Movatterモバイル変換

[0]ホーム
URL:

FIRST.Org

JoinDetails about FIRST membership and joining as a full member or liaison.LearnTraining and workshop opportunities, and details about the FIRST learning platform.ParticipateRead about upcoming events, SIGs, and know what is going on.CommunityCommunity and Capacity Building.

Who is using EPSS?

A list of vendors with products who support EPSS in their products.

In order to be added to this list, pleasesubmit a pull request with a link to evidence that your product supports EPSS.You can also message Patrick Garrity on Linkedin here:https://www.linkedin.com/in/patrickmgarrity/

VendorProductLink
Aikido SecurityAikido Security Platformhttps://help.aikido.dev/code-scanning/miscellaneous/use-epss-values-to-further-reduce-noise
AppSocRisk-Based Application Security Posture Managementhttps://www.appsoc.com/
Aqua SecurityAqua Workload Protectionhttps://support.aquasec.com/support/solutions/articles/16000166626-2023-september-saas-update-release%23EPSS-(Exploit-Prediction-Scorin
ArmisArmis Asset Vulnerability Management modulehttps://www.armis.com/integrations/exploit-prediction-scoring-system-epss/
Armo SecurityArmo Kubernetes Securityhttps://hub.armosec.io/docs/vulnerabilities-workloads
ArmorcodeRisk-Based Vulnerability Managementhttps://www.armorcode.com/blog/epss-and-risk-based-vulnerability-prioritization
ArnicaPipelineless Application Securityhttps://docs.arnica.io/arnica-documentation/code-risks/software-composition-analysis-sca#exploit-prediction-scoring-system-epss-score-and-trend
AvalorAvalor Security Data Fabrichttps://www.avalor.io/integrations
AWSInspectorhttps://aws.amazon.com/about-aws/whats-new/2023/07/amazon-inspector-vulnerability-intelligence-findings/
AxoniusVulnerability Management Modulehttps://docs.axonius.com/docs/vulnerabilities
AxxembleBaseFortifyhttps://basefortify.eu/posts/2025/01/epss:_prioritizing_vulnerabilities_based_on_exploit_likelihood.html
BacklashReachability SAST/SCAhttps://www.backslash.security/
BalbixRisk-Based Vulnerability Managementhttps://www.balbix.com/product/risk-based-vulnerability-management/
BinarlyTransparency Platformhttps://binarly.io/capabilities
Black KiteThird Party & Cyber Risk Management Platformhttps://content.blackkite.com/ebook/2025-supply-chain-vulnerability-report/
BomberBomberhttps://github.com/devops-kung-fu/bomber
BrinqaCyber Risk Platformhttps://www.brinqa.com/glossary/what-is-epss-score/
Boost SecurityDevSecOps Platformhttps://docs.boostsecurity.io/user-guide/new_release.html#2023-03-09
CaveloAttack Surface Managementhttps://www.cavelo.com
CIRCLVulnerability Lookuphttps://vulnerability.circl.lu
cvefeed.ioVulnerability Intelligencehttps://cvefeed.io
CiscoCisco Vulnerability ManagementEPSS and Its Role in Cisco Vulnerability Management Risk Scoring
ClavisRisk-Based Vulnerability Priorizationhttps://produto.clavis.com.br/material-bart-gerenciamento-de-vulnerabilidade-baselines-analises-de-risco-testes-de-seguranca/
Cytidelvulnerability and risk management platformhttps://www.cytidel.com/
Clarotyvulnerability and Risk Managementhttps://claroty.com/press-releases/claroty-unveils-new-vulnerability-risk-management-capabilities-to-supercharge-risk-reduction-for-cyber-physical-systems
CloudsmithCloud Native Artifact Management Platformhttps://cloudsmith.com/blog/cloudsmith-introduces-epss-scoring-in-enterprise-policy-management-epm
CoalitionCoalition Exploit Scoring Systemhttps://ess.coalitioninc.com/
ConnectSecureConnectSecure Vulnerability Managementhttps://connectsecure.com/news/product-update-epss-empowers-msps-to-tackle-high-risk-vulnerabilities
CowbellCowbell Insurancehttps://cowbell.insure/
CulindaCulinda Cloud Securityhttps://www.culinda.io/
CTM360Threat Coverhttps://www.ctm360.com/
CVE CrowdCVEs discussed on the Fediversehttps://cvecrowd.com/
CybeatsSBOM Studiohttps://www.cybeats.com/sbom-studio
CybelAngelAsset Discovery & Monitoringhttps://cybelangel.com/asset-discovery-and-monitoring/
CyberwatchCyberwatch Vulnerability Managementhttps://cyberwatch.fr/veille/epss-quest-ce-que-lexploit-prediction-scoring-system/
CyscaleCloud Security Platformhttps://cyscale.com/blog/security-scoring-cvss4-vs-cvss3-need-to-know/
DatadogApplication Vulnerability Managementhttps://www.datadoghq.com/product/application-vulnerability-management/
DazzDazz Unified Remediation Platformhttps://www.dazz.io/platform
DeepfactorApplication Security Platformhttps://www.deepfactor.io/deepfactor-3-5-includes-enhanced-vulnerability-prioritization-with-epss-support-and-reachability-analysis-for-golang/
DenexusOT Cyber Risk Quantificationhttps://www.denexus.io/products/derisk/industrial
DevOceanLow-Touch Remediation Platformhttps://www.devocean.security/blog/epss-everything-you-need-to-know
Docker ScoutSolution for proactively enhancing your software supply chain securityhttps://www.docker.com/products/docker-scout/
EdgeBitEdgeBit Security Platformhttps://edgebit.io/docs/0.x/investigate-epss/
EdgescanRisk-Based Vulnerability Management Solutionhttps://www.edgescan.com/solutions/vulnerability-management/
ElasticElastic Seach Platformhttps://www.elastic.co/docs/current/integrations/first_epss
Endor LabsEndor Labshttps://www.endorlabs.com/blog/cve-vulnerability-epss-ssvc-reachability-vex
FOSSAThe Modern Open Source Risk Platformhttps://fossa.com/blog/understanding-using-epss-scoring-system/
FlashpointFlashpoint VulnDBhttps://flashpoint.io/resources/datasheets/vulndb-ransomware-and-exploit-prediction-model/
FleetOpen-source device managementhttps://fleetdm.com/upgrade
Fluid AttacksFluid Attackshttps://fluidattacks.com/
ForeScoutRisk and Exposure Managementhttps://www.forescout.com/products/rem/
FortinetForinet DASThttps://docs.fortinet.com/document/fortidast/23.3.0/user-guide/476620/vulnerabilities
FortMesaRiskchain VMhttps://land.fortmesa.com/vulnerability-management-101
Finite StateFinite State Platformhttps://finitestate.io/products/finite-state-platform/
GitHubDependabothttps://docs.github.com/en/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts
Github Advisory DatabaseGHSAhttps://github.blog/changelog/2024-10-10-epss-scores-in-the-github-advisory-database/
HackerOneCVE Discoveryhttps://hackerone.com/hacktivity/cve_discovery
HackuityRisk-Based Vulnerability Managementhttps://www.hackuity.io/
HarnessSecurity Test Orchestrationhttps://www.harness.io/products/security-testing-orchestration
IBMConcerthttps://www.ibm.com/docs/en/concert?topic=dimension-understanding-concert-risk-score-vulnerabilities#understanding_the_concert_risk_score__title__4
InterlynkSoftware Supply Chain Securityhttps://docs.interlynk.io/product-guides/interlynk-basics/vulnerability
IntruderExposure Management Platformhttps://www.intruder.io/
IruVulnerability Managementhttps://docs.iru.com/en/endpoint/vulnerability-management/vulnerability-management-overview
KerzingerVulnDexhttps://vulndex.at/
KeysightKeysight IoT Security Assessmenthttps://www.keysight.com/be/en/products/network-security/iot-security-assessment.html
KodemKodem Securityhttps://www.kodemsecurity.com/
KonduktoKondukto ASPM Platformhttps://kondukto.io/
LansweeperLansweeper Asset Intelligencehttps://community.lansweeper.com/t5/cyber-security-and-risk-insights/understanding-exploitability-fields/ta-p/77274
Legit SecurityLegit Supply Chain Securityhttps://www.legitsecurity.com/
Luna SecLuna Sechttps://www.lunasec.io/docs/blog/what-is-epss/
ManifestManifesthttps://www.manifestcyber.com/blog/introducing-manifest
MandiantMandiant Vulnerability Intelligencehttps://www.mandiant.com/resources/blog/enhanced-vulnerability-intelligence
Mend.ioMendhttps://docs.mend.io/bundle/sca_user_guide/page/view_epss_scores_for_container_images.html
MicrosoftMicrosoft Defenderhttps://techcommunity.microsoft.com/t5/microsoft-defender-vulnerability/enhancing-vulnerability-prioritization-with-asset-context-and/ba-p/4212480
MondooUnified Security Posture Managementhttps://mondoo.com/docs/platform/security/posture/vulnerabilities/#epss-score
MorphisecMorphisec Vulnerability Managementhttps://blog.morphisec.com/morphisec-next-gen-risk-based-vulnerability-prioritization
NanitorNanitor CTEM Platformhttps://help.nanitor.com/134-epss/
NetriseNetrise Platformhttps://www.netrise.io/xiot-security-blog/sbom-ingest
NetSPIAttack Surface Management (ASM)https://www.netspi.com
NoeticNoetic Platformhttps://noeticcyber.com/risk-driven-vulnerability-prioritization/
Nucleus SecurityNucleus Unified Vulnerability Managementhttps://nucleussec.com/blog/what-is-epss/
NTT DATAYaVS / SecDB Portalhttps://secdb.nttzen.cloud
OligoDynamic SCAhttps://www.oligo.security/
OpswrightOpswright Impact Platformhttps://opswright.com/
OrcaCloud Security Platformhttps://orca.security/resources/blog/epss-scoring-system-explained/
OX SecurityOX Security Platformhttps://www.ox.security/
Oryx LabsAttack Surface Managementhttps://oryxlabs.ae/
OWASPDependency Trackhttps://owasp.org/www-project/dependency-track
Palo Alto NetworkPrisma Cloudhttps://www.paloaltonetworks.com/prisma/cloud
Palo Alto NetworkXpansehttps://www.paloaltonetworks.com/blog/security-operations/enable-proactive-incident-response-with-adaptive-risk-scoring/
Phoenix SecurityAct on Phoenixhttps://phoenix.security/new-features-november-2022/
PlexicusAI-powered CNAPPhttps://www.plexicus.ai/
PrecursorPenetration Testing and Continuous Security Testing Serviceshttps://www.precursorsecurity.com/
ProcapsuiteProcap 360https://procapsuite.com/
UpGuardUpGuard Platformhttps://help.upguard.com/en/articles/9180433-what-is-exploit-prediction-scoring-system-epss
QualysTruRiskhttps://blog.qualys.com/qualys-insights/2022/10/10/in-depth-look-into-data-driven-science-behind-qualys-trurisk
Rapid7Surface Command & Exposure Commandhttps://docs.rapid7.com/surface-command-offering/quick-start-guide/#phase-1-get-up-and-running
RezilionRezilionhttps://www.rezilion.com/blog/introducing-our-new-software-supply-chain-security-features/
runZeroEPSS-Pulsehttps://www.runzero.com/epss-pulse/
SecLogicCyberQ Shieldhttps://seclogic.io/
SecOps SolutionFull-Stack Vulnerability and Patch Management Platformhttps://secopsolution.com/epss-calculator
SecurinVulnerability Intelligencehttps://www.securin.io/vulnerability-intelligence/
SecurityScorecardCVE Detailshttps://www.cvedetails.com/epss/epss-score-history.html
SeemplicitySeemplicityhttps://seemplicity.io/different-approaches-for-vulnerability-prioritization/
SemgrepSemgrep AppSec Platformhttps://semgrep.dev/
SentinelOneSentinelOne Vulnerability Managementhttps://www.sentinelone.com/platform/singularity-ranger-insights/
ServiceNowServiceNow Vulnerability Responsehttps://docs.servicenow.com/bundle/vancouver-security-management/page/product/secops-integration-vr/epss/concept/epss-vr-integration-overview.html
Shield CyberAttacker-centric Exposure Managementhttps://www.shieldcyber.io/
ShodanCVEDB APIhttps://cvedb.shodan.io/
SideChannelEnclavehttps://sidechannel.com/blog/enhance-your-security-measures-with-effective-epss-and-exposure-management/
SkyboxVulnerability & Threat Managementhttps://www.skyboxsecurity.com/products/vulnerability-control/
SnykSecurity Intelligencehttps://snyk.io/blog/improved-risk-assessment-with-epss-scores-in-snyk/
SOCRadarExtended Threat Intelligencehttps://socradar.io/predicting-vulnerability-exploitation-for-proactive-cybersecurity-whats-epss-and-how-can-svrs-enhance-it/
SOOSSOOS Securityhttps://kb.soos.io/help/exploitable-vulnerabilities
SPDXThe Software Package Data Exchange (SPDX)https://spdx.dev/capturing-software-vulnerability-data-in-spdx-3-0/
StackawareAI Risk Managementhttps://stackaware.com/
StrobesVM365https://help.strobes.co/hc/en-us/articles/13158942134801-Vulnerabilities-Custom-CSV-Export
TaniumTanium Complyhttps://help.tanium.com/bundle/WhatsNewComplyAug/page/ANN/WhatsNewComplyAug/WhatsNewComplyAug.htm
TenableTenable Vulnerability Managementhttps://docs.tenable.com/vulnerability-management/Content/vulnerability-intelligence/vulnerability-information.htm
UltraredUltrared Threat Exposure Managementhttps://www.ultrared.ai/blog/epss-and-exposure-management
UptycsThe first unified CNAPP and XDR platformhttps://www.uptycs.com/products/why-uptycs
VeracodeVeracode SCAhttps://docs.veracode.com/r/Understanding_SCA_exploitability_information
VerveVerve Security Centerhttps://verveindustrial.com/resources/blog/calculated-risk-rating-data-driven-ot-risk-assessment/
VulcanVulcan Cyber Risk Management Platformhttps://vulcan.io/blog/thinking-of-using-epss-heres-what-you-need-to-know/
VulDBCyber Threat Intelligencehttps://vuldb.com/?kb.epss
Vulmon SearchVulnerability Intelligence Search Enginehttps://vulmon.com
VulnCheckVulnCheck Exploit & Vulnerability Intelligencehttps://vulncheck.com/product/exploit-intelligence
VulnersVulners Databasehttps://vulners.com/search
WizWiz Platformhttps://www.wiz.io/
Würth PhoenixSATAYO CTI Platformhttps://www.neteye-blog.com/2023/12/epss-implementation-in-satayo/
Xygeni SecurityAll-in-One Application Security Platformhttps://docs.xygeni.io/introduction-to-xygeni/prioritization-funnels/prioritization-funnels-1/exploitability#exploitability
Yes We HackBug Bounty & Vulnerability Management Platformhttps://www.yeswehack.com/
[8]ページ先頭
©2009-2026 Movatter.jp