SubImage
Map your cloud and secure everything with open-core infrastructure visibility.

SubImage is a fully managed, open-core cloud security platform that maps an organization's entire cloud, SaaS, and on-premises infrastructure into a queryable graph. It surfaces misconfigurations, access risks, and vulnerabilities with AI-assisted prioritization to help security teams act decisively. Built on Cartography—an open-source project originally developed at Lyft—SubImage offers a polished managed experience without vendor lock-in.
SubImage connects via read-only APIs to cloud providers, SaaS tools, and on-prem systems to build a living graph of all assets and relationships, then uses AI to surface and prioritize actionable security findings.
Security teams at companies running complex cloud and hybrid infrastructure
Background.
- Status
- launched
- Business model
- freemium
Similar projects.
Editorial take on the space this project sits in — momentum signals, adjacent moves, our call on whether the wedge is real. Get pinged when we publish a new read or when the landscape shifts.
Have a take on this space?
Tell us what you’d build differently, where you think the incumbents miss, or what we’ve gotten wrong about this project. Comments + reactions are coming soon.