Start Making Meaningful Security Improvements
Traditional DAST creates more issues to development teams than it finds. NightVision is a Web and API Security Testing Platform that gives teams a tangible increase in ROI.
Comprehensive Scans
Thoroughly scan apps on public AND private networks for full coverage
Run meticulous and comprehensive scans within 3-8 minutes and share insightful results throughout the organization.
Fast High-Quality Results
Unbelievably fast scans integrated directly into your CI/CD
Get websites and APIs thoroughly scanned with far fewer false positives as compared to alternative DAST and SAST products.
Modern Gray Box Testing
Emulate attacks and pinpoint vulnerabilities at the line of code
Locate vulnerabilities at the origin with the exact line of code highlighted. Get a perspective on your application the way attackers would.
Built to efficiently align security and developers
Security and development teams can finally work together in removing vulnerabilities before they hit production. Instead of spending time setting up and babysitting a DAST scan, only to generate false positives for developers to deal with, NightVision makes scanning streamlined and simple.
Speed Without The Sacrifice
NightVision takes <1 min to set up. Developers can start and run scans by themselves, easily and quickly. Security Engineers can use their time more productively.
Comprehensive and Reliable
Know your websites and APIs are thoroughly examined. NightVision covers more territory than any DAST product, including undocumented APIs through modern greybox crawling.
Purpose-Built for Developer Workflows
NightVision can be embedded directly within the developers' normal CI/CD workflows. New issues found on PRs or on local instances help for easier and quicker remediation before deployment to production.
Evidence-Based for Fewer False Positives
Identifiable issues in code means that NightVision provides users with the exact place to remediate. Evidence means validated vulnerabilities.
Run complex, full coverage scans at scale.
Coverage is everything. NightVision is architected for security engineers to confidently scan their entire environment. Private applications. Public facing assets. API endpoints, documented and undocumented.
Our tests show a 200%+ higher coverage than our closest automated competitor.
See what others don't: undocumented APIs, private apps, etc.
NightVision scans take 15 minutes or less.


Remediate validated issues at the root.
NightVision identifies issues at the exact line(s) of code so developers don't have to spend time chasing down or validating vulnerability reports, saving you money and precious engineering resources.
Instant remediation support with AI powered explanations.
Pinpoint the vulnerable lines of code on every pull request.
Integrate DAST earlier in the software development lifecycle, because now you can!
Our team
Meet the brains behind the cutting edge innovation

Founded two tech companies that sold to Gerber Scientific and CBS. Equity Portfolio Manager at the Royal Bank of Canada. Graduated Yale University.

Former Lead Security Engineer positions at Square, Salesforce, and Synopsys. Creator of several open source security tools with millions of downloads.

Held Treasurer, IR, and/or CFO roles at eBay, PayPal, Cisco, Box, Sara Lee, and Smartsheet. Board experience includes NerdWallet, Klaviyo, Auth0, Riskified, Wyze Labs, & NightVision.

Over two decades of experience in software security and advising successful startups. Currently an advisor to CISOs within the financial space, and a fractional CTO to security startups.
-modified%20(1).jpeg)
Didi is labeled 'the best networker in Cybersecurity' Didi brings over 25 years of experience in building early-stage and hyper-scaled businesses, including 13 M&A and 3 post-merger integration teams (NYSE: ARW) and one IPO (NASDAQ: FEYE).

Managing Director, Payments Technology at JPMorgan, which includes management of Modern DevOps teams and their code development and tools.

With over 40 years of experience as a CPA. Kathy started and sold businesses in multiple states, including one sold to Sanofi.

AWS Serverless Hero. Industry-leading expert in AWS, serverless, and cloud security with over a decade of experience.

Engineering leader with over 20 years of experience at large-sized enterprises and startups. Demonstrated success in leading teams to develop large-scale, high-performance SaaS products.

Lewis is an industry-leading expert in application security. He is a staff security researcher at R2C and is an expert in both DAST and SAST.

Dynamic Whitebox Application Testing
NightVision powers up your team's scanning by infusing static analysis into its testing. Unlike traditional scanning, NightVision's smart auto documentation means undocumented APIs don't get missed.
Tie findings back to exploitability for higher signal.
Trace vulnerabilities back to code for faster remediation.
Auto-generate Swagger documentation of API endpoints.
Greatly reduce your cybersecurity spend.
NightVision offers a high return on security investment. Developers and security teams save hours of time, allowing both departments to earn back precious engineering resources.
