Search

Technical Cyber Security Rating

The Most Comprehensive and Accurate Technical Intelligence.

The Black Kite Technical Rating provides easy-to-understand letter grades and defensible data details behind 20 risk categories. The non-intrusive report passively evaluates third parties, and does not touch an organization’s systems or network assets.

Free Cyber Rating

Easy-to-Understand Letter GradesCalculated by Defensible Data

Black Kite follows and applies commonly-used frameworks developed by the MITRE Corporation for scoring software weaknesses in a consistent, flexible, and transparent manner, converting highly technical terms into simple letter grades.

C+
1X A
3X B
5X C
7X D
8X F
8X more likely to be breached
technical score categories

Vulnerability Prioritization

Black Kite provides a graphical distribution in the form of a heat map to determine the status and severity of each finding. Our platform leverages MITRE and NIST to further confirm the criticality of each threat.

Powerful Performance behind 20 Categories

The total score is a weighted average of 20 category components, providing unmatched breadth and insight into detected vulnerabilities.

Tap on items to learn more.

With Financial Impact Correlations

Now That I Have the Data – What Do I Do With It? Black Kite’s Strategy Report

black kite strategy report simplified

Black Kite’s Strategy Report shares feedback to help executives to understand their cyber risk posture and scale return on cybersecurity investments. The report provides simple steps to help remediate issues and mitigate cyber risks with suppliers and partners. Helpful One-Pager →

Benefits

Receive simple, outlined steps

Multiple formats available for download (PDF, Excel, etc.)

Prioritize tasks based on critically

Trusted by

BCBS
PNC Bank Logo
fannie mae
Markel
Aqua logo
lpl financial

RECENT UPDATES

Focus Friday: TPRM Insights into Zimbra, Draytek Vigor, Atlassian Jira Data Center, Tornado, and MDaemon Vulnerabilities
Focus Friday: TPRM Insights into Zimbra, Draytek Vigor, Atlassian Jira Data Center, Tornado, and MDaemon Vulnerabilities
Written by: Ferdi Gül This Week’s Emerging Third-Party Risks in Email Infrastructure and Web Frameworks Welcome…
Read More
How to Implement Vulnerability Management in TPRM
How to Implement Vulnerability Management in TPRM
Written by: Ferhat Dikbiyik, Chief Research & Intelligence Officer With over 40,000 vulnerabilities disclosed …
Read More
FOCUS FRIDAY: TPRM Insights on Ivanti EPMM and SAP NetWeaver Vulnerabilities – Ongoing Threat Actor/Ransomware Groups Activity
FOCUS FRIDAY: TPRM Insights on Ivanti EPMM and SAP NetWeaver Vulnerabilities – Ongoing Threat Actor/Ransomware Groups Activity
Written by: Ferdi Gül Welcome to this week’s Focus Friday, where we delve into high-profile incidents from a Third…
Read More
Why Counting CVEs Misses the Real Third-Party Risk
Why Counting CVEs Misses the Real Third-Party Risk
Written by: Dr. Ferhat Dikbiyik, Chief Research & Intelligence Officer “What percentage of CVEs do you cover?”…
Read More
Focus Friday: TPRM Insights Into SysAid, ActiveMQ, Webmin, and Couchbase Server Vulnerabilities
Focus Friday: TPRM Insights Into SysAid, ActiveMQ, Webmin, and Couchbase Server Vulnerabilities
Written by: Ferdi Gül This week’s Focus Friday highlights four high-priority vulnerabilities affecting widely used…
Read More

Ready to get started?