Products

Cloud-Native Application Protection Platform

AccuKnox simplifies the process of extending zero trust principles from identity and the network to the application and data layers. Our solution is built on open source innovations and improvements to deliver key benefits, quickly and cost effectively.

The AccuKnox Platform

Zero Trust Cloud Native Application Protection for Multi-Cloud Environments
AccuKnox simplifies the process of getting to zero trust and staying there.

Application Visibility & Protection at Runtime

 
Application Insights
 
Network Segmentation & Firewalling
 
Auto Policy Management
 
Detection Intrusions & Anomalies
 
Kubernetes, container, VM & bare metal

Continuous Compliance

 
PCI-DSS
 
CIS benchmark
 
NIST
 
And more open source templates

Continuous Security

 
Deep Security Observability
 
Vulnerability Scanning & Image Assurance
 
High-value Incident Alerting
 
Integrations with SIEM, SOAR, ...

Auto Policy Discovery

 
Database workload discovery
 
Identify & classify sensitive data
 
Data provenance tracking & access auditing
 
Compliance templates

Our core software is built on innovative open source projects driven by our team and the community - vetted, peer-reviewed software, easy try-and-buy.

Enterprise SaaS & Private Cloud

Simplify your cloud security journey with AccuKnox’s enterprise-grade hosted solution.
Or, get all the same features to host and manage it yourself.


Open Source

Based on Open Source, CNCF projects like KubeArmor, Auto Policy Discovery & Cilium.

AccuKnox is committed to leveraging best in Class OpenSource platforms and contributing to the OpenSource community so that end customers can leverage the power of the Open Source community.

AccuKnox is also a contributor to several other projects, including: SPIFFE (Secure Production Identity Framework for Everyone), eBPF-based Networking, Observability, Security project Cilium.

KubeArmor

KubeArmor is an application hardening solution that uses AppArmor and SELinux to harden and protect your workloads at runtime. KubeArmor is an Open-source CNCF incubating project.

 
AppArmor + SELinux + Secomp based policies
 
Available K8s and non k8s control plane
 
K8s native support
 
Full VM based support

Cilium

Cilium is eBPF-based Networking, Observability, and Security Tool for Kubernetes environments across cloud and on-premises infrastructure. We are focused on adding value to Cilium in the following areas of SPIFFE Based Identity, Policy Discovery, Policy Staging Support and Improved L7 Visibility

 
All of Cilium core +
 
Full virtual machine support
 
Identity as a perimeter of security with SPIFEE
 
Full non K8s control plane
 
Simple tooling that generates zero trust policies in 2mins

Policy Templates

Common tactics, techniques, and procedures (TTP) that form the basis of the MITRE ATT&CK framework as well as STIGS have been implemented as policy templates. These policy templates can be quickly and easily apply to your workloads and protect them at runtime.

 
MITRE based policy templates
 
Templates for known exploits and malwares
 
Workload specific policies including MySQL, Postgres, Kafka, Cassandra and more.
 
Free and open source. Available at KubeArmor

Application Security

Auto-discovery of policies enables developers and security engineers to quickly create policies based on the actual observed behavior of the application. This can then be enforced at runtime to enable zero trust.

 
Auto-discovery of Cilium and KubeArmor Policies
 
Support for K8s pods as well as virtual machine processes
 
Workload-specific auto discovery supported
 
Simple tooling that generates zero trust policies in 2mins

Features

Open Source

Platform

Application hardening and security using SELinux, App Armor, SecComp
check_blue
check_blue
Network Segmentation & Firewalling (using Cilium)
check_blue
check_blue
Auto Policy Generation for Network and Application Hardening
check_blue
check_blue
Auto Policy approval of policy based on baselines
check_blue
Data Protection and Governance
check_blue
Anomaly detection based on ML
check_blue
Full GitOps workflow integration and automation
check_blue
Multi-tenant, multi-cluster management
check_blue
Integrations with cloud watch, Splunk enterprise, JIRA, ELK and more.
check_blue

Integrations

AccuKnox supports integration with a number of 3rd party platforms:

SIEM - Splunk, Elastic

SOAR - Phantom, Demisto

CI/CD - Jenkins/Cloudbees, CircleCI, Weave.works