Company attributes
Other attributes
Noname Security is a developer of an agentless API security platform intended to help enterprises see and secure their managed and unmanaged APIs. The company protects APIs in real time and detects vulnerabilities and misconfigurations before they are exploited; the security platform is an out-of-band solution that doesn't require agents or network modifications and offers deeper visibility and security than API gateways, load balancers, and WAFs. The platform works to protect against data leakage, authorization issues, abuse, misuse, and data corruption.
Noname Security was founded by Oz Golan and Shay Levi. The two developed the API Security Platform before establishing the legal identity of the company, and the Noname name came from their inability to come up with a name before filling out the documents for the company.
Noname Security works to protect APIs in real time and works to detect vulnerabilities and misconfigurations in the API or its integration before these can be exploited. The API Security Platform does not require agents or network modifications to make it easier for the end user, while working to offer better visibility and security than API gateways, load balancers, and WAFs.
The platform works to find and inventory every kind of API an organization uses, including HTTP, RESTful, GraphQL, SOAP, XML-RPC, and gRPC, while also working to discover an organization's legacy and rogue APIs, as well as catalogue API data and metadata. This is to reduce the possible amount of possible vulnerabilities coming from an organization's integrations.
Noname trains a machine learning model for each API, based on real usage and working to leverage unsupervised learning techniques. Where labeled datasets do not exist, this unsupervised learning model works to fill the gaps in the domain knowledge by teaching themselves to classify the data. This is used to create the inventory of active APIs and to perform an analysis of the traffic passing through them.
In the case of an attack, the platform works to prevent those attacks in real time, to fix any misconfigurations, and to automatically update firewall rules and create new policies against suspicious behavior while integrating with existing workflows. As well, the platform offers user customizability to allow the users to increase or decrease the platform's sensitivity to different categories and vulnerabilities. Noname also offers testing of APIs before deployment for its customers, in order to prevent vulnerabilities from going into production.
The API security platform is used by companies including Modusbox, dgdean, Saturn, ABIRA, AWS, Adobe, Google Cloud, Evotek, MS3, Opus, Axway, Enclave, Infinite, Bits in Glass, Presidio, Green Irony, Sinnot Wolach Technology Group, MuleSoft, and Trace3.
