Scribe Security
Stage
Seed VC | AliveTotal Raised
$7MLast Raised
$7M | 7 mos agoAbout Scribe Security
Scribe Security provides transparency over the entire software development lifecycle in order to combat software supply chain attacks as cybercriminals exploit open source vulnerabilities and code integrity issues to distribute malware or backdoor entry points to enterprise technology. The company enables users to develop, distribute, and maintain code while also testing code authenticity and integrity.
Scribe Security Headquarter Location
Carlebach St 1
Tel Aviv, 6527713,
Israel
Scribe Security's Product Videos
Scribe Security's Products & Differentiation
See Scribe Security's products and how their products differentiate from alternatives and competitors
Scribe SaaS platform
SCRIBE is an advanced SaaS platform with a developer-first 'Shift Left' approach. It equips organizations to secure their software through continuous code assurance across any supply chain and throughout its entire life cycle, from SW components to updates and major feature releases, providing a revolutionary solution to the challenging supply chain assurance problem. SCRIBE's sensors are deployed throughout the software’s path from open-source repositories through development environments (SCM, CI/CD) and production. These sensors collect signed evidence of code components, artifacts, and processes (AKA Attestations). SCRIBE's rule engines run on these attestations and testify to the software bill of materials, integrity, provenance, vulnerabilities, development policy and compliance - everything required to trust the code that
Differentiation
Visibility, Integrity, Provenance, Governance, Compliance
Research containing Scribe Security
Get data-driven expert analysis from the CB Insights Intelligence Unit.
CB Insights Intelligence Analysts have mentioned Scribe Security in 1 CB Insights research brief, most recently on Jan 31, 2022.
Expert Collections containing Scribe Security
Expert Collections are analyst-curated lists that highlight the companies you need to know in the most important technology spaces.
Scribe Security is included in 1 Expert Collection, including Cybersecurity.
Cybersecurity
4,937 items
Latest Scribe Security News
Jul 15, 2022
Share Scribe Security, a leading software supply chain security solutions provider, announced the release of Scribe Integrity, a code integrity validator that authenticates open-source and proprietary source code, and an integral building block of its platform solving the software supply chain security challenge. Scribe Integrity provides developers with an added layer of visibility, allowing developers peace of mind that the code they are using is safe. Scribe is simultaneously introducing its open-source Github security project, GitGat. In 2021, software supply chain (SSC) attacks more than tripled, with recent attacks on SolarWinds, CodeCov, and Log4Shell underscoring the growing risk of such attacks to enterprises. DevSecOps and security teams often focus on software vulnerabilities, overlooking the risk of tampering with software in the build process. Scribe bridges this gap in a practical manner by providing a convenient work tool that automatically reports integrity validation within a trusted software bill of materials SBOM. Scribe leverages the principle of ‘hash everything, sign everything’, utilizing open-source intelligence that it collects on open-source dependencies. In this first release, Scribe’s solution addresses the widely used Node.js and the popular npm package manager, which have recently suffered from a multitude of attacks. Related Posts Scribe’s additional release, GitGat, is a Policy-as-Code tool, utilizing Open Policy Agent (OPA), an open source project, that addresses users’ security posture. GitGat allows users to periodically run reports to gain insight into the changing security landscape of the organization. As GitGat evolves, it will cover more parts of the CI/CD toolchains. “As software supply chains are an overlooked corner of the cyber world, they have become an increasingly attractive attack vector for hackers,” said Scribe CEO and Co-founder, Rubi Arbel . “We are excited to be introducing a developer-first, practical tool that will give DevSecOps and security practitioners the assurance they need to trust the software they build and use.”
Scribe Security Web Traffic
Scribe Security Rank
Where is Scribe Security's headquarters?
Scribe Security's headquarters is located at Carlebach St 1, Tel Aviv.
What is Scribe Security's latest funding round?
Scribe Security's latest funding round is Seed VC.
How much did Scribe Security raise?
Scribe Security raised a total of $7M.
Who are the investors of Scribe Security?
Investors of Scribe Security include Elron Ventures, TAL Ventures and YYM Ventures.
Who are Scribe Security's competitors?
Competitors of Scribe Security include Lacework, CodeNotary, Sysdig, Fairwinds, Argon and 8 more.
What products does Scribe Security offer?
Scribe Security's products include Scribe SaaS platform.
You May Also Like
Aqua Security enables enterprises to secure their virtual container environments from development to production, accelerating container adoption and bridging the gap between DevOps and IT security. Aqua's Container Security Platform provides full visibility into container activity, allowing organizations to detect and prevent suspicious activity and attacks in real time. Integrated with container lifecycle and orchestration tools, the Aqua platform provides transparent, automated security while helping to enforce policy and simplify regulatory compliance.
Salt Security is an API security platform that prevents zero-day API breaches. Salt detects attack attempts before other solutions alarms are tripped.
Lacework is a late-stage technology firm that develops a complete security platform for the entire IT infrastructure, from DevOps and orchestration environments to cloud and hybrid workloads. Lacework is designed to self-adapt to the cloud's ever-changing configurations to provide visibility and intrusion detection that helps enterprises keep their data and resources safe. The firm serves a wide variety of industries that require intrusion detection. Lacework was founded in 2015 and is based in San Jose, California.
Sysdig provides an intelligence platform to deliver monitoring, security, and troubleshooting in a microservices-friendly architecture used by a community of developers, administrators, and other IT professionals looking for visibility into systems and containers.
Uptycs develops a fast way to deploy osquery at scale. The company provides a cloud solution for system management, anomaly detection, and incident response using a robust analytics platform and out-of-the-box integration with threat intelligence.
Wiz operates as a cloud security company that allows companies to secure their cloud infrastructure at scale. Wiz delivers a contextual risk assessment of a client's cloud with the aims of enabling a reduction in security alerts, a clear action plan, and cloud hygiene at scale.
Discover the right solution for your team
The CB Insights tech market intelligence platform analyzes millions of data points on vendors, products, partnerships, and patents to help your team find their next technology solution.