Products

Vulnerability management

• Infrastructure assessment
• Perimeter security assessment
• Risk-based prioritization
• Compliance and PCI scanning

Wireless threat detection

• Rogue device monitoring

Cloud security assessment

• Cloud workload protection
• Cloud configuration scanning
• Container security assessment

Web application security testing

• Continuous penetration testing
• Dynamic application security
• Security coding training
• Mobile app security testing
• API security testing
• Application security testing
• Secure SDLC and DevSecOps

Services

Penetration Testing

• Red teaming

Managed services
Training and Certification
Customer support

Partner program

Become a reseller partner
Become a MSSP partner
Find a reseller near you
Find a MSSP near you

About Outpost24

Why work with us
Our customers
Integrations and connectors
Accreditations and certifications
Company overview
Management team
Careers 
Corporate social responsibility
Contact us

Resources

Blog

• Application Security
  • Attack surface analysis explained The 7 deadly vectors for web application attacks
  • How Outpost24 secures the SDLC
  • A CISOs guide to boosting security awareness and morale in turbulent times
  • Website Security Magecart and credit card skimming
  • Why shifting left will be key to secure your businesses in 2020
  • Top 10 of the world's largest cyberattacks and how to prevent them
  • Shifting left for secure application development
  • From local file inclusion to remote code execution part 2
  • From local file inclusion to remote code execution part 1
  • Securing devops and web applications testing
  • Why you should take your web application security seriously Infographic
  • Rethinking risk management why your company needs a hybrid security approach
  • Insight into web application security breaches
  • How to identify Cross-Site Scripting vulnerabilities
  • What to expect from a web application penetration test
  • OWASP top 10 now and then part 3
  • OWASP top 10 now and then part 2
  • OWASP top 10 now and then part 1
  • BMC Remedy vulnerabilities identified
  • SQL injections used in 51%  of cases by hackers
  • Vertical privilege escalation
  • Using components with known vulnerabilities OWASP10
  • Broken Authentication Session Management OWASP10
• Cloud and Container Security
  • Container inspection walking the security tight rope for cloud DevOps
  • What are security misconfigurations and how to prevent them
  • Cloud security controls where are we now and best practice for future gains
  • Top 10 Cloud security myths infographic
  • Cloud security an inconvenient truth about IT transformation
  • Protecting what is yours data security in the cloud
  • Cloud security tools: Understand the differences between CASB, CSPM, and CWPP
  • Top 7 things to get right in hybrid Cloud security
  • Plan your journey towards a secure serverless future in three simple steps
  • Achieving a proactive cybersecurity stance requires a risk-based approach
  • Artificial intelligence and cloud security new challenges
  • Top 5 cloud security issues and how to fix them
  • New approach for vulnerability scanning the clone wars
  • How can security teams handle hybrid cloud infrastructure security
  • How to ensure a secure migration to AWS, Azure, and Docker
  • 3 main security risks in IaaS cloud
  • Cloud monitoring 7 tips to follow absolutely
  •  Improve Security Docker Containers Microservices
  • The google cloud platform security
  • Top 10 microsoft azure best security practices
  • Security in the DevOps cycle
  • Amazon inspector vs elastic workload protector
  • Docker vulnerabilities failures and issues
  • DevSecOps locks down container and cloud security
  • What is cloud workload security
  • Cyber Security KPI C-Suite reporting for the CISO. Proactive security
  • Cyber Security Key Risk Indicators. An Automated Report for the C-Suite
  • Best Security Practices for Docker
• Ghost Labs
  • Social distancing times are social engineering times
  • Responsible disclosure: Multiple stored XSS vulnerabilities discovered in ServiceNow ITSM by Outpost24
  • Tools of the trade: PiPlant, dropping it like it’s hot
  • Vulnerabilities discovered by Outpost24 in Oracle WebCenter Sites
  • Vulnerability discovered in gSOAP by Outpost24
  • X Forwarded for SQL injection
• Network Security
  • Cybersecurity tips to keep your employees and business safe amid Coronavirus outbreak
  • Top vulnerability trends and how to fix them
  • Outpost24 is named a Challenger in the Forrester Wave™: Vulnerability Risk Management, Q4 2019
  • Navigating vulnerability management and zero-day detection
  • You can count on CARTA for a better security posture
  • 2019 cyber security predictions
  • Getting started with Outpost24 and Microsoft Power BI
  • PCI DSS Compliance Requirements Checklist
  • How to overcome your security vulnerabilities
  • Cybersecurity risks: how to mitigate them? - infographic
  • Why is Vulnerability Assessment so important?
  • Meltdown and Spectre Vulnerabilities for CPUs
  • 19 year old attack resurfaces in 2017 as ROBOT
  • Patch management is still an area of risk improvement
  • Get ready for the attacks – Implement Vulnerability Management
  • Vulnerability Management – Business more secure
  • Vulnerability Management for Beginners – Hole in the fence
  • Why do we need Vulnerability Management?
  • Why do we need Vulnerability Management?
  • SAMBA Badlock Bug – Vulnerability Information
  • File Integrity Monitoring for Windows and Linux. A Short List of Vulnerable Files
  • Outpost24 detects critical SCADA vulnerabilities
  • 2015: Remote code execution for everybody!
• Penetration Testing
  • Accreditation body CREST recognize Outpost24 for web application penetration testing
  • How much is application pen testing truly costing?
  • A color-coded guide to pen testing
  • What type of pen test do you need?
  • Reasons Pentest is inevitable for invisible security
  • How to Balance Security with Digital Transformation
  • What to expect from a web application penetration test
• Product Release
  • Autumn 2020 Product Release
  • Summer 2020 Product Release
  • Spring 2020 Product Release
  • Winter 2020 Product Release
• Risk-Based Vulnerability Management
  • NSA list what you need to know about the top vulnerabilities currently targeted by Chinese hackers Part 2
  • NSA list what you need to know about the top vulnerabilities currently targeted by Chinese hackers Part 1
  • Fix now high-risk vulnerabilities at large 13th October 2020
  • Fix now high-risk vulnerabilities at large 29th September 2020
  • Fix now high-risk vulnerabilities at large September 2020
  • Fix now high-risk vulnerabilities at large August 2020
  • Fix now high-risk vulnerabilities at large July 2020 part 3
  • Fix now high-risk vulnerabilities at large July 2020 part 2
  • Fix now high-risk vulnerabilities at large July 2020 part 1
  • Fix now high-risk vulnerabilities at large June 2020 part 2
  • Fix now high-risk vulnerabilities at large June 2020
  • Fix now high-risk vulnerabilities at large May 2020
  • Fix now high-risk vulnerabilities at large April 2020
  • Risk based vulnerability management: reduce and prioritize remediation efforts with likelihood of an actual attack
  • What’s in a risk score? Implementing a Risk based remediation strategy using machine learning
  • Predicting the future: Will this vulnerability be exploited in the wild?
  • Risk Based Vulnerability Management – starting with the why
• Wireless Security
  • A guide for meeting wireless PCI compliance
  • What Is A Botnet & How Does It Work?
  • 5 Steps to Protect Yourself from Internet of Things DDoS Attacks
  • WPS Cracking with Reaver
  • Wireless Attacks You Could Prevent
  • What Makes IoT so Vulnerable to Attack?
  • Who is Responsible for IoT Security?
  • The IoT Attacks Everyone Should Know About
  • IoT Security: The Basics
  • Rogue Device Spotlight Wireless Printers
  • Rogue Device Spotlight WiFi Pineapple
  • Rogue Device Spotlight Reaver Pro II
  • Rogue Device spotlight r00tabaga MultiPwner
  • Rogue Device Spotlight MiniPwner
  • Rogue Access Point: The Ghostly Attack Surface That You Are Missing
  • A Post-Mortem on the Mirai Botnet Part 2: Analyzing the Attack
  • A Post-Mortem on the Mirai Botnet Part 1: Defining the Attack

Customer stories

• Callcredit
• Cezanne HR
• Ciena Healthcare
• EasySignUp
• Hardis
• HMV
• Inkling
• Komplett Group
• Kunstapro
• Landsbankinn
• Lomax
• National Sporting Association
• NZZ Media Group
• Pagero
• Privatebo
• Wakanda

Events
Datasheets

• Cloud & container security: Secure your Cloud and Container migration
• Application security: SWAT & Appsec Scale - Hybrid DAST for DevSecOps
• Network security: OUTSCAN & HIAB. Farsight for risk-based vulnerability management
• Wireless security: Secure your network airspace from wireless threats
• PCI compliance: Outpost24 is PCI Approved Scanning Vendor
• Services brochure: Our team helps organizations tighten their attack surface
• MSSP brochure: Deliver a wide range of services and add-ons to your customers
• Reseller brochure: Grow your business by developing recurring revenue streams
• Corporate brochure: An overview of our full stack cyber assessment platform​​​​​​​

Webinars and videos

• SDLC series
  • Operate and monitor: Continuous pen testing for critical application
  • Secure and deploy: Application security testing for cloud DevOps
  • Build and test: API testing and DAST scanning for complete DevSecOps
  • Plan and code: Shift left with secure coding practice
• Cloud and container security
  • Covid-19: Securing DevOps in cloud environments
  • Busting the Myths of Cloud Security
  • Cloud providers ate hosting companies’ lunch, what’s next? Security!
  • How to secure your data in the cloud
  • Securing Your Business in a Multi-Cloud World​​​​​​​
  • Product Webinar: Mastering the art of multicloud security
  • Mastering container security in modern day DevOps​​​​​​​
• Network security
  • Cybersecurity readiness in the post Covid-19 world
  • How to make your vulnerability management program pay dividends
  • Vulnerability management – opportunities and challenges!
  • Security analytics: what's in a risk score
  • Putting Security in Context With a Risk-based Approach
  • A day in the Life of an Information Security Professional
  • To agent, or not to agent and how to get it right

  • Risk based vulnerability management: What's in a risk score?

• Application security
  • Covid-19: Driving application security resilience in times of crisis
  • Application security in a DevOps World
  • Building an application security program at the speed of your business
  • Tales from the trenches: turning DevOps + Security into DevSecOps
  • Why security perfection is the enemy of DevSecOps
  • Reinventing Application Security with Omnicom
  • Creating a sustainable application security program to drive growth
  • Protecting Cezanne HR’s cloud web application with continuous assessment​​​​​​​
• Wireless security
  • Common Wireless Security Threats and How to Avoid them

  • Preventing wireless attacks with device visibility and effective controls

• Penetration testing security
  • The economics of penetration testing in the new threat landscape

  • Red Teaming Assessment: improve your organization’s security, one hack at a time

• Full stack security
  • Towards full stack security and prevent hacker pivot

​​​​​​​​​​​​​​Whitepapers and reports

• The Internet of Evil Things 2020 guide
• Reduce time to remediation with predictive Risk-based vulnerability management
• Web Application Security for Retail & Ecommerce report
• Infosecurity Europe survey 2019
• AWS Best Security Practices Guide
• RSA IT security survey 2019
• The DevOps guide to application security
• The economics of penetration testing for web application security
• The Forrester Wave report - Vulnerability Risk Management Q4 2019
• Cloud Workloads Security Guide
• A strategy to improve zero day vulnerability detection guide
• Securing public clouds an enterprise perspective
• RSA IT security survey 2018

• Infosecurity Europe survey 2018

Getting started