks

Address
Eagle TowerMontpellier Drive
Cheltenham, GL50 1TA
United Kingdom

Website
foundryzero.co.uk

Gecko is an AI-powered static analysis platform that finds and fixes business logic vulnerabilities that traditional scanners miss. It understands an application’s design, data flows, and business context to help teams catch critical issues before they reach production.

Address
4283 Express Lane, Suite GB12463
Sarasota, Florida 34249
United States of America

Website
www.gecko.security

Social Networks

Imperum introduces a new era of cybersecurity with its Autonomous SecOps & Investigation Platform powered by Hyperautomation. By unifying detection, investigation, and response within a single pane of glass, it enhances efficiency, consistency, and adaptability across diverse technology environments. Its intelligent, connector-agnostic architecture ensures seamless integration without vendor lock-in – future-proofing security operations while maintaining complete control and operational agility.

Address
Citius 7
Hoofddorp, 2134 DH
Netherlands

Website
imperum.io

Social Networks

ING is a global bank with a strong European base with 60,000 employees serving around 38 million customers in over 40 countries. We empower people to stay a step ahead in life and in business. By applying technology on a global scale we aim to provide superior value for customers and put sustainability at the heart of what we do. Growing the difference in people’s lives, with tech that matters is what drives us.

Address
Bijlmerdreef 24
Amsterdam, 1102 CT
Netherlands

Website
www.ing.com

Social Networks

Jit is an Agentic Application Security Platform built to cut through AppSec complexity and reduce the manual work that slows teams down. Instead of long backlogs, fragmented scanners, and constant investigation, Jit’s AI Agents validate real risk, explain impact, and even generate accurate remediation with humans in the loop. Its unified ASPM platform consolidates SAST, SCA, IaC, cloud, container, and CI/CD security in one place, reducing tooling cost and eliminating fragmented visibility.

Powered by a continuously updated Company Knowledge Graph, Jit delivers environment-specific insights — not generic scanner noise. AppSec teams get validated attack paths and continuously updated dashboards; developers get clear, contextual guidance directly in their workflow.

The result: faster remediation, shorter exposure windows, lower AppSec labor and tooling spend, and quicker release cycles.

Address
100 Summer Street
Boston, Massachusetts 02110-2106
United States of America

Website
www.jit.io

Social Networks

Orca Security is the pioneer of agentless cloud security that is trusted by hundreds of enterprises globally. Orca makes cloud security possible for enterprises moving to and scaling in the cloud with its patented SideScanning™ technology and Unified Data Model. The Orca Cloud Security Platform delivers the world's most comprehensive coverage and visibility of risks across the cloud. With continuous first-to-market innovations and expertise, the Orca Platform ensures security teams quickly identify and remediate risks to keep their businesses secure.

Address
1455 NW Irving St, Suite 390
Portland, Oregon 97209
United States of America

Website
orca.security

Social Networks

Patrowl offers a continuous and comprehensive risk coverage tool, safeguarding against accidental, opportunistic, and targeted attacks. Protecting your business from all external threat scenarios, concerning all you internet exposed assets (applications, web sites, API, remote access, cloud…).

Patrowl is a Continuous Threat Exposure Management (CTEM) service structured around four fundamental actions:

1. Mapping, ensure continuous discovery of all your internet exposed assets.

2. Identification, detect weaknesses and vulnerabilities in real-time.

3. Remediation, effortlessly generate remediation plans and automated 1-click reports.

4. Control, supervise remediation or correction with 1-click retest.

Address
33 Foley Street
London, W1W 7TL
United Kingdom

Website
www.patrowl.io

PCA Cyber Security is an embedded cybersecurity expert company specialising in penetration testing, threat intelligence, and continuous monitoring. Founded in 2019 and headquartered in Budapest, Hungary, the company brings deep technical expertise in embedded systems, IoT devices, and connected infrastructure.
PCA helps leading brands in the financial services, automotive, energy, and manufacturing sectors secure critical systems such as vehicles, ECUs, payment platforms, and industrial networks. Its team of more than thirty cybersecurity experts focuses on exposing real-world attack paths and delivering actionable intelligence to minimise cyber risk.
With offices in Munich, Madrid, and the United States, PCA Cyber Security supports clients across Europe and North America in staying ahead of threat actors and strengthening resilience in connected environments.
For more information, visit www.pcacybersecurity.com

Address
Záhony utca 7, C bdg.
Budapest, 1031
Hungary

Website
pcacybersecurity.com

Social Networks

Address
816 W Bannock Street, Suite 400
Boise, Idaho 83702
United States of America

Website
plextrac.com

Roseman Labs is a European deep-tech company redefining how sensitive data can be used collectively. We are a pioneer in Encrypted Computing, a breakthrough technology that enables organizations to act together on critical intelligence, without ever giving up control of their data.

Founded in 2020, we are trusted by 150+ institutions across national security, financial services and healthcare. Our team has since grown to 30+ people, including a team of 9 cryptographers who continuously develop the Multi-Party Computation technology that drives Roseman Labs.

Address
Europalaan 400
Utrecht, 3526 KS
Netherlands

Website
rosemanlabs.com

Address
Küçükbakkalköy Mahallesi, Merdivenköy Yolu Caddesi, Rüya Sk, Vogue Business Center, No:12/18 Daire:60 Ataşehir
Istanbul, 34750
Turkey

Website
sechard.com

Semgrep’s mission is to profoundly improve software security and reliability. Semgrep OSS is an open-source static analysis tool designed for developers to perform fast and customizable code analyses across large codebases. Built on top of the Semgrep OSS engine, the Semgrep AppSec Platform provides industry-leading code, secrets, and dependency scans to enable organizations to ship secure code quickly, instead of slowing down development. The Semgrep AppSec Platform is adopted by companies like Snowflake, Figma, Lyft, and Dropbox. Founded by Drew Dennison, Isaac Evans, and Luke O’Malley in 2017, Semgrep is funded by Felicis Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital.

Address
799 Market Street
5th floor
San Francisco, California 94103-2047
United States of America

Website
semgrep.dev

Social Networks

Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-powered platform and expert-led services. It adapts to organizations at any stage of security maturity, combining machine learning, automation, and real-time threat intelligence with human expertise from Sophos X-Ops for 24/7 threat monitoring, detection, and response.

Sophos delivers industry-leading managed detection and response (MDR) and a broad portfolio of solutions, including endpoint, network, email, and cloud security, extended detection and response (XDR), identity threat detection and response (ITDR), and next-gen SIEM. Paired with expert advisory services, Sophos helps reduce risk, accelerate response, and outpace evolving cyber threats.

Address
The Pentagon, Abingdon Science Park
Abingdon, OX14 3YP
United Kingdom

Website
www.sophos.com/en-gb

Social Networks

StrangeBee is a cybersecurity software company based in Paris. We're the creators of TheHive and Cortex, trusted by leading cybersecurity teams worldwide.

Our mission is to provide top-notch incident response capabilities to organizations of all sizes, offering both on-premise and cloud solutions.

TheHive and Cortex are used by most SOCs, CERTs, and CSIRTs, supporting incident responders in their daily activities, speeding up triage and response, reducing time to recovery, and combating "alerts fatigue".

We empower incident responders to efficiently handle cyberattacks, helping thousands of analysts defend companies against security threats.

Address
25 rue de Tolbiac
Paris, 75013
France

Website
www.strangebee.com

Social Networks

Sublime’s agentic platform stops more email attacks with less work. Our AI agents work like a digital SOC team in your environment, triaging and blocking advanced threats while adapting protections at adversary speed. It provides full transparency and automation by default, with control on demand for advanced teams, eliminating vendor bottlenecks or one-size-fits-all limits.

Address
712 H St NE, PMB 14
Washington, District of Columbia 20002
United States of America

Website
sublime.security

Social Networks

Verax AI provides solutions which mitigate privacy and security risks within organisations adopting AI, enabling them to manage a safe, and responsible environment to do so.

Verax Protect helps organisations ensure that the risks of using AI, such as the leakage of proprietary and sensitive data, malicious AI-generated responses, and data oversharing are prevented.

By analysing every AI prompt in real-time, Verax Protect can catch any security and privacy risk and stop the AI response before it can cause any damage. Verax Protect is self-hosted and managed in your organisation’s private network and serves as a proxy between the employee and AI.

Address
167 Madison Avenue
Suite 205
New York, New York 10016-5403
United States of America

Website
verax.ai

Social Networks

VMRay provides industry-leading malware analysis and threat intelligence technologies that reveal, classify, and understand the most evasive threats - from zero-day and evasive malware to multi-stage phishing campaigns.

Trusted by enterprises, government, defence, and critical-infrastructure organizations worldwide, VMRay helps defenders stay ahead of attackers.

How security teams use VMRay:
- Security Operations (SOC): Automate validation, context enrichment, and triage of alerts from EDR, SOAR, and SIEM environments.
- Incident Response (CERT): Automate in-depth analysis and forensic investigation of malware and phishing samples to accelerate containment and remediation.
- Threat Intelligence (CTI): Gain reliable threat insights and context to support proactive hunting and detection engineering.

Address
Suttner-Nobel-Allee 7
Bochum, 44803
Germany

Website
www.vmray.com

Social Networks

Hello World. Meet vPenTest by Vonahi Security – the future of offensive cybersecurity. This automated SaaS platform delivers the expertise of seasoned CISSP, OSCP, and OSCE-certified consultants to help organizations run fast, consistent, and on-demand network penetration tests. Built on over 13 years of offensive security experience and a proprietary framework that evolves with the latest attack techniques, vPenTest transforms traditional, time-consuming network pentesting into an easy, scalable solution trusted by over 22,000 organizations including MSPs, financial institutions, and compliance-driven organizations. MSP partners and customers can now receive a CREST-certified network penetration test report from vPenTest across Europe, the Middle East, Africa (EMEA), and Australasia. This prestigious accreditation places us among an elite group of only 300 CREST-accredited cybersecurity providers worldwide.

Address
701 Brickell Ave, Unit 400
Miami, Florida 33131
United States of America

Website
www.vonahi.io

Social Networks

VulnCheck is the exploit intelligence company helping enterprises, government organizations, and cybersecurity vendors solve the vulnerability prioritization challenge. Trusted by some of the world's largest organizations responsible for protecting hundreds of millions of systems and people, VulnCheck helps organizations outpace adversaries by providing the most comprehensive, real-time vulnerability intelligence that is autonomously correlated with unique, proprietary exploit and threat intelligence. Please let me know the next steps to finalize our sponsorship agreement.

Address
6 Longfellow Road
Lexington, Massachusetts 02420
United States of America

Website
vulncheck.com

Social Networks

wolfSSL leads the way in next-generation cryptography from post-quantum security to full compliance with modern security standards and protocols, including support for upcoming EU Cyber Resilience Act requirements and NIST-validated FIPS modules. Trusted across defense, finance, automotive, and critical infrastructure, our lightweight, high-performance TLS 1.3 libraries deliver cutting-edge protection without compromise, with a footprint up to 20× smaller than OpenSSL.

wolfSSL now delivers Full Linux FIPS 140-3, enabling the FIPS-validated wolfCrypt module to handle all cryptographic operations within a distribution, including kernel crypto, GnuTLS, libgcrypt, NSS, and OpenSSL. Full BSD support is also available. Stop by our booth to learn more! wolfSSL runs across a wide range of embedded environments, as well as Windows, macOS, and mobile platforms. We enable fast FIPS deployments in as little as 90 days at half the traditional cost and a tenth of the time of going it alone. Come talk with us about the world’s first post-quantum FIPS certification, now in progress!

Alongside its FIPS validations, wolfSSL also supports CNSA 2.0 compliant post-quantum algorithms, including ML-KEM, ML-DSA, LMS, and XMSS, helping customers prepare for a quantum-secure future. wolfSSL is trusted in over 5 billion connections across embedded systems, RTOS environments, and standard operating platforms. Our solutions are designed for interoperability and ease of use, with a simple API, OpenSSL compatibility, OCSP and CRL support, and flexible integration with existing systems.

Beyond TLS, wolfSSL provides full lifecycle protection with secure boot and secure firmware update solutions through wolfBoot, our DO-178C and MISRA-compliant bootloader. For automotive and hardware security applications, wolfHSM delivers a portable HSM abstraction layer for secure key storage and cryptographic operations.

At wolfSSL, we focus on creating efficient, future-ready security solutions that help developers meet evolving regulatory and performance needs. Whether you are modernizing legacy systems, or preparing for post-quantum migration, wolfSSL provides the speed, reliability, and assurance needed to keep your systems secure.

Visit our team at Black Hat Europe to learn how wolfSSL can help you implement trusted cryptography for the next generation of connected systems.

Address
10016 Edmonds Way, Suite C-300
Edmonds, Washington 98020
United States of America

Website
www.wolfssl.com

Social Networks

YesWeHack is a leading Bug Bounty and Vulnerability Management Platform whose clients include Louis Vuitton, Swiss Post, Orange France and Moneybox. Founded in 2015, YesWeHack connects organisations worldwide to tens of thousands of ethical hackers, who uncover vulnerabilities in websites, mobile apps and other digital assets. YesWeHack products include Bug Bounty, Vulnerability Disclosure Policy (VDP), Pentest Management and Attack Surface Management platforms.

Address
14 Rue Charles
Paris, 75004
France

Website
yeswehack.com

Social Networks

The CHERI Alliance is a global non-profit consortium dedicated to advancing memory-safe computing through the adoption and evolution of CHERI (Capability Hardware Enhanced RISC Instructions) technology. By bringing together industry leaders, academic institutions, government organizations, and innovators, the Alliance works to transform the foundations of digital security across hardware, software, and systems.
CHERI introduces strong, hardware-enforced memory protection that helps eliminate entire classes of critical vulnerabilities such as buffer overflows, memory corruption, and use-after-free errors. These issues remain among the most costly and dangerous cybersecurity threats worldwide. The CHERI Alliance is committed to accelerating the transition from traditional, vulnerable architectures to capability-based systems that offer security by design.
The Alliance supports collaboration, education, research, and real-world deployment of CHERI-related technologies. Its members contribute to open standards, reference implementations, toolchains, and operating system support that enable developers and organizations to build safer, more resilient digital infrastructure.
Through advocacy, technical working groups, events, and shared resources, the CHERI Alliance promotes widespread understanding of capability-based security and its role in protecting critical systems—from cloud computing and embedded devices to national infrastructure.
By uniting expertise across sectors and regions, the CHERI Alliance is helping to shape the future of secure computing—where safety, performance, and innovation go hand in hand.

Address
Salisbury HouseStation Road
Cambridge, CB1 2LA
United Kingdom

Website
cheri-alliance.org

Social Networks

DSIT is a ministerial department driving forward innovation that will deliver improved public services, create new better-paid jobs and grow the economy.

Address
22-26 Whitehall
London, SW1A 2EG
United Kingdom

Website
www.gov.uk/government/organisations/department-for-science-innovation-and-technology

lowRISC® is an independent, not-for-profit company at the heart of the open-silicon revolution. Headquartered in Cambridge, it delivers world-class engineering to make secure, transparent, and flexible hardware accessible to everyone. As the organisation behind OpenTitan®, the first open-source silicon root of trust deployed at scale, and Ibex® a formally verified, production-quality 32-bit RISC-V CPU core, lowRISC has shown that open collaboration can achieve industrial-grade security and commercial success.

Its team combines deep technical expertise in security, silicon design, verification and validation with a community-driven approach that attracts global partners from academia, industry, and government. This creates an ecosystem where innovation happens faster, risks are shared, and trust is built directly into the hardware supply chain.

lowRISC's work proves that open-silicon is not just a philosophy but a practical foundation for all computing. With growing momentum around open-silicon lowRISC stands at the intersection of research excellence, commercial opportunity, and global security needs. It is defining the blueprint for how the next generation of chips will be built.

Address
7 Hills Road
Cambridge, CB2 1GE
United Kingdom

Website
lowrisc.org

Social Networks

Photarix is a Lancaster University spin-out developing quantum-secure photonic hardware for the next generation of communication networks.
Our vision is to make quantum-secure communication practical and affordable by delivering compact, low-cost single-photon sources that operate efficiently at, or close to, room temperature.
These devices are designed for seamless integration into fibre-optic networks, providing the hardware backbone for Quantum Key Distribution (QKD) and future-proof data security.

Address
Research And Enterprise ServicesLancaster UniversityBailrigg
Lancaster, LA1 4YT
United Kingdom

Website
photarix.com

SCI Semiconductor is a global leader in advanced, security-focused semiconductor solutions serving critical national infrastructure, industrial automation, aerospace, and the broader IoT ecosystem.
�
As a VC-funded deep-tech, fabless semiconductor company, SCI develops innovative, high-security devices and IP for applications requiring exceptional reliability and cyber resilience from the silicon upward.
�
Its flagship family of high-integrity microcontrollers delivers secure-by-design protection, enabling robust software isolation, scalable security, and comprehensive defence against memory-safety vulnerabilities. SCI’s hardware-enforced cybersecurity uniquely provides 100% memory safety across target markets, combining performance efficiency with a scalable architecture and a strong technology roadmap. These capabilities empower enterprises to build smarter, safer and more secure systems.
�
Commercially, SCI has secured over £10M in contracted revenue, two global hyperscaler lead customers in the telecom sector.

The company’s leadership team brings deep expertise in microprocessor IP, cybersecurity and semiconductor development, with backgrounds at Arm, AMD, Microsoft, Rambus, Broadcom and NXP. Its advisory board includes senior figures from academia, defence and national-security communities, strengthening SCI’s capacity to deliver trusted, high-assurance technologies.

Address
Electric Works,
Digital Campus, 3 Concourse Way,
Sheffield, S1 2BJ
United Kingdom

Website
www.scisemi.com

Social Networks

At SECQAI (se-kai) we build dual-use hardware and software to enable the future of confidential computing.

Our fully integrated solutions enable governments & businesses to focus on what really matters: delivering for their customers.

Our team is composed of physicists, scientists & engineers who build solutions for a more secure future.

We believe in the need for collaborative work with our customers to continue technological advancement, working hand-in-hand with academia to develop innovative solutions to customer problems.

Address
64 North Row4th FloorC/O Brecher Llp,
London, W1K 7DA
United Kingdom

Website
www.secqai.com

Social Networks

Aikido is the no-nonsense security platform for developers. The all-in-one security platform that covers you from code-to-cloud and helps you get security done. Engineering teams execute faster with Aikido thanks to centralized scans, aggressive false positive reduction, automatic risk triaging & fixing, risk bundling, and easy step-by-step risk fixes. Aikido makes security simple and doable for developers, so companies can win customers, grow up-market, and ace compliance. Don’t just get security done fast, get it done automatically.

Address
88 Coupure Rechts
Gent, 9000
Belgium

Website
www.aikido.dev

Social Networks

ARMO pioneers a new approach to Cloud Security with an open source powered, behavioral driven, cloud-native threat detection & response. ARMO CADR solution is the first to link suspicious behavior across the entire cloud stack to create a full attack chain story, instead of silo’d alerts. ARMO CADR continuously reduces the cloud attack surface using real-time runtime insights, while actively detecting and responding to threats with true risk context.

Address
2 Ha-Shlosha Street, Entrance C, Floor 17
Tel Aviv-Yafo, 6706054
Israel

Website
www.armosec.io

Social Networks

Attaxion is an exposure management platform that provides full visibility into all internet-facing infrastructure without agents or intrusive network tools. It continuously discovers and maps every external asset, including subdomains, IPs, ports, and cloud services, allowing teams to uncover risks that traditional inventories miss.

The platform automatically detects newly exposed, outdated, or unpatched systems, and runs daily MITRE ATT&CK aligned techniques to simulate adversarial reconnaissance, detect malicious traffic patterns, and surface misconfigurations before they become threats.

Attaxion enriches its findings with CVSS, EPSS, EUVD, and other global intelligence sources to deliver a richer and more contextual understanding of vulnerabilities and their likely impact.

By combining agentless discovery, automated testing, and continuous intelligence, Attaxion offers broad and affordable visibility across hybrid and multi-cloud environments. It is trusted by SOCs, MSSPs, and government agencies to maintain an always current map of their external attack surface, prioritize emerging risks, secure shadow IT, and remediate issues with confidence.

Address
8 The Green, Suite A
Dover, Delaware 19901
United States of America

Website
attaxion.com

Backslash is the vibe coding security company. Our Backslash platform is purpose-built to empower organizations to accelerate their use of AI-native software development and vibe coding – safely and securely.

Backslash leverages the capabilities of modern IDEs and coding agents such as Cursor, Claude Code, Windsurf and GitHub CoPilot to provide visibility, governance and protection across AI developer environments, vet and monitor the use of MCP (Model Context Protocol) servers, while also ensuring that the resulting AI-generated application code adheres to security best practices and compliance requirements, reducing vulnerabilities and exposures.

Address
28 HaArba'a Street
Tel Aviv-Yafo, 6473925
Israel

Website
www.backslash.security

Contrast Security is the global leader in Application Detection and Response (ADR), empowering organizations to see and stop attacks on applications and APIs in real time. Contrast embeds patented threat sensors directly into the software, delivering unmatched visibility and protection. With continuous defense, Contrast uncovers hidden application-layer risks that traditional solutions miss. Contrast’s powerful Runtime Security technology equips developers, AppSec teams and SecOps with one platform that proactively protects and defends applications and APIs against evolving threats.

Address
Saint James House, 4th Floor,Saint James' Square
Cheltenham, GL50 3PR
United Kingdom

Website
www.contrastsecurity.com

Social Networks

echo provides vulnerability-free container images to make cloud-native infrastructure secure by design.

As vulnerabilities skyrocket and attack surfaces expand faster than ever in the age of AI, companies need a solution that solves the problem at the source. That’s why echo is redefining cloud-native security with vulnerability-free container images.

Its AI-powered image building factory continuously produces patched, hardened, FIPS-validated images that fit right into existing workflows and are recognized by CNAPPs and scanners – ensuring clean results across the tools customers already use.

Trusted by global enterprises, echo helps teams meet the highest security standards, including FedRAMP. With echo, organizations no longer waste time patching, triaging, or trading speed for security. Everything just works, so there’s nothing to fix.

Address
14 Leonardo da Vinci Street
Tel Aviv-Yafo, 6473117
Israel

Website
www.echohq.com

We are an EU-based, R&D-first cybersecurity company, solving the "impossible trilemma" and personal liability crisis of the NIS2 Era. Excalibur democratises Privileged Access Management through a Unified Control Plane for Preemptive Security - our PAM solution - Streamed Access Management (SAM). Legacy PAM tools were designed to protect "The Privileged Few." This flawed assumption has created a vast, ungoverned "Access Gap" - the 99% of your workforce that attackers are now targeting. The core principle of our approach is that the user's endpoint never touches the target system. Excalibur connects to the target infrastructure via a secure tunnel and only streams the visual representation of the application to the user's browser. Only the user’s clicks and keystrokes are relayed back to the protected application after they are filtered by our contextual AI.
Excalibur brings a single architecture that unifies access, isolates every session from network-borne threats, and uses AI-driven oversight to deliver the proof NIS2 demands.

We provide a unified security control plane that solves the architectural failures of today's siloed security stacks. Our platform is built on a single, continuous flow:
Unified Access: All access begins with a single, passwordless login. From one browser-based dashboard, users can access all their authorized applications, servers, and websites. There is no VPN to connect, no client to install.
Total Isolation via Streaming: When a user accesses a resource, we isolate the session by terminating the native protocol (RDP, SSH, HTTPS) upstream and streaming only a safe, interactive representation. This architecture preempts threats in both directions:
Protects Your Assets: Zero-day vulnerabilities in your infrastructure cannot be exploited, as attackers have no direct network path to them.
Prevents Lateral Movement: Malware or ransomware on a user's device cannot spread into your network, as the isolation creates a "digital air gap" that a traditional VPN would bridge.
Intent Analysis; Peer Verification: The isolated stream provides the real-time context for our AI to analyze user intent. When an action deviates from the norm, it is preemptively paused and escalated for human review, creating the single, replayable record of proof required by regulators. Excalibur SAM defines a new approach of how the access is being provided, all without using credentials and direct connection. Streaming creates isolation, which makes our solution 0-day resistant as the lack of direct connectivity means there is no way to exploit vulnerabilities of the protected systems.
Think of it as a virtual "air gap". The "on-by-default" session recording and deterministic audit trail provides the unambiguous evidence of "who, what, where, and when".

Our solution shifts you from a reactive, log-based posture to a preemptive, evidence-based and 0-day resistant security model that solves the NIS2 personal liability crisis.

Our exclusively EU-based and EU-operated cybersecurity solution helps ensure your sensitive data is managed ONLY under the framework of European law.

Address
Hraničná 12
Poprad, 058 01
Slovakia

Website
www.getexcalibur.com

Social Networks

Flare is the leader in Threat Exposure Management, helping organizations of all sizes detect high risk exposures found on the clear and dark web. Combining the industry’s best cybercrime database with a
ridiculously intuitive user experience, Flare enables customers to reclaim the information advantage and get
ahead of threat actors. For more information, visit flare.io.

Address
1751 Rue Richardson, Unit 3.108
Montréal, Quebec H3K 1G6
Canada

Website
flare.io

Social Networks

Every day, malware-infected endpoints generate massive amounts of compromised
credentials that are resold and weaponized in new breaches. Without continuous
monitoring, organizations have no way of knowing that their digital front door has
already been opened to attackers.
HackedList.io solves this problem with superior breach intelligence focused on
compromised credentials. Through rigorous data sanitation processes, we eliminate
false positives and duplicate records, ensuring you receive only actionable alerts.
Our advanced automation technology continuously harvests data from exclusive
darknet sources inaccessible to competitors, combined with hands-on expert
verication of critical breaches—providing you with the most comprehensive and
reliable threat intelligence for protecting your digital assets.
In addition, HackedList.io oers a free public search tool on its website, enabling
anyone to quickly check whether login credentials from their domain or email have
been compromised and are being traded online. It’s a simple and registration-free
way to gain visibility into potential security risks.

Address
K Noskovně 579, Nebušice
Praha, 164 00
Czech Republic

Website
www.hackedlist.io

Social Networks

Magnet Forensics is a developer of digital investigation solutions that acquire, analyze, report on, and manage evidence from digital sources, including mobile devices, computers, IoT devices and cloud services. Magnet Forensics’ products are used by more than 5,000 public and private sector customers in over 100 countries and helps investigators fight crime, protect assets, and guard national security.

Address
100 Bishopsgate, 8th Floor
London, EC2N 4AG
United Kingdom

Website
www.magnetforensics.com

Social Networks

Mindgard, the leading provider of Artificial Intelligence security solutions, helps enterprises secure their AI models, agents, and systems across the entire lifecycle. Mindgard’s solution uncovers shadow AI, conducts automated AI red teaming by emulating adversaries, and delivers runtime protection against attacks like prompt injection and agentic manipulation. Trusted by leading organizations in finance, healthcare, and technology, Mindgard is backed by investors including .406 Ventures, IQ Capital, Atlantic Bridge, and Lakestar.

Address
Level 24, One Canada Square, Canary Wharf
London, E14 5AB
United Kingdom

Website
mindgard.ai

Social Networks

Nagomi Security gives enterprise security teams the control to eliminate exposure, faster and at scale. As the execution layer of Continuous Threat Exposure Management (CTEM), Nagomi unifies asset visibility, contextual prioritization, remediation guidance, and performance reporting in a single platform. At its core is Exposure Lens, the only engine that correlates assets, controls, vulnerabilities, and threats to show risk in context across subsidiaries and business units. By validating defenses and directing fixes to the right owners, Nagomi ensures issues are resolved instead of tracked, closing exposures faster, strengthening defenses continuously, and delivering measurable progress for both security and business leaders. Recognized by Gartner® as a Cool Vendor, Nagomi is a pioneer in Automated Security Control Assessment (ASCA), helping organizations operationalize exposure management and drive down risk with the tools they already own.

Address
488 Madison Ave
New York, New York 10022
United States of America

Website
nagomi.security

NeuralTrust is the leading platform for securing and scaling LLM applications and agents. It provides the fastest open-source AI gateway in the market for zero-trust security and seamless tool connectivity, along with automated red teaming to detect vulnerabilities and hallucinations before they become a risk.

Address
Carrer de la Llacuna 162
Barcelona, 08018
Spain

Website
neuraltrust.ai

Social Networks

NinjaOne, the automated endpoint management platform, delivers visibility, security, and control over all endpoints for more than 30,000 customers in 130+ countries.
The cloud-native NinjaOne platform simplifies endpoint management, patching, and visibility for environments at any scale. It is proven to increase productivity, reduce security risk, and lower costs. NinjaOne is obsessed with customer success and provides free and unlimited onboarding, training, and support.
NinjaOne was named a Representative Vendor in the Gartner Market Guide for Endpoint Management Tools. It was also named a Champion in the Canalys RMM and PSA Leadership Matrix.

Address
Alexanderstraße 1
Berlin, 10178
Germany

Website
www.ninjaone.com

Social Networks

Oligo is the industry’s leading runtime security platform that solves today’s toughest challenge: stopping attacks in real time without stopping the business. Oligo transforms security from passive visibility to active protection across applications, cloud services, workloads, AI applications, and AI agents. By uncovering the deepest layers of what actually runs in production, Oligo empowers customers to prioritize exploitable vulnerabilities, detect malicious behavior as it happens, and stop modern attacks in their tracks.

Address
251 Little Falls Drive
Wilmington, Delaware 19808-1674
United States of America

Website
www.oligo.security

At Prime Security, we empower Security Teams to integrate risk-aware decisions into the very fabric of product development. We have built best-in-class technology to bring to life a future where 'Secure by Design' is the norm, enabling businesses to innovate boldly with preemptive security that enhances every stage of growth.

Address
2166 Broadway, Apt 12B
New York, New York 10024
United States of America

Website
www.primesec.ai

Social Networks

Security Visibility from the Browser to the Inbox

Launched in 2015 and headquartered in the UK, Report URI delivers powerful client-side security that helps organisations detect, investigate, and respond to browser-side and delivery-layer threats in real time. Built by security practitioners for defenders, Report URI transforms browsers into security sensors that deliver invaluable insights at Internet scale—empowering teams to strengthen security posture, protect users, and meet compliance goals.

Report URI provides visibility where traditional tools can’t: directly from the user’s browser. The platform collects and analyses a wide range of security telemetry that is natively supported by all browsers, allowing for a true no-code solution. This telemetry helps uncover threats like script tampering, cross-site scripting (XSS), and dependency or supply chain compromise, before they become major incidents.

Key Capabilities
- Client-Side Threat Detection: Identify and respond to malicious JavaScript, Magecart-style and Digital Skimming attacks, data exfiltration and more.
- Telemetry at Scale: Process billions of reports monthly through a high-performance, privacy-preserving analytics engine.
- Rapid Deployment: Enable monitoring in minutes by adding standard directives to existing HTTP headers or DNS records.
- Integrated Intelligence: Correlate data across web and email channels, and export insights to SIEM and SOAR platforms.

Who We Serve
Report URI supports a global customer base across finance, retail, technology, and government sectors. From security engineers to compliance teams, our users rely on continuous telemetry to verify security, detect misconfigurations, and gain early warning of emerging threats.

Why Report URI
Security visibility starts with knowing what’s really happening in the browser —where users and attackers meet. Report URI turns the built-in security capabilities of modern web browsers into a unified, real-time security monitoring and enforcement solution. The result: faster detection, better response, and measurable improvements in resilience and trust.

Visit Us at Black Hat Europe
Discover how Report URI transforms any web browser into a capable threat detection and prevention tool. Our experts will demonstrate live monitoring, analytics, and integration use cases that help organisations turn passive reports into proactive protection.

Address
22 Shireburn Avenue
Clitheroe, BB7 2PN
United Kingdom

Website
report-uri.com

Social Networks

ReversingLabs is the trusted name in file and software security, to verify and deliver safe binaries. With the largest Threat Repository in the industry with over 422 billion searchable files, the Fortune 500 trusts their software supply chain security and malware analysis with ReversingLabs.

Address
222 Third St, Suite 1101
Cambridge, Massachusetts 02142
United States of America

Website
www.reversinglabs.com

Social Networks

Root eliminates the CVE grind by delivering open source that is clean of vulnerabilities, secured by default, and ready to use without engineering effort. Powered by thousands of specialized AI agents, Root detects, patches, tests, and delivers fixed components across any stack in minutes, with full transparency and no forced upgrades or vendor-locked images.

AppSec teams get instant remediation without waiting on developers. Engineers stay focused on building instead of patching. And organizations finally close exposure windows by moving security at AI speed. Root is creating the backbone of the agentic software supply chain, where open source arrives secure from the start.

Stop shifting left. Shift Out.

Zero vulnerabilities without workflow change.

Address
100 Summer Street, Suite 1600
Boston, Massachusetts 02110
United States of America

Website
www.root.io

Address
1390 Market Street, #200
San Francisco, California 94102
United States of America

Website
tacsecurity.com

Tracebit deploys and maintains tailored security canaries, proactively detecting intrusions across your organization - from cloud infrastructure, to identity and endpoints.

With a read-only connection to your environment, Tracebit recommends canaries based on your unique configuration; deploys them via infrastructure-as-code; and continuously evolves and refreshes them to keep threat actors guessing.

Address
86-90 Paul Street
London, EC2A 4NE
United Kingdom

Website
tracebit.com

Prioritize like an attacker, not a spreadsheet!

Vulners turns fragmented advisories, exploits, and patches into one continuously updated source of ground truth. We normalize and interlink data from 220+ sources, delivering machine-readable intelligence via APIs and feeds for both humans and systems.

Enterprises use Vulners to strengthen exposure management - faster triage, smarter patching, and clear remediation paths. Cloud platforms, security providers, and application developers embed our data to power value-add features and unlock new revenue.

Founded in 2015 by security practitioners, we’ve kept shipping - more sources, broader context, and tighter integrations. Every record ties discovery to fix, including exploit signals and remediation guidance.

Stop by our stand at Black Hat London for a live demo and to talk integrations and partnerships.

Address
1000 North West Street, Suite 1200
Wilmington, Delaware 19801
United States of America

Website
vulners.com

Social Networks

Xygeni Security protects software from code to cloud with a single platform built for ASPM. CISOs, CIOs, and DevSecOps leaders gain full visibility and control across the software supply chain, without slowing delivery.

Using native detection, Xygeni secures every SDLC stage: code, dependencies, secrets, builds, IaC, and pipelines. It finds vulnerabilities, misconfigurations, and malware in real time and prioritizes what’s reachable, exploitable, and business-critical, cutting 90% of noise and focusing effort where it matters.

AI that drives outcomes:

AI SAST pinpoints flaws with high accuracy and filters results through smart prioritization funnels.
AI Auto-Fix generates secure, context-aware fixes and raises PRs developers can trust.
Xygeni Bot enables continuous automated remediation by connecting directly to the customer’s AI model, OpenAI, Gemini, Anthropic Claude, and others, keeping all data private.

Developer-first remediation: The IDE plugin brings scanning and auto-fixing for SAST and SCA directly into the IDE. Developers can remediate issues before committing code, staying productive while keeping repositories clean.

Smarter dependency upgrades: Remediation Risk & Breaking-Change Detection uses changelog and diff analysis to detect removed methods, incompatible APIs, and affected call sites, helping teams patch securely without breaking builds or runtime.

Defend against modern supply-chain attacks: Early Malware Warning (MEW) identifies and blocks zero-day malware at publication. Reachability, Exploitability, and Remediation-Risk analysis ensures safe updates and faster triage.

Agentic ecosystems: With an MCP server, Xygeni integrates into AI-driven co-pilots and autonomous agents to scan AI-generated code at source, addressing the rising wave of vulnerabilities from automated code generation.

Operational control: Anomaly Detection spots insider threats or abnormal activity across CI/CD, SCM, and infrastructure. Secrets Security revokes leaked credentials instantly. IaC and Build Security harden configurations and prevent insecure deployments.

Open platform, any environment: Seamless integration with GitHub, GitLab, Bitbucket, Jenkins, Azure DevOps, and more. Runs in SaaS or on-premise to meet privacy and compliance goals. A unified ASPM dashboard correlates findings, assets, users, and posture in real time.

Xygeni helps you:

Block zero-day malware and supply-chain threats before they spread.
Prioritize and remediate exploitable vulnerabilities fast.
Prevent secrets leaks and misconfigurations at commit.
Automate remediation with your preferred AI models.
Govern at scale while developers keep shipping securely.

Xygeni: Intelligent. Developer-first. Built for the AI-Driven Software Supply Chain.

Address
Calle Pasión 4, Planta 2
Black Hat USA 2025
Valladolid, 47001
Spain

Website
xygeni.io

Agger provides a dedicated ransomware protection layer designed to stop attacks at endpoint speed. The platform operates fully on the device, identifying and terminating malicious encryption activity within milliseconds. This approach removes reliance on cloud services, signatures, or behavioural learning periods, ensuring consistent protection even against new or unknown ransomware variants.

The Agger agent is lightweight, typically using around 80MB of memory and under one percent CPU. Deployment requires no configuration and completes in less than a minute. Agger integrates seamlessly alongside existing security controls such as antivirus and EDR, adding an additional safeguard when other controls are bypassed.

Agger’s endpoint components are WHQL certified by Microsoft, and the product has received a AAA rating from SELabs. The solution is used across legal, financial, healthcare, and critical infrastructure environments.

Address
C/O Kevad LtdOffice 22, The Joiners Shop,The Historic Dockyard
Chatham, ME4 4TZ
United Kingdom

Website
agger-labs.com

Address
251 Little Falls Drive
Wilmington, Delaware 19808
United States of America

Website
capsule.security

Cybercheck: Revolutionizing Cybersecurity with Real-Time Global Threat Intelligence. In today’s digital landscape, cyber threats are evolving faster than ever. According to recent reports, nearly 80% of successful cyberattacks leverage stolen personal data, exposing organizations to devastating financial and reputational damage. This alarming statistic underscores the critical need for continuous monitoring, adaptive intelligence, and proactive cybersecurity strategies. Enter Cybercheck, a cutting-edge global threat intelligence platform designed to empower organizations and cybersecurity solution providers with real-time visibility into stolen credentials and exposed data.

Address
1345 6th Avenue
New York, New York 10105-4900
United States of America

Website
cyberchecksecurity.com

Endor Labs is the AppSec platform built for the AI era. It helps teams find, prioritize, and fix the most critical risks in code—whether written by humans or AI—faster.

Endor Labs understands the entire structure of your codebase—from 40 year-old C++ to modern Bazel monorepos. Powered by AI agents and the industry's richest security dataset about open source code, Endor Labs doesn’t just flag issues—it reduces noise, prioritizes what matters most, and proposes intelligent remediations based on the context of your code.

Whether you’re an upstart or in the Fortune 500, Endor Labs helps AppSec and development teams eliminate noisy alerts, fix code 6.2x faster, and stay compliant with standards like FedRAMP, PCI, SLSA, and NIST SSDF.

Address
444 High Street, Suite 300
Palo Alto, California 94301
United States of America

Website
endor.ai

Social Networks

Equixly is revolutionizing API security testing through artificial intelligence. Its innovative SaaS platform seamlessly integrates into the software development lifecycle, empowering teams to identify and address potential API vulnerabilities early in the process.
Built on proprietary machine learning algorithms trained on a vast dataset of logical and technical vulnerabilities, Equixly delivers deep, precise analyses of complex API structures in a fraction of the time required by manual testing.
Designed for scalability and adaptability, Equixly’s solution serves organizations across all industries that rely on connected applications—making advanced API security accessible, efficient, and intelligent.

Address
1 Via del Tiratoio
Firenze, Florence 50124
Italy

Website
equixly.com

Social Networks

Geordie's agent native security platform helps organizations scale innovation safely by enabling real-time agent visibility, risk intelligence, and proactive risk mitigation. Founded in 2025 by cyber and AI experts from Darktrace and Snyk, Geordie's mission is to provide the backbone for safe and scalable adoption of agentic AI in the enterprise. Geordie is backed by leading cybersecurity investor Ten Eleven Ventures and global venture capital firm General Catalyst.

Address
York House, Fora,221 Pentonville Road
London, N1 9UZ
United Kingdom

Website
www.geordie.ai

Social Networks

Harmonic Security is the easy button for secure AI adoption. As employees use tools like ChatGPT, Copilot, and countless AI SaaS apps, organizations lose visibility into where AI is used, what data is being shared, and which vendors might be training on sensitive information. Harmonic automatically discovers every AI tool in use, delivers prompt-level visibility, and prevents source code, customer data, and confidential IP from leaking into external AI systems—giving CISOs a real middle ground between blocking everything and allowing everything.

With real-time controls, automated data protection, and frictionless enforcement, Harmonic lets organizations enable AI responsibly without slowing down innovation. Security teams gain visibility, legal teams get evidence of controls, CIOs get clarity on adoption and spend, and employees can use AI tools confidently without fear of a data leak. Built for modern architectures, Harmonic provides scalable telemetry and protection without breakage—so security teams can keep up with the speed of AI.

Address
1390 Market Street, Suite 200
San Francisco, California 94102
United States of America

Website
www.harmonic.security

Social Networks

NNEAT is an AI-powered cybersecurity platform that helps CISOs and MSSPs prove value, optimize spend, and align defenses to real-world adversaries. Our focus is practical, measurable security improvement that executives can understand and practitioners can act on. ?

Built on a threat-informed defense approach and mapped to MITRE ATT&CK®, NNEAT operationalizes Continuous Threat Exposure Management for the mid-market and service providers. The result is a single, coherent plan that connects posture, threat intelligence, and business priorities, rather than another list of vulnerabilities. ?

Teams onboard in hours with NNEAT AI Audit, which captures a defensible baseline without heavy integrations. Objective telemetry from NNEAT Agent and outside-in discovery from NNEAT Surface ground that baseline in facts, eliminating blind spots across internal and external assets. Multi-Project roll-ups let leaders and MSSPs compare posture and trends across sites, regions, suppliers, or clients in one place. ?

At the core is TADR™ (Threat-Aligned Defense Rating), a board-grade KPI that expresses readiness against the techniques that actually target you, with trends and expected uplift from proposed changes. Practitioners work in the MITRE ATT&CK® View to see coverage by technique, while leaders act on Prioritized Actions and use Balance to understand cost versus coverage trade-offs before they spend. When the threat mix shifts, Signal highlights what changed and what to do next. ?

NNEAT is designed for outcomes: faster visibility, clearer prioritization, and measurable improvement that aligns security work with risk reduction and budget control. It supports multi-tenant delivery for MSSPs and portfolio-level governance for enterprises that need consistent reporting and scalable execution. For executive communication, NNEAT provides board-ready summaries, portfolio metrics, and a 3D Threat and Defense View for clearer storytelling around exposure and progress. ?

In short, NNEAT gives security leaders and service providers one platform to assess posture quickly, align defenses to current adversary behavior, optimize investments for maximum impact, and communicate progress with confidence. Prove value. Optimize spend. Align to real threats. ?

Learn more at nneatcyber.com

Address
Calle Cardenal Gardoqui 1,3ª planta
Bilbao, 48008
Spain

Website
www.nneatcyber.com

Social Networks

Nokod Security delivers visibility and security for no-code, automation, and AI agents, build by technical users and addressing critical gaps left by traditional application security tools.

As no-code platforms like Microsoft Power Apps, Copilot, UiPath, ServiceNow, and Salesforce become ubiquitous, they introduce new vulnerabilities, including data leakage, secrets exposure, and supply chain threats.

Nokod Security offers a comprehensive platform that automatically detects risks and vulnerabilities, gives remediation guidance, and ensures compliance, without stoping the innovation and efficiencies these technologies provide.

Address
14 Abba Hillel Silver Road
Ramat Gan, 5250607
Israel

Website
nokodsecurity.com

Social Networks

Plainsea is a unified platform that transforms penetration testing from a static checkbox into a continuous, AI-driven security engine built for modern, fast-moving environments.

With built-in automation and audit-grade reporting, it closes the critical gap between vulnerability discovery and action, empowering your team to shrink exposure windows by 80%, reduce pentesting costs, maintain 24/7 compliance and scale securely without added headcount.

Address
123 Arsenalski Blvd. ap. of. 2
Sofia, 1421
Bulgaria

Website
plainsea.com

Social Networks

Workbrew is a secure software delivery platform that makes managing Homebrew simple and scalable for organizations. Homebrew is a popular package manager loved by developers and installed on millions of devices, but managing it across teams can be challenging. Workbrew solves this with zero-touch deployment, full visibility into installed packages and versions, and enterprise-grade security and compliance.

Workbrew is designed for IT leaders, security teams, and platform engineering managers who want to empower developers with the tools they love while maintaining control and minimizing risks. It streamlines software delivery, reduces operational overhead, and ensures organizations stay secure and compliant.

Address
2810 N Church Street, Suite 68294
Wilmington, Delaware 19802
United States of America

Website
workbrew.com

Social Networks

The FAIR Institute is a research-driven not-for-profit organization dedicated to advancing the discipline of cyber and operational risk management through education, standards and collaboration. The Institute is made up of forward-thinking risk officers, cybersecurity leaders and business executives employing the FAIR standard and operating with a central mission:

Establish and promote risk management best practices that empower risk professionals to collaborate with their business partners on achieving the right balance between protecting the organization and running the business.

Address
522 West Riverside Avenue
STE N
Spokane, Washington 99201-0581
United States of America

Website
www.fairinstitute.org

Social Networks

Address
625 N Washington Street, Suite 400
Alexandria, Virginia 22314
United States of America

Website
www.isc2.org

One of the most respected, nonprofit open source and open standards bodies in the world, OASIS advances the fair, transparent development of open source software and standards through the power of global collaboration and community. OASIS is the home for worldwide standards in AI, emergency management, identity, IoT, cybersecurity, blockchain, privacy, cryptography, cloud computing, urban mobility, and other content technologies. Many OASIS standards go on to be ratified by de jure bodies and referenced in international policies and government procurement. www.oasis-open.org

Address
400 Tradecenter Drive, Suite 5900
Woburn, Massachusetts 01801
United States of America

Website
www.oasis-open.org

Social Networks

Taylor & Francis Group, an Informa company, publishes leading books and resources in cybersecurity, privacy and risk through its CRC Press imprint. Our list covers a broad spectrum of topics including ethical hacking, cyber defence, AI and machine learning security, leadership, governance, risk management, and privacy regulation. At Black Hat Europe 2025, we’re proud to support the global cybersecurity community by connecting practitioners, researchers and thought leaders with the latest expert insights and applied knowledge. Our goal is to ensure that innovation and expertise in this field have the fullest possible impact. Join us at our stand where you can receive 30% discount on a wide selection of books onsite.

Address
4 Park Square, Milton Park
Abingdon, Oxfordshire, OX14 4RN
United Kingdom

Website
www.taylorandfrancis.com

Social Networks

WiCyS is a global community of over 11,000 women and allies dedicated to recruit, retain, and advance women in cybersecurity. We have 70 professional affiliates and over 300 student chapters in over 100 countries. WiCyS stands as the nonprofit organization that creates accessibility and opportunities for the cybersecurity workforce. With many initiatives and programming efforts, we continue to pave paths for many to get into cybersecurity and advance because of it. Our strategic partners, philanthropic funders, and conference sponsors are the foundation for making this happen.

Address
370 S Lowe Ave, Suite A-244
Cookeville, Tennessee 38501
United States of America

Website
www.wicys.org

Website
www.cyberdefensemagazine.com