See our full list of Top Breach and Attack Simulation (BAS) Vendors
Picus Security offers one of the more mature products in the breach and attack simulation (BAS) market, and it includes both network and endpoint detection capabilities. It takes a little longer to deploy than some of the other available solutions, but offers superior flexibility with no platform or technology dependencies.
San Francisco, California
Picus Security claims to be the “pioneer of breach and attack simulation technologies,” and with five years of experience with BAS technology, it is one of the oldest companies in the market. The firm has close ties to Turkey, including an office in Ankara and several management team members of Turkish descent. It also has a corporate headquarters in San Francisco and an office in London. Investors include Scalex, ACT and Social Capital.
The Picus Security BAS platform helps organizations challenge their security technologies to help identify security gaps in real time. It also provides mitigation guidance that helps them double their success in stopping cyberattacks. Picus integrates with popular SIEM products, such as ArcSight, McAfee NitroSecurity, IBM QRadar, LogRhythm and others, as well as with security products from organizations like Check Point, McAfee, ModSecurity, Palo Alto Networks, Fortinet, F5 Networks and Snort. The firm also offers a partner program for management security providers that want to add BAS capabilities to their arsenal.
- Deploys in hours and begins returning results just minutes later
- No technology dependencies
- Works in complex production environments
- Identifies weaknesses in real time
- Includes modules for HTTP, HTTPS, endpoints and email
- Dashboards and alarms
- Prioritizes security needs
Security managers, defensive managers and offensive managers at medium to large companies
AKBank, Exclusive Networks, Garanti, ING Bank, QNB Finansbank, Turkcell, Vodafone, YapiKredi
Available on request