Sonatype
How does Fluid Attacks' solution compare to Sonatype's? The following comparison table enables you to discern the performance of both providers across various attributes essential for meeting your company’s cybersecurity needs. To better understand each attribute, read their descriptions in the dedicated page.
Organization
|
Attribute
|
Essential
|
Advanced
|
Sonatype
|
|
Focus
|
|||
|
Extras
|
None
|
None
|
|
|
Employees
|
|||
|
Reputation
|
Same
|
||
|
Followers
|
Same
|
||
|
Research Firms
|
None
|
None
|
|
|
Founded
|
2001 | ||
|
Funding
|
Bootstrapped
|
Same
|
$154.7M USD in 6 rounds from 8 investors (2 acquisitions)
|
|
Revenue
|
|||
|
CVE
|
10 CVEs reported to MITRE
|
||
|
Compliance
|
SOC 2 Type II and SOC 3
|
||
|
Documentation
|
|||
|
Visits
|
|||
|
Authority
|
|||
|
Distribution
|
Same
|
||
| Marketplaces | AWS | ||
|
Freemium
|
No
|
No
|
No
|
|
Free trial
|
|||
|
Demo
|
|||
|
Pricing
|
|||
|
Pricing drivers
|
Service
|
Attribute
|
Essential
|
Advanced
|
Sonatype
|
|
PTaaS
|
No
|
No
|
|
|
Reverse engineering
|
No
|
Yes | No |
|
Secure code review
|
No
|
No
|
|
|
Pivoting
|
No
|
No
|
|
|
Exploitation
|
No
|
No
|
|
|
Zero-day vulnerabilities
|
None
|
Continuous zero-day vulnerability research
|
|
|
SLA
|
Response | ||
|
Accreditations
|
|||
|
Hacker certifications
|
Not applicable
|
Not applicable
|
|
|
Type of contract
|
Employee
|
Same
|
|
|
Standards
|
Some requirements from 65 standards, 12 in common and 53 additional
|
All requirements from the same standards
|
|
|
Detection
|
|||
|
Remediation
|
5, 2 in common and 3 additional
|
Same, plus 1
|
2, all in common
|
|
Outputs
|
5, 3 in common and 2 additional
|
Same, plus 2
|
4, 3 in common and 1 additional
|
Product
|
Attribute
|
Essential |
Advanced
|
Sonatype
|
|
ASPM
|
Yes |
No
|
|
|
IDE
|
5 functionalities, 4 additional and 1 in common
|
Same, plus 1 functionality
|
|
|
CLI
|
|||
|
CI/CD
|
|||
|
SCA
|
18 package managers, 14 in common and 4 additional
|
||
|
Reachability
|
12 languages, 1 in common and 11 additional
|
|
|
|
SBOM
|
18 package managers, 10 in common and 8 additional | ||
|
Containers
|
No
|
||
|
Source SAST (languages)
|
Same, plus 4
|
No
|
|
|
Source SAST (frameworks)
|
No
|
||
|
Binary SAST
|
Same, plus 2 types of binaries
|
17 types of binaries, none in common
|
|
|
DAST
|
No |
||
|
IAST
|
No
|
No
|
No
|
|
CSPM
|
Yes |
No
|
|
|
Secrets
|
Same, plus verify other attack vectors and secrets exploitability
|
No
|
|
|
AI
|
2 functions, 1 in common and 1 additional | ||
|
Open source
|
Not applicable
|
No
|
|
|
Deployment
|
|||
| Regions |
No information available
|
||
|
Status
|
|||
|
Incidents
|
Integrations
|
Attribute
|
Essential
|
Advanced
|
Sonatype
|
|
SCM
|
4, all in common
|
||
|
Binary repositories
|
None
|
None
|
|
|
Ticketing
|
3, 1 in common and 2 additional
|
1 in common |
|
|
ChatOps
|
None |
None
|
None |
|
IDE
|
2, all in common
|
6, 2 in common and 4 additional |
|
|
CI/CD
|
20, 6 in common and 14 additional
|
6, all in common
|
|
|
SCA
|
Native scanner and 1 integration |
||
|
Container
|
|||
|
SAST
|
|||
|
DAST
|
None |
||
|
IAST
|
None |
None
|
None
|
|
Cloud
|
3, 1 in common and 2 additional
|
1 in common
|
|
|
CSPM
|
None | ||
|
Secrets
|
None |
||
|
Compliance
|
None
|
None
|
None
|
References were last checked on Apr 11, 2025.
Free trial
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.