Trustgent
Market map · Application security

The verified Application security landscape.

Every AI builder with a verified Application security delivery record, worldwide — cross-referenced (L2) or higher. Ranked on earned proof, never paid placement.

190 verified builders qualify for this map — every one cross-referenced (L2) or higher. Order is earned: highest verification level first, ties broken by most-recent verification. A free-plan L5 provider always outranks a paid-plan L1; plan tier is never a ranking input.

Most recent verification on this map: 2026-07-07. This is a live view — the ranking updates as builders re-verify.

Choosing an AI builder? Don’t stop at the demo. Trustgent’s six-level verification scale(L0–L5) tells you how much of a provider’s claim is independently corroborated, and how ranking works explains why proof — not spend — sets the order. Work through the questions to ask a partner and the evaluation scorecard, then request verified quotes from the builders on this map.

Verified builders on this map

UltraViolet Cyber

McLean, United States

Practitioner-led offensive and defensive security for Global 2000 and Federal

Red teamingSOC & MDR monito…Application secu…+1 more
records
1
team
200-500
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Secarma

Manchester, United Kingdom

Independent Manchester-based CREST and CHECK penetration testing consultancy

Penetration test…Red teamingVulnerability ma…+1 more
records
1
team
50-200
founded
2001

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

SECFORCE

London, United Kingdom

Strategic offensive security consultancy for UK financial services

Penetration test…Red teamingApplication secu…+1 more
records
1
team
10-50
founded
2008

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Synetis

Paris, France

Independent French cybersecurity consultancy - people at the heart

Incident responseSOC & MDR monito…Application secu…+1 more
records
1
team
251-500
founded
2010

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Synacktiv

Paris, France

Offensive security experts — pentest, reverse engineering & CSIRT

Penetration test…Red teamingIncident response+2 more
records
1
team
200-300
founded
2012

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Vaadata

Lyon, France

Ethical hacking boutique — pentest, red team & assumed breach

Penetration test…Red teamingApplication secu…+1 more
records
1
team
20-50
founded
2015

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

StickmanCyber

Sydney, Australia

Sydney-based cybersecurity-as-a-service firm delivering continuous vulnerability management and compliance uplift for 200+ Australian enterprises.

Vulnerability ma…Penetration test…SOC & MDR monito…+2 more
records
1
team
51-200
founded
2006

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Volkis

Sydney, Australia

Independent boutique Australian offensive cyber security

Penetration test…Red teamingApplication secu…
records
1
team
11-50
founded
2019

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

White Rook Cyber

Brisbane, Australia

Australian defence-heritage red team specialists with OSCP/OSCE-certified consultants.

Red teamingPenetration test…Application secu…+1 more
records
1
team
10-50
founded
2022

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Core Sentinel

Sydney, Australia

Sydney senior-only penetration testing firm running recurring vulnerability discovery across web, mobile, infrastructure and wireless.

Vulnerability ma…Penetration test…Application secu…
records
1
team
11-50
founded
2015

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Morrisec

Sydney, Australia

Sydney cyber consultancy from Ruxcon and ex-CBA hands

Penetration test…Red teamingApplication secu…+2 more
records
1
team
10-50
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Yogosha

Boulogne-Billancourt, France

Offensive security testing platform and bug bounty operations

Penetration test…Vulnerability ma…Red teaming+1 more
records
1
team
10-50
founded
2015

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Ziwit

Montpellier, France

Offensive cybersecurity and vulnerability scanning

Penetration test…Vulnerability ma…Application secu…
records
1
team
50-200
founded
2011

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

YesWeHack

Paris, France

European bug bounty and vulnerability disclosure platform

Penetration test…Vulnerability ma…Application secu…
records
1
team
50-200
founded
2015

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

UBsecure

Tokyo, Japan

Web application security firm behind the Vex scanner, part of NRI Secure Group

Application secu…Penetration test…Vulnerability ma…
records
1
team
50-200
founded
2007

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

STEALIEN

Seoul, South Korea

Seoul offensive security firm staffed by competitive hackers

Penetration test…Red teamingApplication secu…
records
1
team
50-200
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Toreon

Antwerp, Belgium

Business-driven cyber consulting

Penetration test…Application secu…Incident response
records
1
team
50-200
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Telspace Africa

Johannesburg, South Africa

Offensive security consultancy running penetration tests and red team assessments.

Penetration test…Red teamingApplication secu…+1 more
records
1
team
10-50
founded
2002

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

SEARCH-LAB

Budapest, Hungary

Security evaluation and embedded-systems testing

Application secu…Penetration test…Vulnerability ma…
records
1
team
10-50
founded
2002

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Silent Signal

Budapest, Hungary

Boutique ethical hacking and technical security research

Penetration test…Red teamingApplication secu…+1 more
records
1
team
10-50
founded
2009

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

TBSEK

Mexico City, Mexico

Mexican firm doing defensive cyber, threat intel, and DevSecOps.

Blue team & dete…SOC & MDR monito…Threat hunting+2 more
records
1
team
10-50
founded
2018

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Wingmen Security

Aalborg, Denmark

Danish-staffed 24/7 SOC and detection engineering on Splunk and CrowdStrike

Blue team & dete…SOC & MDR monito…Threat hunting+2 more
records
1
team
50-200
founded
2021

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Cybenari

Herzliya, Israel

Boutique AppSec, SSDLC and offensive security consulting

Application secu…Penetration test…Red teaming
records
1
team
2-10
founded
2022

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Cycura

Toronto, Canada

Threat intel, DFIR, and detection engineering for government and enterprise

Blue team & dete…Incident responseThreat hunting+3 more
records
1
team
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Asurgent

Stockholm, Sweden

Stockholm cloud-security consultancy with a CTI and hunt service.

Threat huntingSOC & MDR monito…Incident response+2 more
records
1
team
10-50
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

RiverSafe

London, United Kingdom

Developer-friendly AppSec, DevSecOps and cyber consulting for UK enterprise

Application secu…Vulnerability ma…SOC & MDR monito…
records
1
team
50-200
founded
2010

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

RedSentinel

Bordeaux, France

Cybersecurity boutique: audit, pentest and Red Team

Red teamingPenetration test…Application secu…+1 more
records
1
team
10-50
founded
2021

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

REDFACE

Singapore, Singapore

AI-powered offensive security for enterprise adversary simulation.

Red teamingPenetration test…Application secu…
records
1
team
1-10
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Ray Aegis Japan

Tokyo, Japan

Vulnerability assessment and pentest provider with per-FQDN flat-rate pricing

Penetration test…Vulnerability ma…Application secu…
records
1
team
10-50
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Pentest People

Leeds, United Kingdom

Yorkshire-based CREST/CHECK pentest specialists delivering consultant-led PTaaS via SecurePortal

Penetration test…Vulnerability ma…Application secu…+1 more
records
1
team
50-200
founded
2018

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Pen Test Partners

Buckingham, United Kingdom

CREST-approved CSIRT and DFIR from the UK's largest independent security consultancy

Incident responsePenetration test…Red teaming+1 more
records
1
team
100-250
founded
2010

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Pentest Limited

Manchester, United Kingdom

Human-led penetration testing and adversary simulation

Red teamingPenetration test…Application secu…+1 more
records
1
team
50-100
founded
2001

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

pen.sec AG

Hemau, Germany

Bavarian pentesting AG delivering AppSec, red teaming, and incident response nationwide.

Application secu…Penetration test…Red teaming+1 more
records
1
team
20-50
founded
2003

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Payatu

Pune, India

Deep-tech product, IoT, hardware and application security research from Pune

Penetration test…Red teamingApplication secu…+1 more
records
1
team
50-200
founded
2011

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Outpost24

Karlskrona, Sweden

Continuous exposure management platform with human-delivered pentest services

Vulnerability ma…Penetration test…Red teaming+1 more
records
1
team
200+
founded
2001

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

OP Innovate

Ra'anana, Israel

PTaaS, incident response and CISO services on the WASP platform

Penetration test…Incident responseApplication secu…+2 more
records
1
team
10-50
founded
2014

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

OpenSecurity

Bengaluru, India

We do quality pentests, security engineering, online training - and we love OpenSource

Application secu…Penetration test…Vulnerability ma…
records
1
team
11-50
founded
0

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Openminded

Paris, France

MSSP and cybersecurity consultancy, part of Accenture

Penetration test…SOC & MDR monito…Incident response+2 more
records
1
team
50-200
founded
2008

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

OnSecurity

Bristol, United Kingdom

Productised, CREST-accredited pentest-as-a-service for the UK mid-market

Penetration test…Vulnerability ma…Red teaming+1 more
records
1
team
50-200
founded
2018

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

NVISO

Brussels, Belgium

Pure-play cybersecurity firm

Penetration test…Red teamingIncident response+3 more
records
1
team
200+
founded
2013

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

nVisium

Herndon, United States

Full-lifecycle application and software security for Fortune 500 and government.

Application secu…Penetration test…Vulnerability ma…
records
1
team
50-100
founded
2009

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

NetSPI

Minneapolis, United States

Proactive security at scale

Penetration test…Red teamingVulnerability ma…+1 more
records
1
team
1000+
founded
2001

Verified at L2 · unclaimed. Claim it free to respond to buyers and climb to a client-verified rating. Claim it free →

Showing the top 100 by earned verification. See all Application security providers for the full ranked slate.

Share this market map.

A ranked snapshot that stays current as builders re-verify. Post it to LinkedIn, download the image, or copy the link.

On this map? Claim your listing.

If you’re one of these builders, claim your listing free to respond to buyers, embed your verified badge, and climb the verification scale. Ranking stays earned — claiming never buys position.

Claim it free

This is the shareable market map. For the full, indexed directory see all Application security providers