About us

On a mission to deliver zero-noise AppSec to industry-leading teams.

Explore careers

Invicti by the numbers

3600+

Customers

115+

Countries that use Invicti

800k+

Web applications secured

300k+

Unique, severe vulnerabilities found

8

Countries represented on the Invicti team

15

Languages spoken

Propelling the world forward with AppSec innovation

There are billions of web applications, and 96% of them have at least one vulnerability. Invicti delivers the most accurate and efficient DAST solution, along with industry-leading ASPM, for DevOps/DevSecOps teams to discover and secure all the applications that run their organizations.

Know the truth

Security decisions should be driven by proven facts. Our Proof-Based Scanning technology confirms vulnerabilities with 99.98% accuracy, giving teams the confidence to act without wasting time on false alarms. From clear, verified reports to responsive support, our goal is to cut through uncertainty and help customers focus on fixing what really matters.

Leverage the best AppSec technology

Application security is always evolving, and so are we. We invest in innovation, from runtime-first scanning to AI-powered ASPM, so our customers can stay ahead of threats without slowing down development. With a unified platform that brings DAST, SAST, SCA, and API security together, we make it easier for teams to protect applications today while building a foundation for the future.

Unite dev, sec and ops

Modern software moves fast, and security must keep pace. Invicti is built to bridge the gaps between developers, security engineers, and operations teams by integrating directly into the CI/CD pipeline and everyday workflows. By turning security into a shared responsibility rather than a roadblock, we help organizations innovate confidently while maintaining a strong and measurable security posture.

AppSec leaders agree

Invicti is the best way to ship secure applications

Invicti leadership

Ferruh Mavituna

Founder & Strategic Advisor
LinkedIn

Neil Roseman

Chief Executive Officer
LinkedIn

Craig Dynes

Chief Financial Officer
LinkedIn

John Mandel

Chief Engineering Officer
LinkedIn

Mike Mattos

Chief Revenue Officer
LinkedIn

Dan Murphy

Chief Architect
LinkedIn

Karl Gonzi

General Counsel, EMEA General Manager
LinkedIn

Jonny Thompson

Senior Vice President, Global Customer Success
LinkedIn

Kalpana Tummala

Senior Vice President, Product Operations
LinkedIn

Brian Cary

Vice President, FP&A
LinkedIn

Priyank Savla

Vice President, Marketing
LinkedIn

Trae Diede

Vice President, People
LinkedIn

Can Taylan Bilgin

Principal Product Manager
LinkedIn

Cenk Kalpakoglu

Distinguished Software Architect
LinkedIn

Our board of directors

Gerhard Watzinger

Chairman of the Board
LinkedIn

Neil Roseman

Chief Executive Officer
LinkedIn

Scott Collins

Managing Director and COO, Summit Partners
LinkedIn

Sophia Popova

Partner, Summit Partners
LinkedIn

Dominic Ang

Managing Partner, Turn/River Capital
LinkedIn

Joanne Yuan

Partner, Turn/River Capital
LinkedIn
recent news

Making headlines

Invicti acquires Kondukto

Invicti profiled in TAG report

The Invicti rebrand

Our History

2025 & Beyond
Invicti acquires Kondukto
This union creates the industry’s first proof-based ASPM platform, combining verified vulnerability scanning with comprehensive security orchestration to eliminate noise and accelerate remediation
2025
Invicti launches next-gen platform
The Invicti Application Security Platform features AI-powered scanning capabilities, enhanced DAST performance, and full-spectrum visibility into application risk
2024
Invicti adds API Security
Invicti adds API Security with comprehensive API discovery, available in a single web application and API security solution
2024
Invicti introduces Predictive Risk Scoring
Invicti Predictive Risk Scoring applies the power of AI to prioritize which web applications you should scan first
2022
More AppSec tools in one place
What was once a DAST scanner has evolved into an AppSec platform. Now organizations can get the benefits of DAST, IAST, and SCA in one place — with more tools to come.
2021
Invicti adds IAST
Invicti adds IAST, bringing an inside-out view alongside DAST’s outside-in scanning.
2020
500 enterprise customers
Invicti grew fast, adding 350 more enterprise customers in less than 3 years, and showing that scalable application security is possible.
2017
150 enterprise customers
The 150th enterprise joins Invicti to scale its application security.
2015
Invicti goes enterprise
Invicti became the first truly scalable enterprise DAST solution to manage the security of thousands of websites, applications, and APIs.
2014
Hello, HTML5
After 8 years, W3C completed the HTML5 standard, starting the era of mobile and cloud internet applications.
2012
The rise of web apps
In just one year, the number of websites in the world doubled from 350M to 700M, making application security all the more critical.
2010
Solving the false positive problem
Invicti became the first application security testing solution with Proof-Based Scanning: technology that automatically verifies vulnerabilities to save teams hours of manual verification.
2005
The beginning
Back when the world had only 50M websites, we built our first application security testing solution to help organizations meet the emerging web application security threat.
PREV
NEXT

Our mission is global and so is our team

Read DEIB report
Explore careers
Future-proof Application security

Explore the future of AppSec with us

Get a demo