# Best Risk-Based Vulnerability Management Software *By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)* Risk-based vulnerability management software is used to identify and prioritize vulnerabilities based on customizable risk factors. These tools are more advanced than traditional vulnerability management solutions, as they assist in the prioritization of issues and execution of remedies based on the results of machine learning algorithms. Companies use risk-based vulnerability management solutions to analyze entire organizations’ IT systems, cloud services, and/or applications and identify priorities. Instead of manually identifying vulnerabilities and remediating them in order of discovery, an organization can automate that process to remediate vulnerabilities impacting critical business components first. From there, they can address issues as the system has ordered by impact and remediation time. Companies can customize these priorities as they see fit by weighing risk factors differently. Risk-based vulnerability management solutions are primarily used by IT professionals and security staff. These teams will integrate system and application information, outline priorities, and analyze assets. Automation within these tools saves significant time; furthermore, addressing critical vulnerabilities first can significantly reduce the likelihood of security incidents, failover, and data loss. There is some overlap between risk-based vulnerability management solutions and [security risk analysis software](https://www.g2.com/categories/security-risk-analysis), but there are a few key differences. Security risk analysis tools provide similar capabilities in identifying vulnerabilities and other security risks. But security risk analysis tools, aside from a few outlier products, will not utilize machine learning and automation to assist in the prioritization and execution of vulnerability remediation. To qualify for inclusion in the Risk-Based Vulnerability Management category, a product must: - Integrate threat intelligence and contextual data for analysis - Analyze applications, networks, and cloud services for vulnerabilities - Utilize risk factors and machine learning to prioritize vulnerabilities ## Top Risk-Based Vulnerability Management Software at a Glance | # | Product | Rating | Best For | What Users Say | |---|---------|--------|----------|----------------| | 1 | [Arctic Wolf](https://www.g2.com/products/arctic-wolf/reviews) | 4.7/5.0 (275 reviews) | 24/7 SOC coverage for under-resourced security teams | "[Arctic Wolf: Amazing Team, Constant Innovation, and Peace of Mind 24x7](https://www.g2.com/survey_responses/arctic-wolf-review-12647394)" | | 2 | [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) | 4.5/5.0 (113 reviews) | Risk-based prioritization with VPR scoring | "[TVM Does What You Need](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561)" | | 3 | [Recorded Future](https://www.g2.com/products/recorded-future/reviews) | 4.6/5.0 (225 reviews) | Vulnerability prioritization with threat exploitation intelligence | "[Real-Time, Actionable Threat Intelligence with Seamless Security Tool Compatibility](https://www.g2.com/survey_responses/recorded-future-review-12733983)" | | 4 | [H1 Platform](https://www.g2.com/products/h1-platform/reviews) | 4.5/5.0 (73 reviews) | Continuous bug bounty with triage-first workflows | "[Powerful Bug Bounty Platform with Room for Improvements](https://www.g2.com/survey_responses/h1-platform-review-12784912)" | | 5 | [RiskProfiler - External Threat Exposure Management](https://www.g2.com/products/riskprofiler-external-threat-exposure-management/reviews) | 4.9/5.0 (118 reviews) | Contextual attack path mapping across external surfaces | "[Single Pane of Truth for External Exposure Correlation and Fast Risk Prioritization](https://www.g2.com/survey_responses/riskprofiler-external-threat-exposure-management-review-12394581)" | | 6 | [Cortex Cloud](https://www.g2.com/products/cortex-cloud/reviews) | 4.1/5.0 (114 reviews) | Multi-cloud vulnerability detection with compliance enforcement | "[Cortex Cloud Ends Tool Sprawl with a True Single Pane of Glass](https://www.g2.com/survey_responses/cortex-cloud-review-12972861)" | | 7 | [YesWeHack](https://www.g2.com/products/yeswehack/reviews) | 4.8/5.0 (31 reviews) | Continuous crowdsourced testing with triaged vulnerability validation | "[The experience was satisfactory](https://www.g2.com/survey_responses/yeswehack-review-7640568)" | | 8 | [Pentera](https://www.g2.com/products/pentera/reviews) | 4.5/5.0 (169 reviews) | — | "[Cutting-Edge Security with a Real Attacker Approach](https://www.g2.com/survey_responses/pentera-review-12864952)" | | 9 | [Check Point Exposure Management](https://www.g2.com/products/check-point-exposure-management/reviews) | 4.6/5.0 (169 reviews) | External threat context for vulnerability prioritization | "[Streamlined Threat Intelligence Acquisition](https://www.g2.com/survey_responses/check-point-exposure-management-review-9805489)" | | 10 | [ServiceNow Security Operations](https://www.g2.com/products/servicenow-security-operations/reviews) | 4.4/5.0 (67 reviews) | Vulnerability remediation workflows anchored in ServiceNow CMDB | "[Centralized, Automated Security Workflows with ServiceNow Security Operations](https://www.g2.com/survey_responses/servicenow-security-operations-review-12823627)" | ## How Many Risk-Based Vulnerability Management Software Products Does G2 Track? **Total Products under this Category:** 192 ### Category Stats (Jun 2026) - **Average Rating**: 4.51/5 The average rating of products in this category, based on all submitted ratings - **Top Trending Product**: CybelAngel (+1.46%) - Among all products in this category, CybelAngel recorded the largest rating increase compared to last month *Last updated: June 24, 2026* ## How Does G2 Rank Risk-Based Vulnerability Management Software Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 4,600+ Authentic Reviews - 192+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. ## Which Risk-Based Vulnerability Management Software Is Best for Your Use Case? - **Leader:** [Arctic Wolf](https://www.g2.com/products/arctic-wolf/reviews) - **Highest Performer:** [RiskProfiler - External Threat Exposure Management](https://www.g2.com/products/riskprofiler-external-threat-exposure-management/reviews) - **Easiest to Use:** [RiskProfiler - External Threat Exposure Management](https://www.g2.com/products/riskprofiler-external-threat-exposure-management/reviews) - **Top Trending:** [Pentera](https://www.g2.com/products/pentera/reviews) - **Best Free Software:** [Cisco Vulnerability Management (formerly Kenna.VM)](https://www.g2.com/products/cisco-vulnerability-management-formerly-kenna-vm/reviews) --- **Sponsored** ### Remedio The leading platform for continuous exposure management, Remedio goes beyond device posture to deliver intelligent, scalable risk elimination across endpoints, applications, and AI systems. Through context-aware monitoring and policy-driven controls, [Remedio](https://www.remedio.io) provides unified visibility and enforcement across Windows, macOS, Linux, servers, cloud environments, and modern application ecosystems. Remedio protects against misconfigurations, unpatched vulnerabilities, risky or unauthorized applications, and emerging AI-driven threats. By correlating configuration, vulnerability, and usage data, it prioritizes real risk and draws a direct path from discovery to remediation – combining automated patching, application control, and continuous policy enforcement. With built-in safeguards and rollback capabilities, Remedio enables aggressive attack surface reduction without disrupting the business, ensuring that every action is safe, auditable, and aligned to operational realities. [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=2246&secure%5Bdisplayable_resource_id%5D=2246&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=page_category&secure%5Bplacement_resource_ids%5D%5B%5D=2246&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=1487222&secure%5Bresource_id%5D=2246&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Frisk-based-vulnerability-management&secure%5Btoken%5D=aee84d5020822a366903891dc0e30565d39d624679cf66c6df5c29dda8c8b6df&secure%5Burl%5D=https%3A%2F%2Fremedio.io%2Fplatform%2F%3Futm_source%3DG2%26utm_medium%3Donline_referral&secure%5Burl_type%5D=custom_url) --- ## What Are the Top-Rated Risk-Based Vulnerability Management Software Products in 2026? ### 1. [Arctic Wolf](https://www.g2.com/products/arctic-wolf/reviews) Arctic Wolf® is the market leader in security operations. Using the cloud-native Arctic Wolf® Platform, we help organizations end cyber risk by providing security operations as a concierge service. Arctic Wolf solutions include Arctic Wolf® Managed Detection and Response (MDR), Managed Risk, and Managed Security Awareness —each delivered by the industry’s original Concierge Security® Team. Highly-trained Concierge Security experts work as an extension of internal teams to provide 24x7 monitoring, detection, and response, as well as ongoing risk management to give organizations the protection, resilience and guidance they need to defend against cyber threats. Visit arcticwolf.com to get the latest industry resources and learn more about our solutions. **Average Rating:** 4.7/5.0 **Total Reviews:** 275 **How Do G2 Users Rate Arctic Wolf?** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.2/10) - **Reporting:** 9.5/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.6/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.6/10 (Category avg: 8.8/10) **Who Is the Company Behind Arctic Wolf?** - **Seller:** [Arctic Wolf Networks](https://www.g2.com/sellers/arctic-wolf-networks) - **Company Website:** https://www.arcticwolf.com - **Year Founded:** 2012 - **HQ Location:** Eden Prairie, MN - **Twitter:** @AWNetworks (4,520 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2760138/ (3,382 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** IT Manager, IT Director - **Top Industries:** Hospital & Health Care, Information Technology and Services - **Company Size:** 71% Mid-Market, 20% Enterprise #### What Are Arctic Wolf's Pros and Cons? **Pros:** - Customer Support (58 reviews) - Threat Detection (47 reviews) - Cybersecurity (28 reviews) - Ease of Use (27 reviews) - Alerts (22 reviews) **Cons:** - Expensive (10 reviews) - False Positives (7 reviews) - Learning Curve (7 reviews) - Cybersecurity Risks (6 reviews) - Dashboard Issues (5 reviews) ### What Do G2 Reviewers Say About Arctic Wolf? *AI-generated summary from verified user reviews* **Pros:** - Users commend the **responsive customer support** of Arctic Wolf, appreciating quick resolutions and expert guidance during incidents. - Users value the **proactive threat detection** of Arctic Wolf, ensuring quick identification and resolution of potential issues. - Users value Arctic Wolf for its **proactive and hands-on cybersecurity support** , providing peace of mind and seamless monitoring. - Users appreciate the **ease of use** of Arctic Wolf, highlighting its user-friendly interface and smooth deployment. - Users appreciate the **fast notification of events** , ensuring timely engagement and effective triaging of security issues. **Cons:** - Users find Arctic Wolf **quite pricey** , wishing the cost was lower for the exceptional service provided. - Users note that **false positives** require time-consuming investigations, but they appreciate the thorough monitoring provided by Arctic Wolf. - Users find the **learning curve steep** , requiring time and IT knowledge for effective use of Arctic Wolf. - Users note the **overwhelming amount of cybersecurity risks** reported, suggesting better consolidation and notification methods for clarity. - Users experience **dashboard issues** with quirks and resolution delays, but updates help improve functionality over time. #### What Are Recent G2 Reviews of Arctic Wolf? **"[Arctic Wolf: Amazing Team, Constant Innovation, and Peace of Mind 24x7](https://www.g2.com/survey_responses/arctic-wolf-review-12647394)"** **Rating:** 5.0/5.0 stars *— Kris I.* [Read full review](https://www.g2.com/survey_responses/arctic-wolf-review-12647394) --- **"[Effortless Log Management and Monitoring with Built-In Parsers](https://www.g2.com/survey_responses/arctic-wolf-review-12190051)"** **Rating:** 4.5/5.0 stars *— Jenine M.* [Read full review](https://www.g2.com/survey_responses/arctic-wolf-review-12190051) --- #### What Are G2 Users Discussing About Arctic Wolf? - [What is CylancePROTECT used for?](https://www.g2.com/discussions/what-is-cylanceprotect-used-for) - 1 comment - [What is CylanceOPTICS used for?](https://www.g2.com/discussions/what-is-cylanceoptics-used-for) - 1 comment - [How much does arctic wolf cost?](https://www.g2.com/discussions/arctic-wolf-how-much-does-arctic-wolf-cost) - 1 comment - [How much does arctic wolf cost?](https://www.g2.com/discussions/how-much-does-arctic-wolf-cost) - [Is Arctic wolf a SIEM?](https://www.g2.com/discussions/is-arctic-wolf-a-siem) - 1 comment ### 2. [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) Tenable Vulnerability Management provides a risk-based approach to identifying, prioritizing, and remediating vulnerabilities across your entire attack surface. Powered by Nessus technology and AI-driven analytics, it goes beyond CVSS scores to assess exploitability, asset criticality, and business impact—so you can focus on what matters most. With continuous visibility, automated scanning, and real-time risk insights, security teams can quickly expose and close critical vulnerabilities before they’re exploited. Advanced asset identification ensures accurate tracking in dynamic environments, while intuitive dashboards, comprehensive reporting, and seamless third-party integrations help streamline workflows. As a cloud-based solution, Tenable Vulnerability Management scales with your organization, empowering security teams to maximize efficiency, reduce risk, and improve resilience against evolving threats. **Average Rating:** 4.5/5.0 **Total Reviews:** 113 **How Do G2 Users Rate Tenable Vulnerability Management?** - **Has the product been a good partner in doing business?:** 8.6/10 (Category avg: 9.2/10) - **Reporting:** 8.1/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.2/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.8/10 (Category avg: 8.8/10) **Who Is the Company Behind Tenable Vulnerability Management?** - **Seller:** [Tenable](https://www.g2.com/sellers/tenable) - **Company Website:** https://www.tenable.com/ - **HQ Location:** Columbia, MD - **Twitter:** @TenableSecurity (87,752 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®) - **Ownership:** NASDAQ: TENB **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 55% Enterprise, 33% Mid-Market #### What Are Tenable Vulnerability Management's Pros and Cons? **Pros:** - Ease of Use (8 reviews) - Scanning Efficiency (8 reviews) - Features (6 reviews) - Automated Scanning (5 reviews) - Vulnerability Identification (5 reviews) **Cons:** - Expensive (4 reviews) - Inadequate Reporting (4 reviews) - Limited Reporting (4 reviews) - Pricing Issues (4 reviews) - Complexity (3 reviews) ### What Do G2 Reviewers Say About Tenable Vulnerability Management? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **user-friendly interface** of Tenable Vulnerability Management, simplifying vulnerability prioritization and action. - Users value the **scanning efficiency** of Tenable Vulnerability Management, praising its speed and comprehensive capabilities for various resources. - Users value the **robust scanning and reporting features** of Tenable Vulnerability Management, enhancing asset organization and visibility. - Users appreciate the **fast and efficient automated scanning** of Tenable Vulnerability Management for diverse resource assessments. - Users value the **Vulnerability Priority Rating** of Tenable, enhancing focus on critical vulnerabilities for effective remediation. **Cons:** - Users feel that the **pricing structure** of Tenable Vulnerability Management poses challenges for organizations with limited budgets. - Users find the **reporting capabilities inadequate** in Tenable Vulnerability Management, limiting their ability to generate detailed insights. - Users find the **reporting capabilities limited** , often requiring external processing for more detailed insights on vulnerabilities. - Users find the **pricing issues** of Tenable Vulnerability Management to be complex and often prohibitive for smaller organizations. - Users find the platform's **complexity** challenging, particularly in report refinement and licensing management. #### What Are Recent G2 Reviews of Tenable Vulnerability Management? **"[TVM Does What You Need](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561)"** **Rating:** 4.5/5.0 stars *— Verified User in Higher Education* [Read full review](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561) --- **"[Outstanding TVM Features and Support, Needs Better Asset Licensing Controls](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-11846361)"** **Rating:** 4.5/5.0 stars *— Joseph R.* [Read full review](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-11846361) --- #### What Are G2 Users Discussing About Tenable Vulnerability Management? - [What is your primary use case for Tenable Vulnerability Management, and how has it impacted your security posture?](https://www.g2.com/discussions/what-is-your-primary-use-case-for-tenable-vulnerability-management-and-how-has-it-impacted-your-security-posture) - 1 comment - [What is Tenable.io used for?](https://www.g2.com/discussions/what-is-tenable-io-used-for) - 1 comment - [How much is tenable io?](https://www.g2.com/discussions/how-much-is-tenable-io) - [How do I link Nessus to tenable io?](https://www.g2.com/discussions/how-do-i-link-nessus-to-tenable-io) - [What is the difference between Nessus and tenable io?](https://www.g2.com/discussions/what-is-the-difference-between-nessus-and-tenable-io) ### 3. [Recorded Future](https://www.g2.com/products/recorded-future/reviews) Recorded Future is the world’s largest threat intelligence company. Recorded Future’s Intelligence Cloud provides end-to-end intelligence across adversaries, infrastructure, and targets. Indexing the internet across the open web, dark web, and technical sources, Recorded Future provides real-time visibility into an expanding attack surface and threat landscape, empowering clients to act with speed and confidence to reduce risk and securely drive business forward. Headquartered in Boston with offices and employees around the world, Recorded Future works with over 1,900 businesses and government organizations across 80 countries to provide real-time, unbiased and actionable intelligence. Learn more at recordedfuture.com. **Average Rating:** 4.6/5.0 **Total Reviews:** 225 **How Do G2 Users Rate Recorded Future?** - **Has the product been a good partner in doing business?:** 9.1/10 (Category avg: 9.2/10) - **Reporting:** 8.4/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.9/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.8/10 (Category avg: 8.8/10) **Who Is the Company Behind Recorded Future?** - **Seller:** [Recorded Future](https://www.g2.com/sellers/recorded-future) - **Company Website:** https://www.recordedfuture.com - **Year Founded:** 2009 - **HQ Location:** Somerville, US - **Twitter:** @RecordedFuture (107,965 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/678036/ (1,150 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Threat Intelligence Analyst, Cyber Threat Intelligence Analyst - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 66% Enterprise, 20% Mid-Market #### What Are Recorded Future's Pros and Cons? **Pros:** - Features (96 reviews) - Threat Intelligence (68 reviews) - Ease of Use (61 reviews) - Innovation (50 reviews) - Customer Support (46 reviews) **Cons:** - Complexity (38 reviews) - Difficult Learning (25 reviews) - Information Overload (24 reviews) - Expensive (21 reviews) - Learning Difficulty (20 reviews) ### What Do G2 Reviewers Say About Recorded Future? *AI-generated summary from verified user reviews* **Pros:** - Users value the **comprehensive threat intelligence features** of Recorded Future, enhancing their security understanding and activities. - Users highlight the **real-time visibility** of Recorded Future's Threat Intelligence, enhancing their ability to monitor and respond to threats. - Users praise the **ease of use** of Recorded Future, finding it intuitive and straightforward for daily tasks. - Users value **innovation in threat intelligence** from Recorded Future, benefiting from comprehensive coverage and advanced AI features. - Users value the **responsive customer support** of Recorded Future, enhancing their experience and maximizing platform capabilities. **Cons:** - Users find the **complexity of the interface** overwhelming, suggesting a need for simplification and better navigation tools. - Users find the **difficult learning curve** of Recorded Future to be overwhelming, requiring significant time to master. - Users find that **information overload** can make navigating Recorded Future challenging and time-consuming to filter through effectively. - Users note that Recorded Future is **quite expensive** , making budgeting challenging for smaller teams and tighter security budgets. - Users find the **learning curve steep** for Recorded Future, making quick adjustments and navigation challenging. #### What Are Recent G2 Reviews of Recorded Future? **"[Recorded Future Delivers Actionable Threat Intelligence and Proactive Alerts](https://www.g2.com/survey_responses/recorded-future-review-12940427)"** **Rating:** 4.5/5.0 stars *— Luciana S.* [Read full review](https://www.g2.com/survey_responses/recorded-future-review-12940427) --- **"[Real-Time, Actionable Threat Intelligence with Seamless Security Tool Compatibility](https://www.g2.com/survey_responses/recorded-future-review-12733983)"** **Rating:** 4.5/5.0 stars *— Nijat I.* [Read full review](https://www.g2.com/survey_responses/recorded-future-review-12733983) --- #### What Are G2 Users Discussing About Recorded Future? - [Is Recorded Future a good company?](https://www.g2.com/discussions/is-recorded-future-a-good-company) - [Is Recorded Future a tip?](https://www.g2.com/discussions/is-recorded-future-a-tip) - 1 comment - [What is Recorded Future tool?](https://www.g2.com/discussions/what-is-recorded-future-tool) - 1 comment - [What do Recorded Future do?](https://www.g2.com/discussions/what-do-recorded-future-do) - 1 comment ### 4. [H1 Platform](https://www.g2.com/products/h1-platform/reviews) HackerOne is a global leader in Continuous Threat Exposure Management (CTEM) and the only solution provider that pairs the simultaneous trust of the Fortune 500 and the world's largest community of security researchers to secure the AI-native enterprise. The H1 Platform unites agentic AI solutions with security researchers ingenuity to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems. Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming, and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, Crypto.com, General Motors, Goldman Sachs, Lufthansa, Uber, UK Ministry of Defence, and the U.S. Department of Defense, trust HackerOne to safeguard their digital ecosystems. HackerOne was recognized in Gartner’s Emerging Tech Impact Radar: AI Cybersecurity Ecosystem report for its leadership in AI Security Testing. **Average Rating:** 4.5/5.0 **Total Reviews:** 73 **How Do G2 Users Rate H1 Platform?** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.2/10) - **Reporting:** 10.0/10 (Category avg: 8.8/10) - **Risk-Prioritization:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind H1 Platform?** - **Seller:** [HackerOne](https://www.g2.com/sellers/hackerone) - **Company Website:** https://hackerone.com - **Year Founded:** 2012 - **HQ Location:** San Francisco, California - **Twitter:** @Hacker0x01 (337,493 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/hackerone/ (6,738 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 42% Enterprise, 41% Mid-Market #### What Are H1 Platform's Pros and Cons? **Pros:** - Ease of Use (19 reviews) - Helpful (12 reviews) - Collaboration (11 reviews) - Security Protection (11 reviews) - Customer Support (10 reviews) **Cons:** - Complexity Issues (5 reviews) - Expensive (5 reviews) - Time Management (5 reviews) - Poor Customer Support (4 reviews) - Poor Interface Design (4 reviews) ### What Do G2 Reviewers Say About H1 Platform? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of HackerOne, facilitating quick setup and efficient bug bounty management. - Users value the **supportive community of ethical hackers** that enhances security and improves overall program effectiveness. - Users appreciate the **effective collaboration** with ethical hackers on HackerOne, enhancing security through community-driven insights. - Users value the **robust security protection** of HackerOne, enhancing vulnerability management through a collaborative ethical hacking community. - Users value the **exceptional customer support** provided by HackerOne, enabling seamless setup and guidance throughout the process. **Cons:** - Users experience **complexity issues** with slow triage, cluttered profiles, and inconsistent adherence to program guidelines. - Users find the **pricing to be a bit on the expensive side** , impacting their budget despite the platform's value. - Users face **time management challenges** with inconsistent triage and issues with hacker conduct impacting overall efficiency. - Users experience **poor customer support** , often facing slow ticket resolutions and unresolved issues during transitions. - Users criticize the **poor interface design** of HackerOne, noting its confusing layout and difficulty in finding reports. #### What Are Recent G2 Reviews of H1 Platform? **"[Straightforward, Practical Vulnerability Management with Clear Visibility](https://www.g2.com/survey_responses/h1-platform-review-12788653)"** **Rating:** 5.0/5.0 stars *— Verified User in Automotive* [Read full review](https://www.g2.com/survey_responses/h1-platform-review-12788653) --- **"[Powerful Bug Bounty Platform with Room for Improvements](https://www.g2.com/survey_responses/h1-platform-review-12784912)"** **Rating:** 4.5/5.0 stars *— Mikhail Y.* [Read full review](https://www.g2.com/survey_responses/h1-platform-review-12784912) --- #### What Are G2 Users Discussing About H1 Platform? - [How many hackers are there in HackerOne?](https://www.g2.com/discussions/how-many-hackers-are-there-in-hackerone) - 2 comments, 1 upvote - [What is managed program in HackerOne?](https://www.g2.com/discussions/what-is-managed-program-in-hackerone) - [How many programs are managed by HackerOne?](https://www.g2.com/discussions/how-many-programs-are-managed-by-hackerone) - [What is the use of HackerOne?](https://www.g2.com/discussions/what-is-the-use-of-hackerone) ### 5. [RiskProfiler - External Threat Exposure Management](https://www.g2.com/products/riskprofiler-external-threat-exposure-management/reviews) RiskProfiler is an advanced cybersecurity platform purpose-built for Continuous Threat Exposure Management (CTEM). It unifies external, cloud, vendor, and brand risk intelligence into a single ecosystem—providing organizations with real-time visibility, contextual threat insights, and actionable remediation guidance. Through its integrated suite, External Attack Surface Managemnet, Third\_party Risk Management, Cloud Attack Surface Management, and Brand Risk Protection; the platform continuously discovers, classifies, and evaluates external-facing assets and risks across the internet, multi-cloud environments, and third-party ecosystems. Powered by AI-enabled risk questionnaires, RiskProfiler automates the exchange, validation, and scoring of security assessments, dramatically accelerating third-party due diligence and compliance validation. The platform’s context-enriched graph engine correlates vulnerabilities, exposures, and configurations with real-world threat data, revealing how attackers might exploit an organization’s digital footprint. Its newly enhanced Cyber Threat Intelligence (CTI) module provides live insights into industry-specific attack trends, threat actor profiles, and evolving TTPs, directly embedded within the dashboard. By analyzing CVEs, IOCs, and exploit patterns, it maps these to relevant assets and potential attack paths, enabling focused, prioritized mitigation. From identifying exposed cloud resources across AWS, Azure, and Google Cloud to uncovering brand impersonation, phishing campaigns, or logo abuse, RiskProfiler delivers unified visibility and continuous monitoring that extends beyond the perimeter. It helps organizations anticipate, contextualize, and neutralize threats before they turn into breaches, transforming exposure management into a truly intelligent, predictive defense capability. **Average Rating:** 4.9/5.0 **Total Reviews:** 118 **How Do G2 Users Rate RiskProfiler - External Threat Exposure Management?** - **Has the product been a good partner in doing business?:** 9.9/10 (Category avg: 9.2/10) - **Reporting:** 9.9/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.9/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.9/10 (Category avg: 8.8/10) **Who Is the Company Behind RiskProfiler - External Threat Exposure Management?** - **Seller:** [Riskprofiler](https://www.g2.com/sellers/riskprofiler) - **Company Website:** https://riskprofiler.io/ - **Year Founded:** 2019 - **HQ Location:** Rock Hill , US - **Twitter:** @riskprofilerio (209 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/riskprofiler (32 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer, Security Consultant - **Top Industries:** Information Technology and Services, Design - **Company Size:** 66% Mid-Market, 33% Small-Business #### What Are RiskProfiler - External Threat Exposure Management's Pros and Cons? **Pros:** - Risk Management (70 reviews) - Features (32 reviews) - Customer Support (31 reviews) - Ease of Use (30 reviews) - Easy Setup (29 reviews) **Cons:** - Learning Curve (17 reviews) - Complexity (16 reviews) - Difficult Learning (16 reviews) - Learning Difficulty (10 reviews) - Complex Setup (8 reviews) ### What Do G2 Reviewers Say About RiskProfiler - External Threat Exposure Management? *AI-generated summary from verified user reviews* **Pros:** - Users value the **multi-dimensional threat intelligence** of RiskProfiler, enhancing security management for external and vendor threats. - Users highlight the **user-friendly dashboards** of RiskProfiler for tracking external threats and enhancing security management. - Users praise the **stellar customer support** of RiskProfiler, noting quick responses and continuous guidance during implementation. - Users value the **ease of use** of RiskProfiler, appreciating its fast onboarding and seamless visibility into threats. - Users value the **easy setup** of RiskProfiler, allowing fast deployment and immediate threat visibility in under an hour. **Cons:** - Users find the platform's **initial learning curve** challenging, particularly for non-technical teams adapting to its complexity. - Users find RiskProfiler's **complexity overwhelming** , especially those with simpler needs, but appreciate the onboarding support. - Users face a **difficult learning curve** with RiskProfiler, requiring time to understand its features and workflows. - Users find the **learning difficulties** challenging initially, but mastering RiskProfiler leads to effective threat management. - Users find the **complex setup** of RiskProfiler challenging, especially for non-specialist teams managing detailed asset discovery. #### What Are Recent G2 Reviews of RiskProfiler - External Threat Exposure Management? **"[Contextual Intelligence That Connects Risk Across the Attack Surface](https://www.g2.com/survey_responses/riskprofiler-external-threat-exposure-management-review-12719957)"** **Rating:** 5.0/5.0 stars *— Verified User in Information Technology and Services* [Read full review](https://www.g2.com/survey_responses/riskprofiler-external-threat-exposure-management-review-12719957) --- **"[Single Pane of Truth for External Exposure Correlation and Fast Risk Prioritization](https://www.g2.com/survey_responses/riskprofiler-external-threat-exposure-management-review-12394581)"** **Rating:** 5.0/5.0 stars *— Verified User in Information Technology and Services* [Read full review](https://www.g2.com/survey_responses/riskprofiler-external-threat-exposure-management-review-12394581) --- ### 6. [Cortex Cloud](https://www.g2.com/products/cortex-cloud/reviews) Cortex Cloud by Palo Alto Networks, the next version of Prisma Cloud, understands a unified security approach is essential for effectively addressing AppSec, CloudSec, and SecOps. Connecting cloud security and SOC workflows enables teams to achieve holistic visibility, trace risk across the lifecycle, and correlate real-time threat activity with development and runtime contexts. Cortex Cloud is a unified platform built on three core pillars: data integration, AI-driven intelligence, and automation. Now you can safeguard applications, data, and infrastructure across multicloud and hybrid environments with a unified data model that consolidates telemetry from code, runtime, identity, and endpoints, all into a single data source. Empower teams with precise, AI-powered insights and 2200+ machine learning models to identify and stop zero-day threats with real-time advanced threat detection and response. And automate with 1000+ prebuilt playbooks across your cloud stack to reduce manual workloads, accelerate remediations, and cut response times tenfold. Cortex Cloud delivers more than tools—it transforms how organizations secure their cloud environments. **Average Rating:** 4.1/5.0 **Total Reviews:** 114 **How Do G2 Users Rate Cortex Cloud?** - **Has the product been a good partner in doing business?:** 8.0/10 (Category avg: 9.2/10) - **Reporting:** 7.8/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 7.5/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.1/10 (Category avg: 8.8/10) **Who Is the Company Behind Cortex Cloud?** - **Seller:** [Palo Alto Networks](https://www.g2.com/sellers/palo-alto-networks) - **Company Website:** https://www.paloaltonetworks.com - **Year Founded:** 2005 - **HQ Location:** Santa Clara, CA - **Twitter:** @PaloAltoNtwks (128,951 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/30086/ (22,313 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 39% Enterprise, 31% Mid-Market #### What Are Cortex Cloud's Pros and Cons? **Pros:** - Ease of Use (49 reviews) - Features (45 reviews) - Security (43 reviews) - Visibility (38 reviews) - Cloud Integration (34 reviews) **Cons:** - Expensive (31 reviews) - Difficult Learning (30 reviews) - Learning Curve (29 reviews) - Pricing Issues (24 reviews) - Complex Setup (21 reviews) ### What Do G2 Reviewers Say About Cortex Cloud? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of Cortex Cloud, enjoying streamlined management and effortless integration with existing systems. - Users value the **reduced complexity and efficiency** of Cortex Cloud, benefiting from streamlined management and robust integrations. - Users value the **comprehensive security features** of Cortex Cloud, especially for cloud-native applications across diverse environments. - Users value the **comprehensive visibility** offered by Cortex Cloud, enhancing efficiency and simplifying service management. - Users appreciate the **seamless cloud integration** of Cortex Cloud, enhancing efficiency and organization in their workflows. **Cons:** - Users find Cortex Cloud to be **expensive** , particularly challenging for smaller teams managing tight budgets. - Users often find the **difficult learning curve** of Cortex Cloud challenging, especially for beginners navigating its features. - Users face a **steep learning curve** with Cortex Cloud due to its unintuitive features and initial setup challenges. - Users find the **pricing issues** of Cortex Cloud challenging, particularly for smaller teams managing costs. - Users find the **complex setup** of Cortex Cloud challenging, especially for newcomers without prior experience. #### What Are Recent G2 Reviews of Cortex Cloud? **"[Cortex Cloud Ends Tool Sprawl with a True Single Pane of Glass](https://www.g2.com/survey_responses/cortex-cloud-review-12972861)"** **Rating:** 4.5/5.0 stars *— Murtuza M.* [Read full review](https://www.g2.com/survey_responses/cortex-cloud-review-12972861) --- **"[Cortex Cloud Unifies Cloud Security with Real-Time Protection and Smart Prioritization](https://www.g2.com/survey_responses/cortex-cloud-review-12997786)"** **Rating:** 4.0/5.0 stars *— Galateya M.* [Read full review](https://www.g2.com/survey_responses/cortex-cloud-review-12997786) --- ### 7. [YesWeHack](https://www.g2.com/products/yeswehack/reviews) YesWeHack is a leading Offensive Security and Exposure Management platform delivering integrated, API-based solutions to secure organisations’ growing attack surfaces. Its human-in-the-loop model combines Bug Bounty (leveraging a global community of 150,000+ skilled ethical hackers), Autonomous Pentesting, Continuous Pentesting and unified vulnerability management to deliver agile, exhaustive security testing at scale. Customers include Louis Vuitton, Ferrero, the European Commission, Tencent and L’Oréal Groupe. ISO 27001-certified, CREST-accredited, and EU-hosted with full GDPR compliance. YesWeHack #1 Bug Bounty Platform in Europe and APAC **Average Rating:** 4.8/5.0 **Total Reviews:** 31 **How Do G2 Users Rate YesWeHack?** - **Has the product been a good partner in doing business?:** 9.9/10 (Category avg: 9.2/10) - **Reporting:** 9.2/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.3/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.0/10 (Category avg: 8.8/10) **Who Is the Company Behind YesWeHack?** - **Seller:** [YesWeHack](https://www.g2.com/sellers/yeswehack) - **Company Website:** https://www.yeswehack.com/ - **Year Founded:** 2015 - **HQ Location:** Paris, France - **LinkedIn® Page:** https://www.linkedin.com/company/yes-we-hack/ (728 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer & Network Security - **Company Size:** 45% Enterprise, 32% Small-Business #### What Are YesWeHack's Pros and Cons? **Pros:** - Ease of Use (15 reviews) - Customer Support (10 reviews) - Features (9 reviews) - Reporting Quality (7 reviews) - Team Quality (7 reviews) **Cons:** - Expensive (2 reviews) - Poor Interface Design (2 reviews) - Limited Scope (1 reviews) - Missing Features (1 reviews) - Pricing Issues (1 reviews) ### What Do G2 Reviewers Say About YesWeHack? *AI-generated summary from verified user reviews* **Pros:** - Users find YesWeHack to be exceptionally **easy to use** , enhancing vulnerability management and communication with hunters. - Users praise the **exceptional customer support** from YesWeHack's team, enhancing collaboration and effectiveness in bug bounty programs. - Users value the **exceptional customer support** and intuitive platform design, enhancing their bug bounty experience significantly. - Users commend the **high-quality reporting** from YesWeHack’s expert triagers and effective support from their Customer Success Managers. - Users value the **high-quality support and responsiveness** of YesWeHack's team, enhancing their bug bounty experience significantly. **Cons:** - Users find YesWeHack **expensive** , particularly for smaller organizations, limiting accessibility for a broader audience. - Users note the **poor interface design** of YesWeHack, suggesting it needs more modern and comprehensive features. - Users find the **limited scope** of YesWeHack restrictive as it struggles with a high number of programs. - Users note a **lack of specific tracking features** in YesWeHack, which hinders the interface's overall effectiveness. - Users find the **pricing issues** of YesWeHack to be steep, limiting accessibility for smaller organizations. #### What Are Recent G2 Reviews of YesWeHack? **"[The experience was satisfactory](https://www.g2.com/survey_responses/yeswehack-review-7640568)"** **Rating:** 4.0/5.0 stars *— Teboho P.* [Read full review](https://www.g2.com/survey_responses/yeswehack-review-7640568) --- **"[Effortless Security and Superior Vulnerability Detection](https://www.g2.com/survey_responses/yeswehack-review-11990115)"** **Rating:** 4.5/5.0 stars *— Brian O.* [Read full review](https://www.g2.com/survey_responses/yeswehack-review-11990115) --- ### 8. [Pentera](https://www.g2.com/products/pentera/reviews) Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. Its customers include Casey's General Stores, Emeria, LuLu International Exchange, IP Telecom PT, BrewDog, City National Bank, Schmitz Cargobull, and MBC Group. Pentera is backed by leading investors such as K1 Investment Management, Insight Partners, Blackstone, Evolution Equity Partners, and AWZ. Visit https://pentera.io for more information. **Average Rating:** 4.5/5.0 **Total Reviews:** 169 **How Do G2 Users Rate Pentera?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Reporting:** 7.8/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.3/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind Pentera?** - **Seller:** [Pentera](https://www.g2.com/sellers/pentera) - **Company Website:** https://pentera.io/ - **Year Founded:** 2015 - **HQ Location:** Boston, MA - **Twitter:** @penterasec (3,291 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/penterasecurity/ (483 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Government Administration, Banking - **Company Size:** 52% Enterprise, 36% Mid-Market #### What Are Pentera's Pros and Cons? **Pros:** - Ease of Use (9 reviews) - Vulnerability Identification (8 reviews) - Automation (7 reviews) - Customer Support (7 reviews) - Security (6 reviews) **Cons:** - Inadequate Reporting (3 reviews) - Access Control (2 reviews) - False Positives (2 reviews) - Limited Reporting (2 reviews) - Missing Features (2 reviews) ### What Do G2 Reviewers Say About Pentera? *AI-generated summary from verified user reviews* **Pros:** - Users find Pentera's **ease of use** exceptional, thanks to its automation, customizable scenarios, and simple interface. - Users value the **automated vulnerability identification** and customizable scenarios, enhancing their security management processes significantly. - Users value the **automation features** of Pentera, which simplify continuous usage and enhance overall efficiency. - Users appreciate the **exceptional customer support** of Pentera, enhancing their experience and ensuring effective vulnerability management. - Users value the **realistic attack simulations** offered by Pentera, enhancing their security posture through continuous validation. **Cons:** - Users find the **reporting inadequate** , highlighting a need for improvement in information provided, especially at enterprise level. - Users express concern about the **lack of a robust RBAC system** , limiting proper access control and user rights management. - Users desire **improvement in handling false positives** , though overall satisfaction with Pentera remains high. - Users note the **limited reporting capabilities** of Pentera, especially for enterprise-level assessments and lacking Spanish translation. - Users notice the **missing features** , like insufficient vulnerability updates and lack of RBAC, impacting overall utility. #### What Are Recent G2 Reviews of Pentera? **"[Cutting-Edge Security with a Real Attacker Approach](https://www.g2.com/survey_responses/pentera-review-12864952)"** **Rating:** 4.5/5.0 stars *— Yaron C.* [Read full review](https://www.g2.com/survey_responses/pentera-review-12864952) --- **"[Reliable Tool for Vulnerability Detection but Script Issues](https://www.g2.com/survey_responses/pentera-review-12864934)"** **Rating:** 4.0/5.0 stars *— Avitzur Y.* [Read full review](https://www.g2.com/survey_responses/pentera-review-12864934) --- ### 9. [Check Point Exposure Management](https://www.g2.com/products/check-point-exposure-management/reviews) Exposure Management is changing how organizations react to cyber risk. Attackers exploit exposed assets, leaked credentials, and misconfigurations within hours, while security teams are left sorting through dashboards, alerts, and disconnected tools. Check Point Exposure Management closes that gap by combining billions of external intelligence signals into a Unified Intelligence Fabric. The platform continuously identifies, validates, prioritizes, and safely remediates the exposures attackers are most likely to exploit. With Cyber Asset Attack Surface Management (CAASM), security teams gain a real-time inventory across cloud, SaaS, on-premises infrastructure, endpoints, and identities through 150+ agentless integrations. Unlike traditional vulnerability management, Check Point prioritizes exposures based on real-world exploitability, active threat intelligence, business context, and existing security controls, eliminating duplicate alerts and reducing remediation noise. It does so while maintaining business continuity. Safe-by-design remediation then validates every action before enforcement, enabling capabilities such as virtual patching, IPS activation, configuration hardening, and policy enforcement without disrupting business operations. Organizations using the platform achieve a 93% true positive rate, 12-hour average takedown MTTR, and 504 safe remediations per organization every month. Built around Gartner's Continuous Threat Exposure Management (CTEM) framework, Check Point helps organizations move from visibility to measurable risk reduction. Gartner predicts organizations adopting CTEM with mobilization will experience 50% fewer successful cyberattacks by 2028. Ready to see Exposure Management in action? Get a 15-minute demo: https://l.cyberint.com/exposure-management-demo **Average Rating:** 4.6/5.0 **Total Reviews:** 169 **How Do G2 Users Rate Check Point Exposure Management?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10) - **Reporting:** 9.0/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.3/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.0/10 (Category avg: 8.8/10) **Who Is the Company Behind Check Point Exposure Management?** - **Seller:** [Check Point Software Technologies](https://www.g2.com/sellers/check-point-software-technologies) - **Company Website:** https://www.checkpoint.com/ - **Year Founded:** 1993 - **HQ Location:** Redwood City, CA - **Twitter:** @CheckPointSW (70,955 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/check-point-software-technologies/ (8,554 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Threat Analyst, Cyber Security Analyst - **Top Industries:** Banking, Financial Services - **Company Size:** 69% Enterprise, 20% Mid-Market #### What Are Check Point Exposure Management's Pros and Cons? **Pros:** - Ease of Use (64 reviews) - Threat Intelligence (63 reviews) - Threat Detection (52 reviews) - Insights (41 reviews) - Customer Support (39 reviews) **Cons:** - Inefficient Alerts (21 reviews) - False Positives (15 reviews) - Inefficient Alert System (15 reviews) - Integration Issues (11 reviews) - Limited Features (11 reviews) ### What Do G2 Reviewers Say About Check Point Exposure Management? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of Cyberint, finding it intuitive and valuable for effective threat management. - Users value the **comprehensive threat intelligence** from Cyberint, enhancing detection and situational awareness in security operations. - Users commend the **effective threat detection** capabilities of Cyberint, enhancing situational awareness and proactive response to cyber threats. - Users appreciate the **comprehensive intelligence feeds** of Check Point Exposure Management, enhancing threat detection and situational awareness. - Users commend the **responsive and proactive support** from Cyberint, enhancing their ability to manage complex cyber threats effectively. **Cons:** - Users face challenges with **inefficient alerts** due to false positives, leading to unnecessary time spent on verification. - Users experience occasional **false positives** that necessitate extra time for validation, slightly complicating the alert management process. - Users experience **inefficient alert systems** that complicate management and delay threat intel on compromised accounts. - Users note **integration issues** that affect seamless usability, though support resolves hiccups promptly. - Users note the **limited features** of Check Point Exposure Management, particularly in integrations and multilingual threat intelligence. #### What Are Recent G2 Reviews of Check Point Exposure Management? **"[Streamlined Threat Intelligence Acquisition](https://www.g2.com/survey_responses/check-point-exposure-management-review-9805489)"** **Rating:** 5.0/5.0 stars *— Asaf A.* [Read full review](https://www.g2.com/survey_responses/check-point-exposure-management-review-9805489) --- **"[Cuts Vulnerability Noise with Context and Strong External Surface Visibility](https://www.g2.com/survey_responses/check-point-exposure-management-review-12515925)"** **Rating:** 4.5/5.0 stars *— Verified User in Utilities* [Read full review](https://www.g2.com/survey_responses/check-point-exposure-management-review-12515925) --- #### What Are G2 Users Discussing About Check Point Exposure Management? - [What is Argos™ Threat Intelligence Platform used for?](https://www.g2.com/discussions/what-is-argos-threat-intelligence-platform-used-for) - 1 comment ### 10. [ServiceNow Security Operations](https://www.g2.com/products/servicenow-security-operations/reviews) ServiceNow Security Operations is a sophisticated software solution designed to enhance threat and vulnerability management as well as incident response for organizations. By leveraging artificial intelligence, this platform empowers security teams to operate more efficiently and effectively, allowing for streamlined collaboration across IT, security, and risk management departments. The primary goal of ServiceNow Security Operations is to simplify complex security processes while minimizing risks associated with cybersecurity threats. Targeted at security teams within organizations of various sizes, ServiceNow Security Operations addresses the need for a cohesive approach to managing security incidents and vulnerabilities. It is particularly beneficial for organizations that utilize multiple security tools, as it integrates security and vulnerability data from these existing systems. This integration enables teams to respond to threats more rapidly by automating critical workflows and processes, thus reducing the manual effort traditionally required in incident response. Key features of ServiceNow Security Operations include intelligent workflows that automate routine tasks, allowing security professionals to focus on more strategic initiatives. The platform’s AI-driven capabilities facilitate the automatic correlation of threat intelligence from diverse sources, such as the MITRE ATT&CK framework. This feature enhances situational awareness and enables teams to prioritize threats effectively based on real-time data. Additionally, the ability to take action within other security or IT management tools from a centralized console streamlines operations, ensuring that teams can respond to incidents without unnecessary delays. Moreover, the use of digital security workflows and orchestration significantly accelerates tasks such as analysis, prioritization, and remediation. By automating these processes, organizations can not only improve their response times but also enhance their overall cybersecurity posture. The integration of AI-driven automation within the ServiceNow AI Platform® further strengthens the platform's capabilities, enabling organizations to drive cyber resilience and reduce their exposure to potential threats. In summary, ServiceNow Security Operations is a comprehensive solution that addresses the complexities of modern cybersecurity challenges. By automating and simplifying threat and vulnerability management, it empowers security teams to respond more effectively, thereby enhancing the overall security framework of an organization. **Average Rating:** 4.4/5.0 **Total Reviews:** 67 **How Do G2 Users Rate ServiceNow Security Operations?** - **Has the product been a good partner in doing business?:** 8.7/10 (Category avg: 9.2/10) - **Reporting:** 8.9/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.4/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.5/10 (Category avg: 8.8/10) **Who Is the Company Behind ServiceNow Security Operations?** - **Seller:** [ServiceNow](https://www.g2.com/sellers/servicenow) - **Company Website:** https://www.servicenow.com/ - **Year Founded:** 2004 - **HQ Location:** Santa Clara, CA - **Twitter:** @servicenow (55,548 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/29352/ (35,081 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 51% Enterprise, 20% Mid-Market #### What Are ServiceNow Security Operations's Pros and Cons? **Pros:** - Integration Capabilities (11 reviews) - Integration Support (10 reviews) - Ease of Use (9 reviews) - Integrations (8 reviews) - Incident Management (7 reviews) **Cons:** - Difficult Setup (4 reviews) - Integration Issues (4 reviews) - Licensing Issues (3 reviews) - Complexity (2 reviews) - Difficult Customization (2 reviews) ### What Do G2 Reviewers Say About ServiceNow Security Operations? *AI-generated summary from verified user reviews* **Pros:** - Users value the **integration capabilities** of ServiceNow Security Operations, seamlessly connecting with tools like Splunk and Tenable. - Users appreciate the **integration capabilities** of ServiceNow Security Operations, enhancing productivity and streamlining security incident management. - Users value the **easy integration and intuitive setup** of ServiceNow Security Operations, enhancing productivity and efficiency. - Users value the **seamless integration capabilities** of ServiceNow Security Operations, enhancing productivity and efficiency in incident management. - Users praise the **comprehensive management of incidents** in ServiceNow, ensuring efficient handling of security operations. **Cons:** - Users find the **difficult setup** and complex licensing of ServiceNow Security Operations to be a major hurdle. - Users experience significant **integration issues** that complicate setup and functionality, particularly with mapping and access roles. - Users feel that the **licensing issues** in ServiceNow Security Operations limit playbook options, impacting remediation efficiency. - Users face **complexity in building playbooks** in ServiceNow Security Operations, making the setup and usage challenging. - Users face **difficult customization** challenges in building playbooks within ServiceNow Security Operations, hindering efficient response. #### What Are Recent G2 Reviews of ServiceNow Security Operations? **"[Centralized, Automated Security Workflows with ServiceNow Security Operations](https://www.g2.com/survey_responses/servicenow-security-operations-review-12823627)"** **Rating:** 4.5/5.0 stars *— Himanshu J.* [Read full review](https://www.g2.com/survey_responses/servicenow-security-operations-review-12823627) --- **"[Strong platform for centralized security operations and incident response](https://www.g2.com/survey_responses/servicenow-security-operations-review-12737410)"** **Rating:** 4.5/5.0 stars *— Dharamveer p.* [Read full review](https://www.g2.com/survey_responses/servicenow-security-operations-review-12737410) --- #### What Are G2 Users Discussing About ServiceNow Security Operations? - [What is ServiceNow sir?](https://www.g2.com/discussions/what-is-servicenow-sir) - [What is service now in cyber security?](https://www.g2.com/discussions/what-is-service-now-in-cyber-security) - [What are the typical functions of the Security Operations Center SOC analysts?](https://www.g2.com/discussions/what-are-the-typical-functions-of-the-security-operations-center-soc-analysts) - [What can ServiceNow security operations do?](https://www.g2.com/discussions/what-can-servicenow-security-operations-do) ### 11. [vRx by Vicarius](https://www.g2.com/products/vrx-by-vicarius/reviews) vRx by Vicarius goes beyond patch management to offer the most advanced vulnerability remediation solution in the market. vRx offers 3 built-in methods to keep you covered at all times: 1) Automated Patching: vRx catalogs all your apps and finds the patches they need, and applies them - automatically and on the schedule or frequency of your choosing. 2) Scripting: For more complex vulnerabilities or configuration based vulnerabilities, vRx includes a fully fledged scripting engine. 3) Patchless Protection: x\_protect or patchless protection is a compensating control that reduces the risk of an affected app even when a patch is not yet developed or cannot be deployed vRx helps 500+ customers across 50 countries find AND immediately remediate vulns that impact their business. **Average Rating:** 4.9/5.0 **Total Reviews:** 61 **How Do G2 Users Rate vRx by Vicarius?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.2/10) - **Reporting:** 8.7/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.2/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.6/10 (Category avg: 8.8/10) **Who Is the Company Behind vRx by Vicarius?** - **Seller:** [Vicarius](https://www.g2.com/sellers/vicarius) - **Company Website:** https://www.vicarius.io/ - **Year Founded:** 2016 - **HQ Location:** New York, New York - **Twitter:** @vicariusltd (2,018 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/vicarius/ (109 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer & Network Security, Information Technology and Services - **Company Size:** 44% Mid-Market, 32% Small-Business #### What Are vRx by Vicarius's Pros and Cons? **Pros:** - Ease of Use (24 reviews) - Automation (21 reviews) - Patch Management (19 reviews) - Vulnerability Identification (18 reviews) - Features (17 reviews) **Cons:** - Missing Features (10 reviews) - Inadequate Reporting (4 reviews) - Complexity (3 reviews) - Dashboard Issues (3 reviews) - Inaccurate Information (3 reviews) ### What Do G2 Reviewers Say About vRx by Vicarius? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of vRx, highlighting its quick setup and user-friendly interface. - Users appreciate the **automation capabilities** of vRx, significantly boosting efficiency in vulnerability management and patching processes. - Users value the **intuitive interface** of vRx, which streamlines patch management and enhances task efficiency. - Users appreciate the **comprehensive vulnerability identification** capabilities of vRx, streamlining management and enhancing cyber resilience. - Users praise the **modern and intuitive patch management** of vRx, enhancing efficiency and support throughout the process. **Cons:** - Users note the **missing features** like automated asset grouping and enhanced reporting, impacting overall functionality. - Users find the **inadequate reporting** features of vRx lacking, particularly in customization and compliance aspects. - Users find the **complexity of vRx's advanced analytics** challenging, especially for those lacking technical expertise. - Users face **dashboard issues** that hinder customization, affecting the clarity of reports for different audiences. - Users find the **inaccurate information** in vRx frustrating, particularly regarding risk scoring and compliance reporting. #### What Are Recent G2 Reviews of vRx by Vicarius? **"[Unify Vulnerabilities and Remediation in a single console with great granularity](https://www.g2.com/survey_responses/vrx-by-vicarius-review-12264787)"** **Rating:** 5.0/5.0 stars *— Fernando V.* [Read full review](https://www.g2.com/survey_responses/vrx-by-vicarius-review-12264787) --- **"[Efficient Security Management with Real-Time Insights](https://www.g2.com/survey_responses/vrx-by-vicarius-review-12266234)"** **Rating:** 4.5/5.0 stars *— Luis Ernesto V.* [Read full review](https://www.g2.com/survey_responses/vrx-by-vicarius-review-12266234) --- #### What Are G2 Users Discussing About vRx by Vicarius? - [What is Vicarius used for?](https://www.g2.com/discussions/what-is-vicarius-used-for) - 1 comment ### 12. [Qualys VMDR](https://www.g2.com/products/qualys-vmdr/reviews) Qualys VMDR is an all-in-one risk-based vulnerability management solution that quantifies cyber risk. It gives organizations unprecedented insights into their risk posture and provides actionable steps to reduce risk. It also gives cybersecurity and IT teams a shared platform to collaborate, and the power to quickly align and automate no-code workflows to respond to threats with automated remediation and integrations with ITSM solutions such as ServiceNow. **Average Rating:** 4.4/5.0 **Total Reviews:** 164 **How Do G2 Users Rate Qualys VMDR?** - **Has the product been a good partner in doing business?:** 8.6/10 (Category avg: 9.2/10) - **Reporting:** 8.3/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.7/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.5/10 (Category avg: 8.8/10) **Who Is the Company Behind Qualys VMDR?** - **Seller:** [Qualys](https://www.g2.com/sellers/qualys) - **Year Founded:** 1999 - **HQ Location:** Foster City, CA - **Twitter:** @qualys (34,248 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/8561/ (3,627 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 51% Enterprise, 28% Mid-Market #### What Are Qualys VMDR's Pros and Cons? **Pros:** - Customer Support (2 reviews) - Features (2 reviews) - Vulnerability Detection (2 reviews) - Vulnerability Identification (2 reviews) - Alerting System (1 reviews) **Cons:** - Complexity (2 reviews) - Complex Reporting (1 reviews) - Complex Setup (1 reviews) - Difficult Learning (1 reviews) - Feature Complexity (1 reviews) ### What Do G2 Reviewers Say About Qualys VMDR? *AI-generated summary from verified user reviews* **Pros:** - Users value the **efficient customer support** of Qualys VMDR, enhancing security and streamlining issue resolution. - Users value the **effective security configuration assessment** feature of Qualys VMDR, enhancing their overall security posture efficiently. - Users value the **swift vulnerability detection** of Qualys VMDR, enhancing security with real-time alerts and comprehensive monitoring. - Users value the **swift vulnerability identification** capabilities of Qualys VMDR, significantly improving their security response time. - Users value the **real-time alerting system** of Qualys VMDR for promptly notifying them about critical vulnerabilities. **Cons:** - Users find the **interface complex for newcomers** , making initial navigation and understanding challenging. - Users find the **complex reporting** to be challenging, especially for new users trying to navigate the interface. - Users find the **complex setup** of Qualys VMDR challenging, especially those unfamiliar with the interface initially. - Users find the **difficult learning curve** challenging, especially for new users struggling to navigate the interface. - Users find the **interface complex** , especially for new users, making it challenging to navigate initially. #### What Are Recent G2 Reviews of Qualys VMDR? **"[One Go Tool for small or medium level Organizations](https://www.g2.com/survey_responses/qualys-vmdr-review-5466550)"** **Rating:** 4.0/5.0 stars *— Verified User in Security and Investigations* [Read full review](https://www.g2.com/survey_responses/qualys-vmdr-review-5466550) --- **"[Real-Time Asset Visibility and TruRisk Prioritization at Scale](https://www.g2.com/survey_responses/qualys-vmdr-review-12484147)"** **Rating:** 5.0/5.0 stars *— Verified User in Information Technology and Services* [Read full review](https://www.g2.com/survey_responses/qualys-vmdr-review-12484147) --- #### What Are G2 Users Discussing About Qualys VMDR? - [What does Qualys Vmdr do?](https://www.g2.com/discussions/what-does-qualys-vmdr-do) - 1 comment - [What vulnerabilities does Qualys scan for?](https://www.g2.com/discussions/qualys-vmdr-what-vulnerabilities-does-qualys-scan-for) - [What does Qualys cloud agent do?](https://www.g2.com/discussions/what-does-qualys-cloud-agent-do) - [How does Qualys patch management work?](https://www.g2.com/discussions/how-does-qualys-patch-management-work) - [What is Qualys software?](https://www.g2.com/discussions/what-is-qualys-software) ### 13. [Tenable Security Center](https://www.g2.com/products/tenable-security-center/reviews) Tenable Security Center (formerly Tenable.sc) is the industry's most comprehensive risk-based vulnerability management (RBVM) solution, enabling you to: • See all your vulnerabilities and continuously assess all assets the moment they join the network -- including transient devices that aren’t regularly connected • Predict what matters by understanding vulnerabilities in the context of business risk, as well as the criticality of affected assets • Act on each high priority vulnerability to effectively manage risk, and measure KPIs to effectively communicate effectiveness Legacy vulnerability management tools weren't designed to handle the modern attack surface and the growing number of threats that come with them. Instead, they’re limited to a theoretical view of risk, leading security teams to waste the majority of their time chasing after the wrong issues while missing many of the most critical vulnerabilities that pose the greatest risk to the business. By taking a risk-based approach to vulnerability management, Tenable.sc enables security teams to focus on the vulnerabilities and assets that matter most, so they can address the organization’s true business risk instead of wasting their valuable time on vulnerabilities that have a low likelihood of being exploited. Tenable delivers the most comprehensive risk-based vulnerability management solution available to help you prioritize your remediation efforts, so you can take decisive action to reduce the greatest amount of business risk with the least amount of effort. **Average Rating:** 4.6/5.0 **Total Reviews:** 73 **How Do G2 Users Rate Tenable Security Center?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.2/10) - **Reporting:** 8.6/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.5/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.4/10 (Category avg: 8.8/10) **Who Is the Company Behind Tenable Security Center?** - **Seller:** [Tenable](https://www.g2.com/sellers/tenable) - **HQ Location:** Columbia, MD - **Twitter:** @TenableSecurity (87,752 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®) - **Ownership:** NASDAQ: TENB **Who Uses This Product?** - **Top Industries:** Computer & Network Security, Banking - **Company Size:** 59% Enterprise, 24% Mid-Market #### What Are Tenable Security Center's Pros and Cons? **Pros:** - Compliance Management (1 reviews) - Customer Support (1 reviews) - Cybersecurity (1 reviews) - Dashboard Design (1 reviews) - Dashboard Usability (1 reviews) **Cons:** - Complexity (1 reviews) - Complex Queries (1 reviews) - Complex Setup (1 reviews) - Difficult Setup (1 reviews) - Integration Issues (1 reviews) ### What Do G2 Reviewers Say About Tenable Security Center? *AI-generated summary from verified user reviews* **Pros:** - Users value the **compliance management features** of Tenable Security Center, aiding adherence to standards like ISO 27001. - Users appreciate the **excellent customer support** that effectively resolves queries and licensing issues. - Users value the **compliance scanning** capabilities of Tenable Security Center, ensuring adherence to ISO 27001 and audit standards. - Users value the **informative dashboard** that provides crucial data and enhances management of multiple scanners. - Users appreciate the **informative dashboard** of Tenable Security Center, providing crucial data and easy management of scanners. **Cons:** - Users find the **complexity of installation and documentation** to be a significant hurdle in their experience with Tenable Security Center. - Users find Tenable Security Center's **complex documentation** challenging, making it hard to resolve installation issues efficiently. - Users find the **complex setup** challenging, often leading to prolonged installation and integration difficulties. - Users find the **difficult setup** for Tenable Security Center challenging, requiring significant time and assistance to resolve issues. - Users report **integration issues** with Tenable Security Center, noting complicated installations and confusing documentation. #### What Are Recent G2 Reviews of Tenable Security Center? **"[Comprehensive Review of Tenable Security Center: Features, Benefits, and Insights](https://www.g2.com/survey_responses/tenable-security-center-review-10789575)"** **Rating:** 4.5/5.0 stars *— Kiran R.* [Read full review](https://www.g2.com/survey_responses/tenable-security-center-review-10789575) --- **"[Unified Vulnerability Dashboard with Clear, Standardized Reporting](https://www.g2.com/survey_responses/tenable-security-center-review-12601930)"** **Rating:** 4.5/5.0 stars *— Kenneth W.* [Read full review](https://www.g2.com/survey_responses/tenable-security-center-review-12601930) --- #### What Are G2 Users Discussing About Tenable Security Center? - [What is Tenable.sc used for?](https://www.g2.com/discussions/tenable-security-center-what-is-tenable-sc-used-for) - 1 comment - [What are tenable plugins?](https://www.g2.com/discussions/what-are-tenable-plugins) - [What is the difference between Nessus and tenable io?](https://www.g2.com/discussions/tenable-sc-what-is-the-difference-between-nessus-and-tenable-io) - [What database does tenable SC use?](https://www.g2.com/discussions/what-database-does-tenable-sc-use) - [What is tenable SC used for?](https://www.g2.com/discussions/what-is-tenable-sc-used-for) ### 14. [HeroDevs](https://www.g2.com/products/herodevs/reviews) HeroDevs Never-Ending Support provides secure drop-in replacements and updates for end-of-life open source libraries, protecting businesses from vulnerabilities in deprecated software. Our team delivers proactive security updates—often before CVEs are publicly disclosed—and maintains continuous monitoring of your technology stack to identify potential threats before they impact your systems. Our solution eliminates the need for costly, time-consuming rewrites when open source libraries reach end-of-life by extending support indefinitely. HeroDevs' expert engineers maintain your existing codebase with security patches, bug fixes, and compatibility updates, allowing your development team to focus on innovation rather than remediation. This approach preserves your investment in current applications while ensuring they remain secure and compliant. HeroDevs partners directly with your security and development teams to rapidly assess vulnerabilities, prioritize remediation efforts, and implement fixes with minimal disruption. Our service includes detailed reporting on security posture, comprehensive documentation of all changes, and dedicated technical support from engineers specialized in your specific technologies. By extending the life of critical open source components, we help organizations maintain business continuity while significantly reducing security risks and compliance concerns. Keep your business secure and your applications running without costly rewrites or risky exposure. **Average Rating:** 4.7/5.0 **Total Reviews:** 18 **How Do G2 Users Rate HeroDevs?** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.2/10) - **Reporting:** 7.5/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.3/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind HeroDevs?** - **Seller:** [HeroDevs](https://www.g2.com/sellers/herodevs) - **Year Founded:** 2018 - **HQ Location:** Sandy, Utah - **Twitter:** @herodevs (2,672 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/herodevs (102 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 61% Mid-Market, 39% Small-Business #### What Are HeroDevs's Pros and Cons? **Pros:** - Customer Support (10 reviews) - Integrations (7 reviews) - Ease of Use (6 reviews) - Security (6 reviews) - Authentication Security (5 reviews) **Cons:** - Expensive (4 reviews) - Dashboard Issues (2 reviews) - Missing Features (2 reviews) - Additional Costs (1 reviews) - Complex Implementation (1 reviews) ### What Do G2 Reviewers Say About HeroDevs? *AI-generated summary from verified user reviews* **Pros:** - Users value the **responsive and professional customer support** from HeroDevs, enhancing their overall experience with peace of mind. - Users highlight the **seamless integrations** of HeroDevs, ensuring efficient workflows and ongoing support for applications. - Users find HeroDevs' **ease of use** remarkable, enabling smooth integration and straightforward implementation in their projects. - Users value the **reliable security support** from HeroDevs, ensuring stability without immediate migration pressure. - Users value the **reliable authentication security** of HeroDevs, ensuring stability and peace of mind without urgent migrations. **Cons:** - Users feel the service is **expensive** , noting that pricing could be more flexible for smaller teams. - Users find the lack of a **centralized dashboard** limits tracking and managing subscriptions and support requests effectively. - Users express concerns over **missing features** like a dashboard and support for specific versions of dependencies. - Users wish for a **monthly billing option** for better cash flow management, as it's currently unavailable. - Users faced **complex implementation challenges** with version compatibility and lack of support for deprecated package managers. #### What Are Recent G2 Reviews of HeroDevs? **"[Never ending support](https://www.g2.com/survey_responses/herodevs-review-11530966)"** **Rating:** 5.0/5.0 stars *— Mark N.* [Read full review](https://www.g2.com/survey_responses/herodevs-review-11530966) --- **"[HeroDevs: Reliable AngularJS Support with Great Value and Responsive Team](https://www.g2.com/survey_responses/herodevs-review-11808578)"** **Rating:** 4.5/5.0 stars *— Kris A.* [Read full review](https://www.g2.com/survey_responses/herodevs-review-11808578) --- ### 15. [Bitsight](https://www.g2.com/products/bitsight/reviews) Bitsight is the global leader in cyber risk intelligence, leveraging advanced AI to empower organizations with precise insights derived from the industry’s most extensive external cybersecurity dataset. With more than 3,500 customers and over 68,000 organizations active on its platform, Bitsight delivers real-time visibility into cyber risk and threat exposure, enabling teams to rapidly identify vulnerabilities, detect emerging threats, prioritize remediation, and mitigate risks across their extended attack surface. Bitsight proactively uncovers security gaps across infrastructure, cloud environments, digital identities, and third- and fourth-party ecosystems. From security operations and governance teams to executive boardrooms, Bitsight provides the unified intelligence backbone required to confidently manage cyber risk and address exposures before they impact performance. **Average Rating:** 4.5/5.0 **Total Reviews:** 76 **How Do G2 Users Rate Bitsight?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Reporting:** 7.4/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 7.4/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 7.9/10 (Category avg: 8.8/10) **Who Is the Company Behind Bitsight?** - **Seller:** [Bitsight](https://www.g2.com/sellers/bitsight) - **Company Website:** https://www.bitsight.com/ - **Year Founded:** 2011 - **HQ Location:** Boston, MA - **Twitter:** @BitSight (4,503 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/bitsight/ (741 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Hospital & Health Care - **Company Size:** 71% Enterprise, 24% Mid-Market #### What Are Bitsight's Pros and Cons? **Pros:** - Security (15 reviews) - Risk Management (14 reviews) - Ease of Use (13 reviews) - Features (11 reviews) - Customer Support (10 reviews) **Cons:** - Lack of Clarity (5 reviews) - Missing Features (5 reviews) - Poor Customer Support (4 reviews) - Poor Notifications (4 reviews) - Slow Loading (4 reviews) ### What Do G2 Reviewers Say About Bitsight? *AI-generated summary from verified user reviews* **Pros:** - Users value the **easy-to-understand security rating** of Bitsight, allowing quick assessments of security postures. - Users value the **effective risk scanning** capabilities of BitSight, facilitating thorough evaluations of vendors and partners. - Users value the **ease of use** of BitSight, enjoying its intuitive interface and quick implementation for daily security monitoring. - Users value the **comprehensive insights** from BitSight, enhancing understanding of vendor risk across various domains. - Users appreciate the **responsive customer support** of Bitsight, ensuring quick resolutions and effective use of the tool. **Cons:** - Users express concerns about the **lack of clarity** in scoring and occasional incorrect findings with Bitsight. - Users criticize the **missing features** of Bitsight, highlighting issues with questionnaires, integrations, and mobile app functionality. - Users express dissatisfaction with **poor customer support** , noting inadequate documentation and unhelpful responses when issues arise. - Users experience **poor notifications** with Bitsight, citing delays and issues with breach alert relevance and timing. - Users experience **slow loading** times with Bitsight, impacting their overall efficiency and workflow. #### What Are Recent G2 Reviews of Bitsight? **"[Finds Public-Facing Security Flaws and Clearly Shows How to Fix Them](https://www.g2.com/survey_responses/bitsight-review-12760320)"** **Rating:** 4.5/5.0 stars *— Verified User in Computer Software* [Read full review](https://www.g2.com/survey_responses/bitsight-review-12760320) --- **"[Effortless Cyber Risk Scoring for Proactive Security](https://www.g2.com/survey_responses/bitsight-review-12098656)"** **Rating:** 4.0/5.0 stars *— Matthew P.* [Read full review](https://www.g2.com/survey_responses/bitsight-review-12098656) --- #### What Are G2 Users Discussing About Bitsight? - [What does Bitsight Security Ratings do?](https://www.g2.com/discussions/what-does-bitsight-security-ratings-do) - [How is BitSight calculated?](https://www.g2.com/discussions/how-is-bitsight-calculated) - [What is a BitSight security rating?](https://www.g2.com/discussions/what-is-a-bitsight-security-rating) ### 16. [Cisco Vulnerability Management (formerly Kenna.VM)](https://www.g2.com/products/cisco-vulnerability-management-formerly-kenna-vm/reviews) Cisco Vulnerability Management (formerly Kenna.VM), the original SaaS risk-based vulnerability management platform, prioritizes vulnerabilities that pose a real risk, enabling Security and IT teams to focus their limited resources and remediate more efficiently. Cisco’s data science-driven prioritization evaluates both enterprise data and a wealth of data on real-world exploit activity and translates that context into actionable intelligence to guide remediation. **Average Rating:** 4.3/5.0 **Total Reviews:** 200 **How Do G2 Users Rate Cisco Vulnerability Management (formerly Kenna.VM)?** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.2/10) - **Reporting:** 8.5/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.7/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.1/10 (Category avg: 8.8/10) **Who Is the Company Behind Cisco Vulnerability Management (formerly Kenna.VM)?** - **Seller:** [Cisco](https://www.g2.com/sellers/cisco) - **Year Founded:** 1984 - **HQ Location:** San Jose, CA - **Twitter:** @Cisco (720,366 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cisco/ (95,545 employees on LinkedIn®) - **Ownership:** NASDAQ:CSCO **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 76% Enterprise, 17% Mid-Market #### What Are Recent G2 Reviews of Cisco Vulnerability Management (formerly Kenna.VM)? **"[Vulnerability prioritization tool for non-technical](https://www.g2.com/survey_responses/cisco-vulnerability-management-formerly-kenna-vm-review-9891371)"** **Rating:** 4.5/5.0 stars *— Verified User in Retail* [Read full review](https://www.g2.com/survey_responses/cisco-vulnerability-management-formerly-kenna-vm-review-9891371) --- **"[Ease of use and better transparency](https://www.g2.com/survey_responses/cisco-vulnerability-management-formerly-kenna-vm-review-9928180)"** **Rating:** 4.5/5.0 stars *— Verified User in Utilities* [Read full review](https://www.g2.com/survey_responses/cisco-vulnerability-management-formerly-kenna-vm-review-9928180) --- #### What Are G2 Users Discussing About Cisco Vulnerability Management (formerly Kenna.VM)? - [What is Kenna Security used for?](https://www.g2.com/discussions/what-is-kenna-security-used-for) - [How do you use Kenna Security?](https://www.g2.com/discussions/how-do-you-use-kenna-security) - [What is risk based vulnerability management?](https://www.g2.com/discussions/what-is-risk-based-vulnerability-management) - [What is Kenna vulnerability?](https://www.g2.com/discussions/what-is-kenna-vulnerability) - [What does Kenna Security do?](https://www.g2.com/discussions/what-does-kenna-security-do) - 1 comment ### 17. [Semperis Purple Knight](https://www.g2.com/products/semperis-purple-knight/reviews) Community-driven hybrid Active Directory security assessment tool. Purple Knight is an identity system security assessment tool used by thousands of organizations to quickly identify vulnerabilities in AD, Entra ID, and Okta environments and receive prioritized, expert remediation guidance. **Average Rating:** 4.7/5.0 **Total Reviews:** 11 **How Do G2 Users Rate Semperis Purple Knight?** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.2/10) - **Reporting:** 8.7/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.2/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.0/10 (Category avg: 8.8/10) **Who Is the Company Behind Semperis Purple Knight?** - **Seller:** [Semperis](https://www.g2.com/sellers/semperis) - **Company Website:** https://www.semperis.com - **Year Founded:** 2015 - **HQ Location:** Hoboken, New Jersey - **Twitter:** @SemperisTech (10,074 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/semperis/ (674 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 45% Mid-Market, 45% Small-Business #### What Are Semperis Purple Knight's Pros and Cons? **Pros:** - Cybersecurity (4 reviews) - Ease of Use (4 reviews) - Data Discovery (3 reviews) - Detailed Explanation (3 reviews) - Implementation Ease (2 reviews) **Cons:** - Information Management (2 reviews) - Lack of Automation (2 reviews) - Difficult Learning (1 reviews) - Difficult Setup (1 reviews) - Inadequate Reporting (1 reviews) ### What Do G2 Reviewers Say About Semperis Purple Knight? *AI-generated summary from verified user reviews* **Pros:** - Users find Purple Knight's **immediate and prioritized identification of Active Directory security gaps** essential for proactive protection. - Users find the **ease of use** of Semperis Purple Knight invaluable for quickly identifying security vulnerabilities. - Users value the **immediate identification of critical security gaps** provided by Semperis Purple Knight for Active Directory. - Users value the **immediate identification of critical Active Directory security gaps** , enabling them to take quick action against threats. - Users find the **implementation ease** of Semperis Purple Knight remarkable, appreciating its quick setup and clear guidance. **Cons:** - Users criticize the **lack of continuous monitoring** , as Semperis Purple Knight only offers snapshot assessments without automated fixes. - Users find the **lack of automation** frustrating, as manual intervention is necessary for all remediation tasks. - Users find the **difficult learning curve** due to overwhelming reports requiring expert knowledge for interpretation and manual remediation. - Users find the **difficult setup** for Entra ID scans adds unnecessary complexity to their hybrid environments. - Users find the **inadequate reporting** problematic, noting a lack of dynamic insights and automation in assessments. #### What Are Recent G2 Reviews of Semperis Purple Knight? **"[Best tool to audit your active directory](https://www.g2.com/survey_responses/semperis-purple-knight-review-11877575)"** **Rating:** 5.0/5.0 stars *— Nicolas B.* [Read full review](https://www.g2.com/survey_responses/semperis-purple-knight-review-11877575) --- **"[Essential Free Tool for Clear AD and Entra ID Security Insights](https://www.g2.com/survey_responses/semperis-purple-knight-review-11940160)"** **Rating:** 5.0/5.0 stars *— Chris J.* [Read full review](https://www.g2.com/survey_responses/semperis-purple-knight-review-11940160) --- ### 18. [PlexTrac](https://www.g2.com/products/plextrac/reviews) PlexTrac is the leading AI-powered platform for pentest reporting and threat exposure management, trusted by Fortune 500 companies and top security providers. Built to help cybersecurity teams continuously manage and reduce threat exposure, PlexTrac centralizes security data, streamlines reporting, prioritizes risk, and automates remediation workflows—empowering teams to drive measurable risk reduction. The platform is ideal for enterprises & service providers looking to deliver a Continuous Threat Exposure Management (CTEM) framework across their business. With our suite of solutions, you can consolidate security data from tools and manual testing, automatically prioritize risks based on business impact, and automate remediation and retesting workflows for ongoing, more effective threat management. **Average Rating:** 4.8/5.0 **Total Reviews:** 15 **How Do G2 Users Rate PlexTrac?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.2/10) - **Reporting:** 9.9/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 6.9/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.6/10 (Category avg: 8.8/10) **Who Is the Company Behind PlexTrac?** - **Seller:** [PlexTrac](https://www.g2.com/sellers/plextrac) - **Company Website:** https://plextrac.com/ - **Year Founded:** 2016 - **HQ Location:** Boise, Idaho - **Twitter:** @plextrac (1,648 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/19015522 (89 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Consulting - **Company Size:** 40% Enterprise, 40% Small-Business #### What Are PlexTrac's Pros and Cons? **Pros:** - Features (7 reviews) - Customer Support (6 reviews) - Ease of Use (6 reviews) - Reporting Efficiency (6 reviews) - Integrations (5 reviews) **Cons:** - Missing Features (2 reviews) - Complexity (1 reviews) - Complex Setup (1 reviews) - Difficult Learning (1 reviews) - Inadequate Reporting (1 reviews) ### What Do G2 Reviewers Say About PlexTrac? *AI-generated summary from verified user reviews* **Pros:** - Users love the **customizable and intuitive interface** of PlexTrac, enhancing report management and streamlining the workflow significantly. - Users commend PlexTrac's **exceptional customer support** , highlighting quick responses and a professional team that enhances experience. - Users appreciate the **ease of use** of PlexTrac, praising its intuitive design and seamless navigation. - Users love the **reporting efficiency** of PlexTrac, transforming their workflow and saving significant time on assessments. - Users value the **seamless integrations** with tools like Jira and Tenable, enhancing efficiency and reducing manual effort significantly. **Cons:** - Users are frustrated by the **missing features** in PlexTrac's on-premise version compared to the SaaS offering. - Users note that the **complexity of formatting** in PlexTrac can require extra tweaking for detailed reports. - Users find the **complex setup** of PlexTrac challenging initially, requiring time to become familiar with the interface. - Users report a **difficult learning curve** with PlexTrac, despite support being available for assistance. - Users desire improved **reporting capabilities** for Threat Hunting and Incident Response within the PlexTrac platform. #### What Are Recent G2 Reviews of PlexTrac? **"[Game Changer for My Cybersecurity Consultancy](https://www.g2.com/survey_responses/plextrac-review-11388903)"** **Rating:** 5.0/5.0 stars *— Anthony T.* [Read full review](https://www.g2.com/survey_responses/plextrac-review-11388903) --- **"[A Game-Changer for Offensive Security Services](https://www.g2.com/survey_responses/plextrac-review-11036693)"** **Rating:** 5.0/5.0 stars *— Rene V.* [Read full review](https://www.g2.com/survey_responses/plextrac-review-11036693) --- ### 19. [ZeroFox](https://www.g2.com/products/zerofox/reviews) ZeroFox is the solution used to illuminate threat actor intent, mitigate threats and exposures, remove threats from the internet, and preemptively safeguard your reputation. ZeroFox uniquely fuses the core capabilities of Cyber Threat Intelligence, Brand and Domain Protection, Attack Surface Intelligence, Executive Protection and Physical Security Intelligence in one platform packed with intelligence you’ll actually use. ZeroFox defends your business from the everyday attacks that impact revenue, erode trust, and frustrate teams by: Discovering exposed assets, brands, domains, accounts, and emerging threats Validating the risks that matter most to you and your digital estate Disrupting attacks before they harm your business, your customers, and your people Our continuous cycle—Discover, Validate, Disrupt—delivers outcomes and helps organizations achieve deeper threat contextualization, faster detection and response times, and longer-term cost savings by anticipating, understanding, and mitigating external digital threats at scale. Join thousands of customers, including some of the largest public sector organizations and leaders in finance, media, technology, retail, and healthcare, and let ZeroFox deliver timely, personal, and usable intelligence so you can stay ahead of what’s next and reclaim what’s right. **Average Rating:** 4.4/5.0 **Total Reviews:** 133 **How Do G2 Users Rate ZeroFox?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Reporting:** 9.0/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.8/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.0/10 (Category avg: 8.8/10) **Who Is the Company Behind ZeroFox?** - **Seller:** [ZeroFox](https://www.g2.com/sellers/zerofox) - **Company Website:** https://www.zerofox.com - **Year Founded:** 2013 - **HQ Location:** Baltimore, MD - **Twitter:** @ZeroFOX (5,205 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2890672 (861 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Banking - **Company Size:** 46% Enterprise, 28% Mid-Market #### What Are ZeroFox's Pros and Cons? **Pros:** - Ease of Use (35 reviews) - Protection (32 reviews) - Threat Detection (26 reviews) - Alert Notifications (23 reviews) - Threat Intelligence (22 reviews) **Cons:** - Inefficient Alerts (24 reviews) - False Alarms (16 reviews) - Slow Performance (14 reviews) - False Positives (12 reviews) - Inefficient Alert System (11 reviews) ### What Do G2 Reviewers Say About ZeroFox? *AI-generated summary from verified user reviews* **Pros:** - Users value the **ease of use** of ZeroFox, praising its smooth onboarding and hassle-free experience. - Users value the **protection against brand abuse** offered by ZeroFox, ensuring their trademarks remain secure. - Users value ZeroFox for its **proactive threat detection** , ensuring robust brand protection and swift response capabilities. - Users value the **effective alert notifications** of ZeroFox, enhancing daily operations and improving security monitoring. - Users value ZeroFox for its **effective scam site detection** , significantly enhancing their security against threats. **Cons:** - Users experience **inefficient alerts** from ZeroFox, citing delayed reporting and numerous false positives in evaluations. - Users express concerns about **false alarms** , facing issues with alert legitimacy and detection delays from ZeroFox. - Users experience **slow performance** with ZeroFox, particularly in alert reporting and response times, impacting user experience. - Users experience frequent **false positives** , requiring time-consuming manual reviews and highlighting the need for improved detection methods. - Users criticize the **inefficient alert system** of ZeroFox, citing frequent false positives and slow reporting times. #### What Are Recent G2 Reviews of ZeroFox? **"[ZeroFox Fills the Gap Traditional Security Tools Miss](https://www.g2.com/survey_responses/zerofox-review-11891542)"** **Rating:** 5.0/5.0 stars *— dhananji s.* [Read full review](https://www.g2.com/survey_responses/zerofox-review-11891542) --- **"[ZeroFox: Powerful Digital Risk Detection, Requires Tuning and correct configuration.](https://www.g2.com/survey_responses/zerofox-review-12651176)"** **Rating:** 4.5/5.0 stars *— Verified User in Insurance* [Read full review](https://www.g2.com/survey_responses/zerofox-review-12651176) --- #### What Are G2 Users Discussing About ZeroFox? - [Who owns ZeroFox?](https://www.g2.com/discussions/who-owns-zerofox) - 1 comment - [How much does ZeroFox cost?](https://www.g2.com/discussions/how-much-does-zerofox-cost) - 1 comment - [Is ZeroFox safe?](https://www.g2.com/discussions/is-zerofox-safe) - 1 comment ### 20. [Titania Nipper InfraSight](https://www.g2.com/products/titania-nipper-infrasight/reviews) Award-winning Risk-Based Vulnerability Management. Nipper InfraSight analyzes network device configurations in the way Advances Persistent Threat (APT) groups do, to identify misconfigurations that could create attack paths. This analysis offers unparalleled, pen-tester accuracy, finding critical vulnerabilities in firewalls, routers, switches that other tools simply cannot see. Our solutions then prioritize the biggest risks to your business and provide device-specific remediation guidance, right down to specific command line prompts.  By analyzing device configurations against key compliance standards and security frameworks (including STIGs/CIS Benchmarks/PCI DSS/CMMC/CORA/NIST SP 800-53), Nipper solutions tell you precisely which devices are at risk of failing, how significant that risk is, and how you can solve it, with auditor-ready reports. Whether your focus is taking pragmatic, risk-based security measures to minimize known vulnerabilities or ensuring compliance with industry security standards, Nipper solutions provide the targeted insights you need. No other security provider looks at the network in the same way. That’s why Nipper can uniquely provide the network configuration coverage that organizations urgently require. 30+ U.S. federal agencies and 800+ organizations globally trust Nipper solutions to deliver vulnerability analysis and compliance automation while supporting air-gapped environments, sovereign cloud requirements, and complex regulated infrastructures. **Average Rating:** 4.3/5.0 **Total Reviews:** 24 **How Do G2 Users Rate Titania Nipper InfraSight?** - **Has the product been a good partner in doing business?:** 9.0/10 (Category avg: 9.2/10) - **Reporting:** 9.3/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 2.5/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind Titania Nipper InfraSight?** - **Seller:** [Titania](https://www.g2.com/sellers/titania) - **Company Website:** https://www.titania.com - **Year Founded:** 2009 - **HQ Location:** London, GB - **Twitter:** @TitaniaLtd (2,821 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/titania-ltd/ (104 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 46% Enterprise, 21% Mid-Market #### What Are Titania Nipper InfraSight's Pros and Cons? **Pros:** - Ease of Use (10 reviews) - Reporting Quality (6 reviews) - Scanning Efficiency (4 reviews) - Vulnerability Detection (4 reviews) - Clear Interface (3 reviews) **Cons:** - Licensing Issues (3 reviews) - False Positives (2 reviews) - Lack of Cloud Support (2 reviews) - Limited Compatibility (2 reviews) - Limited Scope (2 reviews) ### What Do G2 Reviewers Say About Titania Nipper InfraSight? *AI-generated summary from verified user reviews* **Pros:** - Users value the **ease of use** of Titania Nipper InfraSight, finding it simple and effective for their needs. - Users highly value the **exceptional reporting quality** of Titania Nipper InfraSight, which provides clear recommendations and actionable insights. - Users value the **scanning efficiency** of Titania Nipper InfraSight, enabling quick identification of network misconfigurations. - Users appreciate the **effective vulnerability detection** of Titania Nipper, providing actionable recommendations for enhanced network security. - Users value the **clear interface** of Titania Nipper InfraSight, enabling easy navigation and streamlined assessments. **Cons:** - Users express concerns about the **licensing model** , which requires a minimum of 100 devices for effective use. - Users report frequent **false positives** , leading to confusion and mistrust in the accuracy of the findings. - Users find the **lack of cloud support** in Titania Nipper InfraSight frustrating, especially for specific devices like Cisco. - Users face **limited compatibility** with devices, requiring outdated versions and complicating server maintenance and integration. - Users find the **limited device support** frustrating, needing to maintain outdated versions for compatibility. #### What Are Recent G2 Reviews of Titania Nipper InfraSight? **"[Stable, Audit-Friendly Risk-Based Configuration Analysis with Titania Nipper](https://www.g2.com/survey_responses/titania-nipper-infrasight-review-12463662)"** **Rating:** 5.0/5.0 stars *— Sindhoor H.* [Read full review](https://www.g2.com/survey_responses/titania-nipper-infrasight-review-12463662) --- **"[Efficient Reporting Tool with Room for Growth](https://www.g2.com/survey_responses/titania-nipper-infrasight-review-12346932)"** **Rating:** 4.0/5.0 stars *— rashid l.* [Read full review](https://www.g2.com/survey_responses/titania-nipper-infrasight-review-12346932) --- #### What Are G2 Users Discussing About Titania Nipper InfraSight? - [What is Nipper Titania?](https://www.g2.com/discussions/what-is-nipper-titania) - 1 comment ### 21. [SecOps Solution](https://www.g2.com/products/secops-solution/reviews) SecOps Solution is a next-gen, agentless patch and vulnerability management platform that helps organizations fix vulnerabilities fast — without agents, manual effort, or complex setups. We automate patching across operating systems and third-party applications, including remote and on-prem devices — all in a fraction of the time traditional tools take. **Average Rating:** 4.9/5.0 **Total Reviews:** 45 **How Do G2 Users Rate SecOps Solution?** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.2/10) - **Reporting:** 9.6/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.7/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 9.7/10 (Category avg: 8.8/10) **Who Is the Company Behind SecOps Solution?** - **Seller:** [SecOps Solution](https://www.g2.com/sellers/secops-solution) - **Year Founded:** 2021 - **HQ Location:** Mountain View, California, USA - **Twitter:** @secopsolution (35 Twitter followers) - **LinkedIn® Page:** http://www.linkedin.com/company/secopsolution (7 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Financial Services - **Company Size:** 63% Small-Business, 33% Mid-Market #### What Are SecOps Solution's Pros and Cons? **Pros:** - Patch Management (6 reviews) - Customer Support (5 reviews) - Reporting (5 reviews) - Detailed Explanation (4 reviews) - Reporting Efficiency (4 reviews) ### What Do G2 Reviewers Say About SecOps Solution? *AI-generated summary from verified user reviews* **Pros:** - Users value the **intuitive centralized dashboard** of SecOps Solution, which simplifies patch management and security oversight. - Users commend the **responsive and professional customer support** of SecOps Solution, appreciating clear communication and detailed reports. - Users value the **excellent reporting** capabilities of SecOps Solution, enhancing asset management and vulnerability tracking. - Users value the **detailed patch testing and exceptional reporting** of SecOps Solution, enhancing confidence and stakeholder communication. - Users value the **reporting efficiency** of SecOps Solution, which simplifies communication and aids in compliance audits. #### What Are Recent G2 Reviews of SecOps Solution? **"[SecOps Feels Like an Extra Teammate for Patch Tracking and Vulnerability Visibility](https://www.g2.com/survey_responses/secops-solution-review-12931714)"** **Rating:** 5.0/5.0 stars *— Shruti M.* [Read full review](https://www.g2.com/survey_responses/secops-solution-review-12931714) --- **"[SecOps Solution Delivers Clear Visibility and Streamlined Security Operations](https://www.g2.com/survey_responses/secops-solution-review-12942920)"** **Rating:** 5.0/5.0 stars *— muthu K.* [Read full review](https://www.g2.com/survey_responses/secops-solution-review-12942920) --- #### What Are G2 Users Discussing About SecOps Solution? - [What is SecOps Solution used for?](https://www.g2.com/discussions/what-is-secops-solution-used-for) - 1 comment ### 22. [Microsoft Defender Vulnerability Management](https://www.g2.com/products/microsoft-defender-vulnerability-management/reviews) Defender Vulnerability Management delivers asset visibility, intelligent assessments, and built-in remediation tools for Windows, macOS, Linux, Android, iOS, and network devices. Leveraging Microsoft threat intelligence, breach likelihood predictions, business contexts, and devices assessments, Defender Vulnerability Management rapidly and continuously prioritizes the biggest vulnerabilities on your most critical assets and provides security recommendations to mitigate risk. Reduce risk with continuous vulnerability assessment, risk-based prioritization, and remediation. Defender Vulnerability Management is available for cloud workloads and endpoints. Defender for Endpoint Plan 2 customers can access advanced vulnerability management capabilities with the Defender Vulnerability Management add-on, now generally available. **Average Rating:** 4.4/5.0 **Total Reviews:** 34 **How Do G2 Users Rate Microsoft Defender Vulnerability Management?** - **Has the product been a good partner in doing business?:** 8.6/10 (Category avg: 9.2/10) - **Reporting:** 8.7/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.8/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.8/10 (Category avg: 8.8/10) **Who Is the Company Behind Microsoft Defender Vulnerability Management?** - **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft) - **Year Founded:** 1975 - **HQ Location:** Redmond, Washington - **Twitter:** @microsoft (13,091,739 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (231,632 employees on LinkedIn®) - **Ownership:** MSFT **Who Uses This Product?** - **Top Industries:** Computer & Network Security - **Company Size:** 41% Small-Business, 35% Enterprise #### What Are Recent G2 Reviews of Microsoft Defender Vulnerability Management? **"[Amazing vulnerability management solution](https://www.g2.com/survey_responses/microsoft-defender-vulnerability-management-review-9057478)"** **Rating:** 5.0/5.0 stars *— Marko V.* [Read full review](https://www.g2.com/survey_responses/microsoft-defender-vulnerability-management-review-9057478) --- **"[Probably the best choice to defend your PC (Windows 10 and 11)](https://www.g2.com/survey_responses/microsoft-defender-vulnerability-management-review-8596658)"** **Rating:** 4.0/5.0 stars *— Markus M.* [Read full review](https://www.g2.com/survey_responses/microsoft-defender-vulnerability-management-review-8596658) --- ### 23. [Bugcrowd](https://www.g2.com/products/bugcrowd/reviews) Bugcrowd frees organizations with a low tolerance for risk from chronic talent shortages, noisy tools that breed false positives, and the fear of critical hidden or emerging vulnerabilities. Our SaaS platform provides access to the unlimited capacity and skills of the global ethical hacker/pentester community for deeper, proactive risk reduction and faster regulatory compliance. With 12+ years of experience and 1200+ customers in every industry (including OpenAI, National Australia Bank, Indeed, USAA, Twilio, and CISA), we know what long-term with crowdsourced security looks like. **Average Rating:** 4.3/5.0 **Total Reviews:** 60 **How Do G2 Users Rate Bugcrowd?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10) - **Reporting:** 8.6/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.3/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.1/10 (Category avg: 8.8/10) **Who Is the Company Behind Bugcrowd?** - **Seller:** [Bugcrowd](https://www.g2.com/sellers/bugcrowd) - **Year Founded:** 2012 - **HQ Location:** San Francisco, CA - **Twitter:** @Bugcrowd (199,211 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/bugcrowd/ (3,701 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 34% Enterprise, 33% Small-Business #### What Are Bugcrowd's Pros and Cons? **Pros:** - Reporting Quality (8 reviews) - Ease of Use (7 reviews) - Customer Support (6 reviews) - Communication (5 reviews) - Vulnerability Detection (5 reviews) **Cons:** - Poor Customer Support (4 reviews) - Slow Performance (4 reviews) - Bug Management (3 reviews) - Inadequate Reporting (3 reviews) - Learning Curve (3 reviews) ### What Do G2 Reviewers Say About Bugcrowd? *AI-generated summary from verified user reviews* **Pros:** - Users commend Bugcrowd for its **excellent reporting quality** , fostering effective communication and efficient bug submission processes. - Users appreciate the **ease of use** of Bugcrowd, with a streamlined setup that enhances their security testing experience. - Users commend the **responsive customer support** of Bugcrowd, appreciating its helpfulness and quick resolutions. - Users value the **consistent and transparent communication** on Bugcrowd, enhancing their overall research experience and efficiency. - Users appreciate Bugcrowd for its **reliable vulnerability detection** , providing thorough insights and efficient communication throughout security testing. **Cons:** - Users express frustration over **poor customer support** , citing slow responses and inconsistent triaging that hinder their experience. - Users experience **slow performance** in triaging and report validation, affecting their overall satisfaction with Bugcrowd. - Users experience **slow triaging and inconsistent communication** , which negatively impacts their overall Bugcrowd experience. - Users experience **inadequate reporting** , facing delays in validation, communication, and payment, which can hinder timely resolutions. - Users find the **learning curve steep** with Bugcrowd, making it challenging for newcomers to effectively navigate and utilize the platform. #### What Are Recent G2 Reviews of Bugcrowd? **"[Bugcrowd Delivers Top-Notch Security Solutions for Robust Vulnerability Management](https://www.g2.com/survey_responses/bugcrowd-review-8940044)"** **Rating:** 5.0/5.0 stars *— Verified User in Information Technology and Services* [Read full review](https://www.g2.com/survey_responses/bugcrowd-review-8940044) --- **"[Empowers Vulnerability Management with Expert Community](https://www.g2.com/survey_responses/bugcrowd-review-12088640)"** **Rating:** 4.0/5.0 stars *— Mariam A.* [Read full review](https://www.g2.com/survey_responses/bugcrowd-review-12088640) --- ### 24. [SAFE](https://www.g2.com/products/safe-security-safe/reviews) SAFE has reinvented cyber risk management with Agentic AI. The company helps CISOs, TPRM, and GRC leaders become strategic business partners by automating the understanding, prioritization and management of cyber risk—accelerating AI adoption and digital transformation. SAFE is the #1 platform to unify the management of all cyber risks—enterprise, third-party, and AI-related—and deliver autonomous cyber risk management through a fleet of specialized AI agents. Its platform replaces manual effort with agentic automation, backed by the world’s most trusted risk standards. Trusted by hundreds of global organizations, SAFE has more than doubled revenue three years in a row and raised $100M+ to fuel the future of cyber risk automation. **Average Rating:** 4.4/5.0 **Total Reviews:** 59 **How Do G2 Users Rate SAFE?** - **Has the product been a good partner in doing business?:** 8.5/10 (Category avg: 9.2/10) - **Reporting:** 7.4/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 8.1/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.8/10 (Category avg: 8.8/10) **Who Is the Company Behind SAFE?** - **Seller:** [Safe Security](https://www.g2.com/sellers/safe-security) - **Year Founded:** 2012 - **HQ Location:** Palo Alto, US - **Twitter:** @safecrq (3,248 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/safesecurity-inc/ (1,217 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Hospital & Health Care - **Company Size:** 73% Enterprise, 13% Mid-Market #### What Are SAFE's Pros and Cons? **Pros:** - Risk Management (24 reviews) - Customer Support (13 reviews) - Features (11 reviews) - Integrations (11 reviews) - Ease of Use (10 reviews) **Cons:** - Missing Features (10 reviews) - Information Management (3 reviews) - Integration Issues (3 reviews) - Limited Customization (3 reviews) - Confusing Interface (2 reviews) ### What Do G2 Reviewers Say About SAFE? *AI-generated summary from verified user reviews* **Pros:** - Users value the **instant insights into cybersecurity risk** , enabling timely and effective decision-making in their organizations. - Users praise the **responsive and knowledgeable customer support** of SAFE, enhancing the overall onboarding and troubleshooting experience. - Users appreciate the **rich feature set** of SAFE, leveraging its AI integration for impactful risk analysis and decision-making. - Users appreciate the **integrations** of SAFE, which facilitate quick implementation and enhance risk assessment accuracy. - Users value the **ease of use** of SAFE, quickly gaining insightful risk assessments with minimal effort. **Cons:** - Users find the **missing features** of SAFE, like limited reporting flexibility and currency options, frustrating for their needs. - Users feel the **information management lacks granularity** and can be overwhelming, complicating data clarity and accessibility. - Users face **integration issues** with SAFE, struggling with limited data and complexity in connecting to other tools. - Users express concern over **limited customization** options in SAFE, hindering the ability to tailor their experience effectively. - Users find the **confusing interface** overwhelming initially, leading to difficulties in navigating risk assessments and group creation. #### What Are Recent G2 Reviews of SAFE? **"[Fast Customer Support, Automated FAIR Analysis, Real-time CTI informed TEF make SAFE the #1 CRQ tool](https://www.g2.com/survey_responses/safe-review-11385254)"** **Rating:** 5.0/5.0 stars *— Joshua C.* [Read full review](https://www.g2.com/survey_responses/safe-review-11385254) --- **"[Elevating risk management with a trusted partner.](https://www.g2.com/survey_responses/safe-review-11388553)"** **Rating:** 4.5/5.0 stars *— Zoe S.* [Read full review](https://www.g2.com/survey_responses/safe-review-11388553) --- #### What Are G2 Users Discussing About SAFE? - [What is an FME workflow?](https://www.g2.com/discussions/what-is-an-fme-workflow) - [Is FME a GIS?](https://www.g2.com/discussions/is-fme-a-gis) - [What can FME be used for?](https://www.g2.com/discussions/what-can-fme-be-used-for) - [How can I make software safe?](https://www.g2.com/discussions/how-can-i-make-software-safe) ### 25. [InsightVM (Nexpose)](https://www.g2.com/products/insightvm-nexpose/reviews) InsightVM is Rapid7’s vulnerability risk management offering that advances security through cross-department clarity, a deeper understanding of risk, and measurable progress. By informing and aligning technical teams, security teams can remediate vulnerabilities and build Security into the core of the organization. With InsightVM, security teams can: Gain Clarity Into Risk and Across Teams Better understand the risk in your modern environment so you can work in lockstep with technical teams. Extend Security’s Influence Align traditionally siloed teams and drive impact with the shared view and common language of InsightVM. See Shared Progress Take a proactive approach to security with tracking and metrics that create accountability and recognize progress. **Average Rating:** 4.4/5.0 **Total Reviews:** 69 **How Do G2 Users Rate InsightVM (Nexpose)?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Reporting:** 8.4/10 (Category avg: 8.8/10) - **Vulnerability Intelligence:** 9.1/10 (Category avg: 8.7/10) - **Risk-Prioritization:** 8.9/10 (Category avg: 8.8/10) **Who Is the Company Behind InsightVM (Nexpose)?** - **Seller:** [Rapid7](https://www.g2.com/sellers/rapid7) - **Year Founded:** 2000 - **HQ Location:** Boston, MA - **Twitter:** @rapid7 (124,405 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/39624/ (3,274 employees on LinkedIn®) - **Ownership:** NASDAQ:RPD **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 51% Enterprise, 32% Mid-Market #### What Are InsightVM (Nexpose)'s Pros and Cons? **Pros:** - Automation (4 reviews) - Vulnerability Identification (4 reviews) - Asset Management (3 reviews) - Features (3 reviews) - Prioritization (3 reviews) **Cons:** - Complexity (3 reviews) - Performance Issues (2 reviews) - Resource Limitations (2 reviews) - Resource Management (2 reviews) - Time-Consuming (2 reviews) ### What Do G2 Reviewers Say About InsightVM (Nexpose)? *AI-generated summary from verified user reviews* **Pros:** - Users value the **automation capabilities** of InsightVM, streamlining vulnerability remediation and enhancing their security workflow. - Users value the **real-time visibility** of InsightVM, enabling immediate detection and continuous monitoring of vulnerabilities. - Users value InsightVM's **effective asset management** , enabling seamless tracking and categorization of critical vulnerabilities. - Users value the **clear risk scoring and actionable dashboards** of InsightVM, enhancing asset management and tracking efficiency. - Users value the **clear prioritization of asset exposure** in InsightVM, enhancing visibility and risk management effectively. **Cons:** - Users find the **complexity of setup** challenging, leading to initial difficulties and a steep learning curve. - Users experience **performance issues** with heavy scans and dashboards, complicating administration and support response times. - Users struggle with **resource limitations** that demand careful tracking and optimization to enhance InsightVM's functionality. - Users find that **resource management can be tedious** with InsightVM, especially when memory consumption peaks unexpectedly. - Users find the **time-consuming nature** of scans and reports in InsightVM can hinder efficiency and optimization efforts. #### What Are Recent G2 Reviews of InsightVM (Nexpose)? **"[InsightVM’s Actionable Risk Scoring and Live Dashboards Impress](https://www.g2.com/survey_responses/insightvm-nexpose-review-11922296)"** **Rating:** 5.0/5.0 stars *— tali k.* [Read full review](https://www.g2.com/survey_responses/insightvm-nexpose-review-11922296) --- **"[Nexpose is an excellent tool that helps identify vulnerabilities.](https://www.g2.com/survey_responses/insightvm-nexpose-review-9779228)"** **Rating:** 5.0/5.0 stars *— Sagar U.* [Read full review](https://www.g2.com/survey_responses/insightvm-nexpose-review-9779228) --- #### What Are G2 Users Discussing About InsightVM (Nexpose)? - [What is InsightVM (Nexpose) used for?](https://www.g2.com/discussions/what-is-insightvm-nexpose-used-for) - 1 comment - [What is InsightVM?](https://www.g2.com/discussions/what-is-insightvm) - 1 comment - [What is nexpose InsightVM agent?](https://www.g2.com/discussions/what-is-nexpose-insightvm-agent) - [What is the difference between nexpose and InsightVM?](https://www.g2.com/discussions/what-is-the-difference-between-nexpose-and-insightvm) - [What can nexpose scan?](https://www.g2.com/discussions/what-can-nexpose-scan) ## What Is Risk-Based Vulnerability Management Software? [Vulnerability Management Software](https://www.g2.com/categories/vulnerability-management) ## What Software Categories Are Similar to Risk-Based Vulnerability Management Software? - [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner) - [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools) - [ Attack Surface Management Software](https://www.g2.com/categories/attack-surface-management)