Top 25 Breach and Attack Simulation (BAS) Software SaaS Companies in May 2026

Paris, France

Yogosha is a french bug bounty platform.

Sunnyvale, California, United States

Provider of a cyber-security platform intended to stimulate hacks on companies' systems to help them identify holes. The company's platform constantly runs breach simulations such as brute force and exploits malware on a client's network to theoretically and proactively locate and remediate security issues, enabling users to analyze the impact of attacks on a company's systems and the efficacy of its defenses.

Asnieres-sur-seine, France

Filigran provides open-source cybersecurity solutions covering threat intelligence management, breach and attack simulation, and cyber risk management.

New York, New York, United States

Built by industry leaders, BreachLock enables you to find and fix your next Cyber Breach before it happens.

London, England, United Kingdom

Provider of a cloud-based security monitoring platform intended to secure internet-facing infrastructure. The company's security monitoring platform focuses on vulnerabilities and prioritizing the most critical threats by breaching the systems, enabling clients to identify loopholes in network security and improve its vulnerability before hackers expose them.

Norfolk, Virginia, United States

cyber security training and exercises

Herndon, Virginia, United States

LetsDefend is a hands-on Blue Team training platform that enables people to gain practical experience by investigating real cyber attacks inside a simulated SOC.

Atlanta, Georgia, United States

Developer of an automated platform intended to address the challenges of email phishing. The company's platform uses a combination of machine learning and human intelligence to offer phishing simulation training, detection, incidence responses and automated intelligence sharing, enabling organizations to protect themselves from the threat of phishing and make emails secure.