About Positive Technologies

Company history
PT Products Overview
Company abstract
Case Study—Confide

Positive Technologies: Products and Services

Positive Technologies is a leading global provider of information security solutions. Over 2,300 organizations worldwide use technologies and services developed by our company. Positive Technologies is the first and only company in Russia to go public on the Moscow Exchange (MOEX: POSI).

For 20 years, our mission has been to counter hacker actions before unacceptable damage is done to a business or entire industries.

Our new class of solutions—metaproducts—focuses on the results-oriented approach to cybersecurity. Metaproducts detect and stop attacks in automatic mode with the help of just one person. Positive Technologies’ first metaproduct, MaxPatrol O2, automatically detects and prevents attacks before unacceptable damage is done to the company. MaxPatrol O2 can replace the entire team of a security monitoring center, and it only takes one person to manage it; all in all, this protection system requires minimum knowledge and effort from a specialist.

To demonstrate that the results-oriented approach to information security truly works, we conduct cyberexercises (on our own infrastructure as well as others’) and publicly test our products. Our solutions are based on the research experience and expertise of several hundred information security experts.

Positive Technologies’ products and services help to:

  • Stop attacks in automatic mode with the help of just one person.
  • Monitor security and quickly detect vulnerabilities in infrastructure.
  • Detect security incidents in infrastructures of any scale, including industrial systems.
  • Detect attacks in internal and external traffic.
  • Protect web applications from APT attacks.
  • Detect vulnerabilities and errors in applications and support secure development processes.
  • Detect and counter targeted and mass attacks involving modern malware.
  • Respond to cyberthreats both at endpoints and inside the infrastructure, leveraging events and context from multiple information security systems to verify an attack.

We have seven offices in Russia, including Moscow, St. Petersburg, Nizhny Novgorod, Samara, Novosibirsk, Akademgorodok, and Tomsk, and one office in Kazakhstan (Nur-Sultan). The team has over 1,200 employees, including world-class experts specializing in the protection of SCADA and ERP systems, banks and telecommunications, as well as mobile and web applications.

Positive Technologies is highly rated by international analytical agencies: the company is a three-time recipient of Visionary status in the Gartner Magic Quadrant for Web Application Firewalls (WAF).

Positive Technologies is known globally as a visionary and a leader in the field of ethical security research. On average, our experts identify hundreds of zero-day vulnerabilities in IT systems of various classes and types, including products by Cisco, Citrix, IBM, Intel, Microsoft, and VMware. For detecting dangerous vulnerabilities, these experts have been added to the halls of fame of such companies as Adobe, Apple, AT&T, GitLab, Google, IBM, Mastercard, Microsoft, PayPal, VK, and Yandex. All detected vulnerabilities are reported to software vendors as part of the responsible disclosure policy and are not published until the vendors release the required updates.

We readily share what we know about information security:

  • For 11 years we have been holding our own research and practical forum, Positive Hack Days. As one of the largest information security events in Russia and the CIS, it is attended by thousands of people who care about cybersecurity: IT and infosec experts, business and government representatives, security researchers and white hats, pupils and students. Over Positive Hack Days, hundreds of talks and workshops are held, covering the most interesting topics in information security, while competitions add excitement to analysis of protection of industrial control systems, banking and mobile services, and web apps.
  • Check out the latest information security news on our portal SecurityLab.ru.
  • We actively develop educational programs for leading universities and help prepare students to get a head start in their careers: Positive Education materials written by our company’s experts are used at over 65 universities.
  • We hold the world’s largest cyberbattle, The Standoff, which brings together the best Russian and foreign experts in both offensive and defensive cybersecurity. The cyberrange contains full-fidelity replicas of the production chains, business scenarios, and technology landscape typical of different industries.

Positive Technologies products

MaxPatrol VM Next-generation vulnerability management system.
PT Sandbox Advanced sandbox with customizable virtual environments
MaxPatrol SIEM All-in-One Full-featured SIEM for mid-sized IT infrastructures.
XSpider Vulnerability scanner.
PT Network Attack Discovery NDR system to detect attacks on the perimeter and inside the network.
MaxPatrol SIEM Knows your infrastructure, delivers pinpoint detection.
PT BlackBox Dynamic application security testing tool
MaxPatrol 8 Vulnerability and compliance management system.
PT Application Firewall Intelligent protection of business applications.
PT Application Inspector Source code analysis tool.
PT ISIM Cyberthreat detection and incident response in ICS.
PT MultiScanner Multilayered protection against malware attacks.

Positive Technologies services

Thanks to 20 years of experience in large-scale penetration testing and source code analysis, our experts have enormous experience with vulnerabilities in areas as diverse as telecoms systems, e-banking, ERP, and ICS/SCADA. We know the real-world methods that hackers use, so we can offer the most effective solutions for assessing client security and the most robust protection solutions.

As for providing consulting services, the Positive Technologies group is an expert in information security comprehensive audit, applications and web systems security assessment, incident investigation at critical infrastructures, penetration testing, and deployment of security monitoring processes.

All services

About Positive Technologies

10+ e-banking security audits every year

We find 31,000 vulnerabilities on average in corporate systems

One of the world's largest vulnerability knowledge bases
Our specialists are members of WASC, CIS, CEH, ISACA, OWASP

PT ISIM listed in the Gartner OT Security Market Guide

50 infrastructure hack investigations performed yearly

Three times Visionary in Gartner Magic Quadrant for Web Application Firewalls

20+ pentests per year make our experience one-of-a-kind

200+ types of vulnerabilities identified during pentests every year

We find over 80 zero-days every year

150+ zero-days in SCADA systems identified and responsibly disclosed to manufacturers

Our speakers present at Defcon, Black Hat, CCC, PacSec, CanSecWest, HITB, SAS and others

Our experts perform over 40 security audits of web applications every year

PT Application Firewall and MaxPatrol are Common Criteria conformant

Over 200 security audits of corporate systems performed every year
Non-stop research of both legacy and new technologies

20 years of practical experience on the security market

24x7 client support

100+ e-banking vulnerabilities found every year

We find 800+ vulnerabilities in web applications every year

One of the world's largest security research centers

500+ web and mobile application security audits