Contrast Security

Looking For A Simple Tool To Test Web Apps? Contrast Security Scanner Explained

Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast’s patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts.

Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development to operations, to production. This cybersecurity company is proud to have been named the only “Visionary”​ in the 2019 Gartner Magic Quadrant for Application Security Testing (AST). Contrast’s revolutionary approach to application security has won numerous industry accolades, including: Contrast Security recognized by SC Media as a finalist for “Best Web Application Solution”, Contrast Security wins the Pivotal “Vendor Partner of the Year”​, Contrast Security wins the Cyber Defense Magazine Award in the “​ HOT COMPANY–Application Security”​ category, Contrast Security wins the Cybersecurity Breakthrough Award for “Overall Cybersecurity Company of the Year”​, Contrast Security’s Jeff Williams wins The SC Media Reboot Leadership Award in the “Thought Leaders”​ category, Contrast Security wins the Gold Golden Bridge Award for best “Web Application Security Innovations”​, Contrast Security wins the 2019 Gold Network Product Guide under the “Application Security Testing”​ category, Contrast Security recognized as a finalist for the “Black Unicorn Awards”​, Contrast Security named to Forbes “Next Billion-Dollar Startups 2019 List”​, Acquisition International “Most Pioneering Software Protection Solution 2019″​, Silver Stevie Award for “Best Business Technology Software – DevOps Solution”


Industry Classification: Cybersecurity Web Services

Cybersecurity Specializations: Application Security, Instrumentation, Java, Software, Security, Injection, IAST, SAST, DAST, Security Architecture, DevOps, Agile, And OWASP

Address/Location: Los Altos, CA, United States
This oganization might be multinational; we list their HQ.

Company Size: 201-500 employees

Year of Incorporation: 2014

Main Website: Contrast Security

(Our Estimate) Funding (2021): US$ 65M
This is our estimate, might need updating.

Discovered Contrast Security Social Media Accounts

Twitter Facebook Instagram

Hacker Hotshot Speaker: Jeff Williams

Date of Recording: October 2nd, 2013

About Jeff Williams:

For over 25 years, my passion has been improving the security of the world’s software. I founded three very different but highly successful organizations to help solve the problem.

-Contrast Security (2014) is focused on fully automated application security at the speed and scale of DevOps. We invented a revolutionary technique leveraging dynamic binary instrumentation to assess applications for vulnerabilities *and* prevent vulnerabilities from being exploited. If you called it AppDynamics for security, you wouldn’t be too far off.

-Aspect Security (2002) was one of the first consulting firms to focus exclusively on application security. We supported very high profile financial, utilities, government agencies, entertainment, airline, and other industries with manual security code review and penetration testing, hands-on training and eLearning, architecture review and threat modeling, and other services. Aspect was acquired by EY in 2017.

-OWASP (2001) is a worldwide open-source application security organization with hundreds of chapters and 50,000 members worldwide. I created the Foundation, set up the Board, started chapters and conferences, and volunteered as Global Chair for 9 years. I also started and led many open-source projects used by millions, including the OWASP Top Ten, WebGoat, ESAPI, ASVS, and XSS Prevention Cheat Sheet.

In the early 1990s, I built high assurance systems for the Navy and taught the INFOSEC curriculum at the NSA during the Orange Book days. Later, I Chaired the Author Group for the SSE-CMM (now ISO 21827). I designed and built a high assurance guard in Java on Trusted Solaris.