A single, cloud-native platform for workload compliance and security across the entire infrastructure stack, throughout the application lifecycle.
Cloud Posture Management
Identification of changes made to cloud configuration through service provider APIs, including host instances, security groups, IAM policy, and access keys.
Build-time and runtime application security, including developer feedback and live attack detection and blocking.
Real-time, continuous monitoring and protection for Linux and Windows virtual machine workloads.
RESTful APIs and built-in integrations that leverage existing incident response, investigation, and analytics tools.
Container & Kubernetes Security
Detection of risky behaviors, active threats, and configuration issues for containers, container orchestration, and managed container services.
Extend your team’s security expertise and resources with the Threat Stack Cloud SecOps Program℠.
Threat Stack Oversight℠
Reduce mean-time-to-respond with 24/7 monitoring and alert escalation from the Threat Stack Security Operations Center.
Threat Stack Insight℠
Improve your cloud security posture with deep security analytics and a dedicated team of Threat Stack experts who will help you set and achieve your security goals.
Follow along as the Threat Stack Security Team shows how a malicious actor leverages the unique characteristics of the public cloud to launch their attack.
See inside an active cryptomining malware campaign as Threat Stack’s Security Operations Center (SOC) details a recently discovered variant of the Shellbot malware.
Threat Stack offers unique solution packages to meet your cloud security goals.
Trade Up Program
Trade in any competitive solution and receive an invoice credit for current contract towards a Threat Stack plan, a dedicated on-boarding team, and customer service manager.
Compliance for Cloud Workloads
Demonstrate continuous monitoring to auditors with pre-built rulesets and compliance reports that map to major regulatory compliance requirements like PCI-DSS, HIPAA, and SOC 2.
Security for AWS
Integrate Threat Stack with AWS to monitor changes and misconfigurations across multiple accounts and services.
Monitor for anomalous or risky behaviors across host, container, and container orchestration to alert you to signs of compromise.
Detect and remediate vulnerabilities across your infrastructure.
File Integrity Monitoring
Monitor for creates, deletes, opens, and edits to secret files to identify nefarious activity and satisfy compliance requirements.
Correlate security signals across your entire infrastructure stack with flexible built-in integrations, APIs, and data lake integration for SIEM.
Bring Security and DevOps teams together: Deploy in minutes and auto-scale with configuration management tools and Kubernetes to monitor cloud-native resources throughout the build pipeline.
Monitor all of your de-coupled, stateless, polyglot services in a single solution, even when they’re built and deployed in separate pipelines by different teams.
Fargate Security Monitoring
Threat Stack fills the visibility gap for managed container services like AWS Fargate, with process tracking and detailed netflow metadata.
View Resource Center
Cloud security tips, insights, and ideas.
Stay up to date with the latest press releases, news, and events from Threat Stack.
Watch a sophisticated cloud attack and learn the necessary steps to prepare yourself.
Meet the Threat Stack leadership team.
Building a great company starts with building a great team.
55 Summer Street
Boston, MA 02110
Hear what our customers explain how Threat Stack has made them more successful and secure.
Become a Threat Stack Partner.
How can we help you?
August 4, 2020
As customers evaluate and design new forms of managed container architectures, Threat Stack will be there to provide a detailed view into running ...
Investigating Kubernetes Attack Scenarios in Threat Stack (part 1)
The Curious Case of the Sunday Morning Alarm: Debugging Disk Performance in the Cloud
Diving Deeper Into Runtimes: Kubernetes, CRI, and Shims
Cloud Security Insights, Thoughts, and Ideas
June 18, 2019
Threat Stack’s Application Security Monitoring
enables cloud security observability across the full stack & full lifecycle in a single ...
June 6, 2019
Q&A With Michael Race, Senior Consultant in Cloud/Infrastructure Security and DevSecOps at Stott and May
Hiring and retaining talent in ...
June 4, 2019
In May 2018, the General Data Protection Regulation became enforceable. While it is largely a European Union regulation, you are still covered by it ...
May 30, 2019
10 Testing Pros Share Insights Into the Most Interesting Current Trends in Automated Software Testing
Whether you're just getting started in ...
May 23, 2019
Here at Threat Stack, we’ve been talking a lot about security observability recently (check out this article and whitepaper). When you design and ...
May 22, 2019
Continuous integration (CI) tools are the engine that drives today's SaaS software development strategy across all business, corporate, consumer, and ...
May 21, 2019
— by Lindsey Ullian, Threat Stack Compliance Manager
Colorado has rightfully gained a reputation as one of the most socially ...
May 17, 2019
Earlier this week a group of security researchers from Graz University of Technology, imec-DistriNet, KU Leuven, Worcester Polytechnic Institute, and ...
May 15, 2019
Update: Threat Stack Presents Threat Briefing
On New Cryptomining Shellbot Malware Variant
Available: On demand
About This Threat ...
May 7, 2019
Security Observability has become an important concept recently as companies have started building software with a cloud-native mindset, embracing ...
May 2, 2019
Modern healthcare is a full participant in the digital economy, and personal health information (PHI) is at its center. But today’s digital ...
April 25, 2019
The Health Insurance Portability and Accountability Act, or HIPAA, is a United States law that seeks to protect the privacy of patients’ medical ...
April 18, 2019
Kubernetes is a multi-functional, container-centric platform for managing workloads and services. Given the fact that containers and container ...
April 10, 2019
When Threat Stack security analyst Ethan Hansen saw an alert in a customer’s environment that read /temp [RANDOM] cnrig, he knew his afternoon was ...
March 28, 2019
In February 2019, Threat Stack hosted a meetup with the Boston chapter of Operation Code. Operation Code is a 501(c)(3) non-profit intensely focused ...
March 26, 2019
— by Lindsey Ullian, Threat Stack Compliance Manager
After GDPR went into effect in May 2018, many companies reassessed their ...
March 21, 2019
The lack of a common framework for assessing Cloud Service Providers (CSPs) combined with the fact that no two CSPs are the same can complicate the ...
Miguel De Los Santos
March 19, 2019
Containers provide very important functionality: They package various software applications in “containers” to ensure that they are able to run ...
March 14, 2019
You probably know AWS as the leading cloud platform provider. These days, however, many companies are using additional cloud providers as well. ...
March 12, 2019
More often than not we'll need to go beyond a Severity 1 alert to figure out what a user (including a potentially malicious attacker) was doing on a ...
March 7, 2019
In this post we’ll try to develop an understanding of a typical attacker’s mindset and then show you how companies like yours can use this ...