Attribute
|
Essential
|
Advanced
|
Wiz
|
Focus
|
|||
Extras
|
None
|
None
|
|
Headcount
|
|||
Headcount distribution
|
|||
Headcount growth
|
|||
Headquarters
|
|||
Countries
|
|||
Reputation
|
Same
|
||
Followers
|
Same
|
||
Research firms
|
None
|
None
|
|
Founded
|
2001 | ||
Funding
|
Bootstrapped
|
Same
|
$2B
USD in 8 rounds from 20 investors
|
Acquisitions
|
None
|
None
|
|
Revenue
|
|||
CVE
|
257 CVEs reported to MITRE,
ranked in the top 10 CVE labs
worldwide.
|
0 CVEs reported to MITRE
|
|
Compliance
|
SOC 2 Type
II and SOC
3
|
CSA STAR Level 1, FedRAMP Authorized, ISO/IEC27001, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, PCI DSS, SOC 2 Type II, SOC 3, StateRAMP Authorized and TX-RAMP | |
Bug bounty
|
|||
Visits
|
|||
Authority
|
|||
Vulnerability database
|
|||
Content
|
Same
|
||
Knowledge base
|
13 KB sections
|
No information available
|
|
Community
|
|||
Sync training
|
No
|
No
|
No
|
Async training
|
No
|
||
Distribution
|
Same
|
||
Marketplaces | AWS, Azure and GCP | ||
Freemium
|
No
|
No
|
No
|
Free trial
|
|||
Demo
|
|||
Pricing
|
|||
Pricing tiers
|
1 plan
|
1 plan
|
2 plans (essential, advanced). All transparent
|
Minimum commit
|
|||
Minimum payment period
|
|||
Minimum capabilities
|
|||
Minimum scope
|
1 group
|
1 author
|
100 cloud workloads
|
Pricing drivers
|
|||
Minimum monthly payment
|
Attribute
|
Essential
|
Advanced
|
Wiz
|
PTaaS
|
No
|
No
|
|
Reverse engineering
|
No
|
Yes | No |
Secure code review
|
No
|
No
|
|
Pivoting
|
No
|
No
|
|
Exploitation
|
No
|
No
|
|
Manual reattacks
|
Not applicable
|
Not applicable
|
|
Zero-day vulnerabilities
|
None
|
None
|
|
SLA
|
Availability and support | ||
Min availability
|
>=99.95% per minute LTM
|
>=99.9% unknown per month
|
|
After-sale guarantees
|
No
|
Yes
|
No
|
Accreditations
|
AWS Built-in Competency, Cloud Operations Software Competency, Education ISV Competency, Financial Services Technology Competency, Government ISV Competency, Healthcare ISV Competency and Security ISV Competency | ||
Hacker certifications
|
Not applicable
|
Not applicable
|
|
Type of contract
|
Employee
|
Same
|
|
Endpoint control
|
Not applicable
|
Total
|
Not applicable
|
Channel control
|
Not applicable
|
Total
|
Not applicable
|
Standards
|
Some requirements from 65
standards, 12 in common and
53
additional
|
All requirements from the same standards
|
21 standards, 12
in common and 9 additional
|
Detection method
|
|||
Remediation
|
5, 3 in common and 2 additional
|
Same, plus 1
|
3, all in common
|
Outputs
|
5, 3 in common and 2 additional
|
Same, plus 2
|
4, 3 in common and 1 additional
|
Attribute
|
Essential |
Advanced
|
Wiz
|
ASPM
|
Yes | ||
API
|
No
|
||
IDE
|
5 functionalities,
2 in common and 3 additional
|
Same,
plus 1 functionality
|
3 functionalities, 2 in common and 1 additional
|
CLI
|
|||
CI/CD
|
|||
Vulnerability sources
|
|||
Priority criteria
|
Same
|
||
Custom prioritization
|
|||
Scanner origin
|
In-house | ||
SCA
|
Yes. No
information available
|
||
AI security
|
No
|
||
Reachability
|
12 languages
|
No
|
|
Reachability type
|
Not applicable
|
||
SBOM
|
Yes. No
information available
|
||
Malware detection
|
Yes
|
Yes
|
|
Autofix on components
|
No
|
No
|
No
|
Containers
|
Yes. No
information available
|
||
Source SAST
(languages)
|
Yes. No
information available
|
||
Source SAST
(frameworks)
|
Yes. No information available |
||
Custom rules
|
No
|
No
|
Custom rules for workloads
|
IaC
|
6, 3 in common and 3 additional
|
4, 3 in common
and 1 additional
|
|
Binary SAST
|
1 type
of binary
|
No
|
|
DAST
|
No |
||
API security testing
|
No
|
No
|
|
IAST
|
No
|
No
|
No
|
CSPM
|
Yes | ||
Environments
|
Left & Right (included)
|
Same
|
|
ASM
|
No
|
No
|
No
|
Secrets
|
Same, plus other obtained
manually
|
8 secret
types, 5 in common and 3 additional
|
|
AI
|
4 functions, 2 in common and 2 additional
|
2 functions,
all in common
|
|
Open-source
|
Not applicable
|
No
|
|
Provisioning as Code
|
|||
Deployment
|
SaaS and on-premises
|
||
Regions |
No information available
|
||
Status
|
|||
Incidents
|
Attribute
|
Essential
|
Advanced
|
Wiz
|
SCM
|
4, 3 in common and 1
additional
|
4, 3 in common and 1
additional
|
|
Binary repositories
|
None
|
None
|
|
Ticketing
|
3, 2 in common and 1 additional
|
4, 2 in common and 2 additional |
|
ChatOps
|
None |
None
|
|
IDE
|
3, 1 in common and 2 additional
|
1 in common |
|
CI/CD
|
20, 10 in common and 10
additional
|
14, 10
in common and 4 additional
|
|
SCA
|
Native and 10 integrations |
||
Container
|
|||
SAST
|
Native and 3 integrations |
||
DAST
|
|||
IAST
|
None |
None
|
|
Cloud
|
3 integrations, all in
common
|
||
CSPM
|
Native and 7 integrations | ||
Secrets
|
Native and 16 integrations |
||
Remediation |
None
|
None
|
None
|
Bug bounty
|
None
|
None
|
None
|
Vulnerability management
|
None
|
None
|
|
Compliance
|
None
|
None
|