Ethiack

Last updated: Jun 30, 2026


How does Fluid Attacks' solution compare to Ethiack's?

The following comparison table enables you to discern the performance of both providers across various attributes essential for meeting your company's cybersecurity needs. To better understand each attribute, read their descriptions in the dedicated page.

Organization

AttributeEssentialAdvancedEthiack
FocusNative ASPM with in-house scannersAI-powered PTaaS on top of native ASPM with in-house scannersAI-powered pentesting
ExtrasNoneNoneExternal Attack Surface Management (EASM)
Headcount157Same53
Headcount distributionEngineering 40%, IT 14%, sales 15%, marketing 2%, operations 4% and others 25%SameEngineering 30%, IT 32%, sales 2%, marketing 2%, operations 2% and others 32%
Headcount growth+14%, +15%, -1%Same0%, +13%, +89%
HeadquartersCO and USSamePT
CountriesAR, BO, CA, CL, CO, DO, MX, PA, PE and USSamePT
Reputation9.44 from 228 reviews over 8 years on Gartner and ClutchSame8.56 from 13 reviews over 1 year on G2 and Gartner
Followers22K based on the following: Facebook, Instagram, LinkedIn, X and YouTubeSame10K based on the following: LinkedIn, X and YouTube
Research firmsNoneNoneNone
Founded2001Same2022
FundingBootstrappedSame$4.4M USD in 5 rounds from 11 investors
AcquisitionsNoneNoneNone
Revenue10M to 15MSame1M to 10M
CVEs as CNA Researcher289 CVEs reported to MITRE, ranked in the top 10 CVE labs worldwideSameNot applicable, as it is not a CNA Researcher
ComplianceGDPR, ISO/IEC 27001:2022, ISO/IEC 27017:2015, ISO/IEC 27018:2019, ISO/IEC 27701:2019, PCI DSS, SOC 2 Type II and SOC 3SameISO/IEC 27001
Bug bountyYesYesYes
Visits64K per month. Top 3: 18% CO, 9% US, 5% BR. Others 68%Same28K per month. Top 3: 20% IN, 19% PT and 10% US. Others 51%
Authority33 out of 100Same27 out of 100
Public vulnerability DBDiscovered and third-partySameDiscovered
ContentBlog, documentation, e-books, glossary, reports, success stories, videos, webinars and white papersSameBlog, case studies, documentation, news, reports, research and videos
Comprehensive documentation13 documentation sections, 2 in common and 11 additionalSame4 documentation sections, 2 in common and 2 additional
CommunityForumSameChat(Discord)
Sync training1 workshopSameNo
Async training3 product use courses, all freeSameNo
DistributionDirect or with any of its 14 partnersSameDirect
MarketplacesAWSSameNone
FreemiumNoNoNo
Free trial21-day free trialPoV30-day free trial
DemoYesYesYes
Open demoNoNoNo
PricingContact sales and marketplaceContact salesContact sales and public web
Pricing tiers1 plan1 plan4 plans (Launch, Pro, Premium, Enterprise). First three transparent.
Minimum termMonthlyMonthlyAnnually
Minimum payment periodMonthlyMonthlyAnnually
Minimum capabilitiesASPM, binary SAST, containers, CSPM, DAST, IaC, SAST, SCA and secretsSame plus: AI SAST, API security testing, MAST, PTaaS, RE and SCRDAST and secrets
Minimum scope1 authorSame50 assets
Pricing driversAuthorsSameAssets
Free implementationYesYesNo information available
Free supportYesYesNo information available

Service

AttributeEssentialAdvancedEthiack
PTaaSNoYesMPT and automated AI-PTaaS
Reverse engineeringNoYesNo information available
Secure code reviewNoYesNo information available
PivotingNoYesNo information available
ExploitationNoYesYes
Manual reattacksNot applicableUnlimited reattacksUnlimited retest
Zero-day vulnerabilitiesScanner-based zero-day vulnerability detectionContinuous zero-day vulnerability researchContinuous zero-day vulnerability research powered by AI
SLAAvailabilityAccuracy, availability and responseNo information available
Minimum availability99.95% per yearSameNo information available
After-sale guaranteesNoYesNo
AccreditationsCNA, Penetration Testing by CREST and OpenSSF Gold BadgeSameNone
Pentester certificationsNot applicable202 from 59 different types39 from 26 different types
Type of contractEmployeeSameEmployee or freelance
Endpoint controlNoTotalNo information available
Channel controlNoTotalNo information available
StandardsSome requirements from 67 standards, 3 in common and 64 additionalAll requirements from the same standards6 standards, 3 in common and 3 additional
Detection methodAutomated toolsAI, automated tools and human intelligenceAI, automated tools and human intelligence
Remediation5, 1 in common and 4 additionalSame, plus 11 in common
Output5, 2 in common and 3 additionalSame, plus 23, 2 in common and 1 additional

Product

AttributeEssentialAdvancedEthiack
ASPMYesYesNo
APIGraphQL with JSONSameREST with JSON
IDE5 functionalitiesSame, plus 1 functionalityNo
CLIYesYesYes
CI/CDBreaks the buildSameBreaks the build
Vulnerability sources18 sourcesSameNo information available
Threat model alignmentYesYesNo
Priority criteriaCVSS v4.0, CVSSF, EPSS and KEVSameCVSS, EPSS and KEV
Custom prioritizationPriority scoreSameAsset importance classification
Scanner originIn-houseIn-houseIn-house
SCA19 package managersSameNo
AI securityNoYesNo
Reachability12 languagesSameNo
Reachability typeDeterministicSameNot applicable
SBOM22 package managersSameNo
Malware detectionYesYesNo
Autofix on componentsNoNoNo
Containers4 distributionsSameNo
Source SAST (languages)12SameNo
Source SAST (frameworks)23SameNo
Custom rulesNoNoNo
IaC62No
Binary SAST1 type of binarySame, plus 2 types of binariesNo
DAST7 attack surface typesSameYes. No information available
API security testingNo4 types of APIsYes. No information available
MASTNoYesYes
IASTNoNoNo
CSPMYesYesNo
Secrets90 secrets typesSame, plus verify other attack vectors and secrets exploitabilityYes. No information available
AI4 functions, 2 in common and 2 additionalSame, plus 1 function2 functions, all in common
AI SASTNoYesNo
MCPYesYesNo
Open-sourceNoNoNo
DeploymentSaaS (multi-tenant)SameSaaS (multi-tenant)
RegionsUSSameEU
StatusYesYesYes
Incidents3 per yearSameNo information available

Integrations

AttributeEssentialAdvancedEthiack
SCM6SameNone
Binary repositoriesNoneNoneNone
Ticketing3, 1 in common and 2 additionalSame2, 1 in common and 1 additional
ChatOpsNoneNone2
IDE3SameNone
CI/CD21, 3 in common and 18 additionalSame3, all in common
SCANativeSameNone
ContainerNativeSameNone
SASTNativeSameNone
DASTNativeSameNative
MASTNoneNativeNative
IASTNoneNoneNone
Cloud1 in commonSameNone
CSPMNativeSameNone
SecretsNativeSameNative
RemediationNoneNoneNone
Bug bountyNoneNoneNone
Vulnerability managementNoneNoneNone
ComplianceNoneNoneNone

More like Ethiack

Tags

ai-ptaasapibountycomparectemdasteasmexploitationmastmptptaasrtsecrets

On this page