~ / directory / token-security
TS
Mixed · Identity & AppSec · reviewed 2026-04

Token Security

Non-human identity security — discover, prioritise, and remediate machine identity risks.

Visit token.security
01

What it does

A non-human identity (NHI) security platform. Discovers, prioritises, and remediates risks from machine identities: API keys, service accounts, tokens, and AI agent identities. Provides lifecycle management specifically for non-human identities across enterprise infrastructure.

02

Security relevance

Non-human identities outnumber human identities 50:1 in enterprises, and AI agents amplify this problem dramatically. Token Security provides the visibility and governance layer that traditional IAM tools lack for ephemeral, automated, and agent-based identities.

03

When to use it

Deploy when NHI sprawl is an identified risk, particularly as AI agents create new machine identities at scale. Enterprise platform requiring integration with identity providers, cloud platforms, and secrets management infrastructure.

04

OWASP coverage

Risks addressed — mapped to both OWASP Top 10 standards. 1 in LLM, 1 in Agentic.

LLM Top 10 · 2025 · 1/10 covered
01
02
03
04
05
06
07
08
09
10
LLM08 · Vector & Embedding Weaknesses
Agentic Top 10 · 2026 · 1/10 covered
01
02
03
04
05
06
07
08
09
10
ASI03 · Identity & Privilege Abuse
05

The raw record

What Yuntona stores. Single source of truth — fork it on GitHub.

name: Token Security
slug: token-security
type: Mixed
category: Identity & AppSec
url: https://token.security

reviewed:   2026-04
added:      2026-04
updated:    2026-04

risks:
  llm:  [LLM08]
  asi:  [ASI03]

complexity:    Enterprise Only
pricing:       —
audience:      Blue Team
lifecycle:     [monitor]

tags: [Enterprise, Identity, NHI, Platform]