Know your cyber risk in dollars.

Say hello to the first warranty-backed cyber loss protection.

Request a demo See the platform

The FIRE list

The only CVEs that have actually cost money

Financial Risk Exposures
0
unique FIREs
Impacting 0 assets
Affected assets
0
assets
Out of 0 total assets
Financial risk
$0.00M
-$0.00M since last month

What is a FIRE? (Financial Risk Exposure)

Real, documented loss

A FIRE is a CVE that has caused a real financial loss at a real organisation.

Built from real-world evidence

We built the FIRE list by digging through insurance claims, DFIR forensic records, reinsurer tables and public disclosures.

Proven by real financial loss

If a CVE is on this list, someone lost money due to it. If it's not, no one ever has.

Other EASM tools ask what you own.

Evidence already knows.

With pre-built EASM, Evidence can show your entire exposed attack surface in seconds.

See Evidence Surface →

How much financial risk has your security program eliminated this year?

Evidence can tell you.

Retired risk
$0.00M

When your team fights FIREs and wins, the risk (in dollars) is added to your "risk retired" number.

Come to your next board meeting

with numbers your CFO will understand.

See Evidence Scan →

up to $5M warranty

Evidence is the first vuln management cybersecurity company to put its money where its mouth is.

We'll bet $5M we know which CVEs cause financial loss.

No other EASM or VM vendor on the market offers a warranty against financial losses. Evidence does: if you lose money due to a CVE that isn't on our FIRE list, we'll pay you up to $5M in compensation.

Learn about Evidence Warranty

You get warranty-backed protection.

Warranty
$5M
1/4 inventories covered

Your team gets a list they can actually finish fixing.

Financial Risk Exposures
9
unique FIREs
Affecting 74 assets

Your board gets answers in dollars.

Retired risk
$9.47M
In the last 90 days

AI (like Mythos) will surface tens of thousands of new CVEs. Most will never be exploited.

Most CVEs have never been used in a real attack. Faster discovery won't change that.

Evidence tracks the ones that have caused actual losses, backed by a $5M warranty.

See the Evidence Warranty →

Every piece of Evidence is a first.

Evidence Graph

First complete map of the public internet, with 6B+ entities and 12B+ relationships indexed.

Evidence Surface

First pre-built EASM, delivering precision asset discovery in seconds.

Evidence Scan

First vulnerability scanner built on real financial loss data.

Evidence Reporting

First security reports that measure financial impact in dollars for your board.

Evidence Warranty

First warranty in vulnerability management, with coverage up to $5 million.

Who needs Evidence?

Enterprise

Stop the breaches that cost money. Prove to your board you did it. Carry $5M in warranty coverage while you do.

For enterprise →

Insurance carriers

See every policyholder's real external footprint and monitor it daily against the CVEs that have actually caused losses across your industry.

For carriers →

MSSPs and MDRs

Clients leave when they get breached or can't see what they're paying for. Evidence handles both: stop the breaches that cost money and prove your value in dollars.

For MSSPs →

Your teams can fight FIREs and win.

Most first scans turn up single-digit FIREs. Zero is within reach, and we track your streak once you get there.

Imagine telling the board:

"We've fixed every vulnerability that has historically caused financial loss. If we're breached, it would be a first-of-its-kind event."

With Evidence, you can say that and back it with a $5M warranty.

We kept asking why no one had built this.
So we built it.

Evidence was founded by people who've been building security companies together for over two decades.

Jeremiah Grossman

Jeremiah Grossman

Hacked Yahoo as a teenager, founded WhiteHat Security, and has been arguing that vendors should warranty their products since 2014.

Robert Hansen

Robert Hansen

Built the anti-fraud systems at eBay that ended up in every major browser, then spent a career breaking into banks and inventing attack techniques.

Lex Arquette

Lex Arquette

Co-founded WhiteHat and Bit Discovery, and built Facebook's homepage and the growth systems that onboarded their first billion users.

Heather Konold

Heather Konold

Scaled operations and led M&A at WhiteHat and Bit Discovery.

Their last company was acquired by Tenable. That's when they started asking the question that became Evidence: which vulnerabilities actually cost money?

Meet the team →

Surface your cyber risk in dollars.

Run Evidence against your domain. We'll show you what's exposed, what's vulnerable, and what it could cost you.

Request a demo