Cloud-Native Application Protection Platform

AccuKnox simplifies the process of extending zero trust principles from identity and the network to the application and data layers. Our solution is built on open source innovations and improvements to deliver key benefits, quickly and cost effectively.

The AccuKnox Platform

Zero Trust Cloud Native Application Protection for Multi-Cloud Environments
AccuKnox simplifies the process of getting to zero trust and staying there.

Application Visibility & Protection at Runtime

Application Insights
Network Segmentation & Firewalling
Auto Policy Management
Detection Intrusions & Anomalies
Kubernetes, container, VM & bare metal

Continuous Compliance

CIS benchmark
And more open source templates

Continuous Security

Deep Security Observability
Vulnerability Scanning & Image Assurance
High-value Incident Alerting
Integrations with SIEM, SOAR, ...

Auto Policy Discovery

Database workload discovery
Identify & classify sensitive data
Data provenance tracking & access auditing
Compliance templates

Our core software is built on innovative open source projects driven by our team and the community - vetted, peer-reviewed software, easy try-and-buy.

Enterprise SaaS & Private Cloud

Simplify your cloud security journey with AccuKnox’s enterprise-grade hosted solution.
Or, get all the same features to host and manage it yourself.

Open Source

Based on Open Source, CNCF projects like KubeArmor, Auto Policy Discovery & Cilium.

AccuKnox is committed to leveraging best in Class OpenSource platforms and contributing to the OpenSource community so that end customers can leverage the power of the Open Source community.

AccuKnox is also a contributor to several other projects, including: SPIFFE (Secure Production Identity Framework for Everyone), eBPF-based Networking, Observability, Security project Cilium.


KubeArmor is an application hardening solution that uses AppArmor and SELinux to harden and protect your workloads at runtime. KubeArmor is an Open-source CNCF incubating project.

AppArmor + SELinux + Secomp based policies
Available K8s and non k8s control plane
K8s native support
Full VM based support


Cilium is eBPF-based Networking, Observability, and Security Tool for Kubernetes environments across cloud and on-premises infrastructure. We are focused on adding value to Cilium in the following areas of SPIFFE Based Identity, Policy Discovery, Policy Staging Support and Improved L7 Visibility

All of Cilium core +
Full virtual machine support
Identity as a perimeter of security with SPIFEE
Full non K8s control plane
Simple tooling that generates zero trust policies in 2mins

Policy Templates

Common tactics, techniques, and procedures (TTP) that form the basis of the MITRE ATT&CK framework as well as STIGS have been implemented as policy templates. These policy templates can be quickly and easily apply to your workloads and protect them at runtime.

MITRE based policy templates
Templates for known exploits and malwares
Workload specific policies including MySQL, Postgres, Kafka, Cassandra and more.
Free and open source. Available at KubeArmor

Application Security

Auto-discovery of policies enables developers and security engineers to quickly create policies based on the actual observed behavior of the application. This can then be enforced at runtime to enable zero trust.

Auto-discovery of Cilium and KubeArmor Policies
Support for K8s pods as well as virtual machine processes
Workload-specific auto discovery supported
Simple tooling that generates zero trust policies in 2mins



Open Source


Application hardening and security using SELinux, App Armor
Network Segmentation & Firewalling
Auto Policy Generation for Network and Application Hardening
Workflow integration and automation
Multi-tenant, multi-cluster management
Integrations with cloud watch, Splunk enterprise, JIRA, ELK and more.


AccuKnox supports integration with a number of 3rd party platforms:

SIEM - Splunk, Elastic

SOAR - Phantom, Demisto

CI/CD - Jenkins/Cloudbees, CircleCI,