Escape
Escape, formerly known as Escape - GraphQL Security and Escape - Modern Application Security, is a B2B security company specializing in API security with agentless scanning for GraphQL and REST implementations. Based in Paris and San Francisco, the company serves a global clientele with a focus on compliance and developer-friendly solutions.
Overview of Escape
Escape is a B2B company focused on security, specifically within the sub-industry of API security. Based in Paris, Île-de-France, France, and San Francisco, CA, USA, the company is part of the Y-Combinator W23 batch. Escape offers a unique approach to API security through agentless scanning and supports both GraphQL and REST implementations out of the box. The company ensures compliance with industry standards such as OWASP API Security Top 10, HIPAA, GDPR, and PCI DSS.
Services
Escape provides a range of services centered around API security, including agentless scanning that supports all GraphQL and REST implementations without causing downtime. The company's services include contextual remediation guidance to help developers quickly fix vulnerabilities, seamless integration of security scanning into CI/CD systems like Github Actions and Gitlab CIs, and bi-directional sharing of security findings across the API security ecosystem. Additional services include sensitive data detection, compliance reporting features, and support for custom security rules and payloads.
Locations and Operations
Escape operates from two primary locations: Paris, Île-de-France, France, and San Francisco, CA, USA. The company serves various regions including France, the United States, Europe, America / Canada, and offers partly remote and fully remote work options. By having multiple locations and operational flexibility, Escape cater to a diverse market while offering robust support to their clients.
Technology Integration
Escape allows for seamless integration of its security scanning services into popular CI/CD systems such as Github Actions and Gitlab CIs. The company supports advanced configuration options, extensive alerting, and integration examples. These integrations facilitate bi-directional sharing of security findings, helping organizations maintain a consistent and thorough API security posture.
Compliance and Standards
Escape helps businesses ensure compliance with a variety of industry standards, including OWASP API Security Top 10, HIPAA, GDPR, and PCI DSS. The company's Read-Only mode is safe for production environments, providing sensitive data detection and compliance reporting features. By adhering to these standards, Escape assists organizations in maintaining regulatory compliance and safeguarding sensitive information.