Good security finds problems fast but great security makes problems disappear. Data Theorem strives to make great products that automate the most challenging areas of modern application security.

Data Theorem Products

There are five distinct products today that can be licensed separately or purchased as part of a suite to help discover and inspect your modern APIs, secure and track your mobile apps, and protect your brand from fraud and misuse.

App Secure

A continuous automated security service that finds vulnerabilities and data privacy issues within mobile (iOS and Android) applications.

App Search

An easy-to-use search tool with an automated app tracking service that can find, analyze, and alert on over 5 million published apps across the Apple and Google app stores.

API Inspect

An automated continuous security service that finds authentication and encryption vulnerabilities in Internet-facing APIs based on their definitions and API specification.

API Discover

An automated continuous discovery service that finds new APIs, changes to known APIs, and related cloud services within customers’ public cloud infrastructure environment.

Brand Protect

An automated crawler service that finds unauthorized, fraudulent, and/or maliciously cloned mobile applications published to third-party app stores.

Data Theorem Technology

The core technology of Data Theorem is its Analyzer Engine. To strengthen data privacy, mobile app developers utilize one of the most popular open source SDKs called TrustKit built by Data Theorem. Our technology ecosystem with interoperability partners continues to grow so security is an automated standard for any DevOps process.

Analyzer Engine

Analyzer Engine is the “crown jewel” of Data Theorem’s proprietary technology that powers the majority of the product portfolio including App Secure, App Search, API Discover, API Inspect, and Brand Protect. The ability to automate and scale API and mobile application dynamic run-time analysis, verification, ratings, and secure code recommendations comes out of this engine. Thousands of hours of software development and millions of dollars of research have been invested into building this engine and it continues to improve daily.


TrustKit is a free open-source software development kit (SDK) and the industry’s first solution to significantly ease the equipping of mobile applications with SSL pinning, enabling them to encrypt all communications, actively stop eavesdropping and block SSL man-in-the-middle (MiTM) attacks. In addition to the SDK, Data Theorem also provides a free (non-open-source) analytics dashboard for every application that uses the TrustKit SDK.

To learn more, please visit us at

Technology Ecosystem

Technology integrations come in 3 flavors for Data Theorem’s platform:

  • SSO authentication e.g. SAML/ActiveDirectory, Google, One-Time Passwords
  • Build systems within a customers CI/CD pipeline (e.g. Jenkins)
  • Ticketing or bug tracking system within a customers CI/CD pipeline (e.g. JIRA)

Securing Mobile Healthcare Apps

Data Theorem helped Wildflower identify and close 73 security issues and remove 11 harmful third-party libraries, all before releasing them to the public app stores.