# Best Vulnerability Scanner Software *By [Lauren Worth](https://research.g2.com/insights/author/lauren-worth)* Vulnerability scanners continuously monitor applications and networks against an up-to-date database of known vulnerabilities, identifying potential exploits, producing analytical reports on the security state of applications and networks, and providing recommendations to remedy known issues. ### Core Capabilities of Vulnerability Scanner Software To qualify for inclusion in the Vulnerability Scanner category, a product must: - Maintain a database of known vulnerabilities - Continuously scan applications for vulnerabilities - Produce reports analyzing known vulnerabilities and new exploits ### Common Use Cases for Vulnerability Scanner Software Security and IT teams use vulnerability scanners to proactively identify and address weaknesses before they can be exploited. Common use cases include: - Running scheduled and on-demand scans of applications and network infrastructure for known CVEs - Generating prioritized vulnerability reports to guide remediation efforts - Testing application and network security posture as part of ongoing compliance and risk management programs ### How Vulnerability Scanner Software Differs from Other Tools Some vulnerability scanners operate similarly to [dynamic application security testing (DAST)](https://www.g2.com/categories/dynamic-application-security-testing-dast) tools, but the key distinction is that vulnerability scanners test applications and networks against known vulnerability databases rather than mimicking real-world attacks or performing penetration tests. DAST tools simulate attacker behavior to uncover runtime vulnerabilities, while scanners focus on identification and reporting of known weaknesses. ### Insights from G2 on Vulnerability Scanner Software Based on category trends on G2, continuous scanning and comprehensive vulnerability reporting stand out as standout capabilities. Faster identification of critical exposures and improved compliance readiness stand out as primary benefits of adoption. ## Top Vulnerability Scanner Software at a Glance | # | Product | Rating | Best For | What Users Say | |---|---------|--------|----------|----------------| | 1 | [Wiz](https://www.g2.com/products/wiz-wiz/reviews) | 4.7/5.0 (809 reviews) | Risk-based cloud vulnerability prioritization with context | "[Wiz Delivers Clear Visibility Into Cloud Risks That Truly Matter](https://www.g2.com/survey_responses/wiz-review-12960477)" | | 2 | [Orca Security](https://www.g2.com/products/orca-security/reviews) | 4.7/5.0 (277 reviews) | Agentless cloud vulnerability scanning with contextual risk prioritization | "[Orca Security Review](https://www.g2.com/survey_responses/orca-security-review-12958487)" | | 3 | [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) | 4.5/5.0 (289 reviews) | Credentialed infrastructure scans with compliance auditing | "[Self-Contained Nessus Scanning with Full Control in Offline Environments](https://www.g2.com/survey_responses/tenable-nessus-review-12937668)" | | 4 | [Aikido Security](https://www.g2.com/products/aikido-security/reviews) | 4.6/5.0 (141 reviews) | Auto-triaged DevSecOps scanning with low false positives | "[Outstanding Free Tier Value with Clear, Actionable Security Findings](https://www.g2.com/survey_responses/aikido-security-review-12403232)" | | 5 | [Intruder](https://www.g2.com/products/intruder/reviews) | 4.8/5.0 (206 reviews) | Continuous vulnerability scanning with emerging threat detection | "[Outstanding Experience with No Drawbacks](https://www.g2.com/survey_responses/intruder-review-12097237)" | | 6 | [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) | 4.8/5.0 (110 reviews) | Runtime vulnerability detection in Kubernetes workloads | "[Next-Level Threat Detection: Bridging Runtime Security with Compliance Excellence](https://www.g2.com/survey_responses/sysdig-secure-review-10601664)" | | 7 | [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews) | 4.6/5.0 (191 reviews) | SaaS pentest certification with manual validation | "[Smooth, Automated Pen Testing with Astra’s Easy-to-Use Portal](https://www.g2.com/survey_responses/astra-pentest-review-12631139)" | | 8 | [Burp Suite](https://www.g2.com/products/burp-suite/reviews) | 4.8/5.0 (126 reviews) | Manual web application penetration testing workflows | "[Burp Suite Pro: A Powerful, All-in-One Platform for Web App Pen Testing](https://www.g2.com/survey_responses/burp-suite-review-12818180)" | | 9 | [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) | 4.5/5.0 (113 reviews) | Risk-based vulnerability prioritization with VPR scoring | "[Outstanding TVM Features and Support, Needs Better Asset Licensing Controls](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-11846361)" | | 10 | [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews) | 4.6/5.0 (92 reviews) | — | "[Quiet, Unobtrusive Endpoint Security That Just Works](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-12973136)" | --- ## What Are the Most Common Questions About Vulnerability Scanner Software? *AI-generated · Last updated: May 26, 2026* ### What platform provides detailed vulnerability reporting and analytics? Based on G2 reviews, several vulnerability scanner software products are praised for detailed reporting and clear visibility into findings. According to verified users, Tenable Nessus stands out for detailed reports, audit-friendly outputs, and remediation suggestions, while Intruder reviewers mention clear dashboards and practical reporting that help teams understand and act on issues quickly. G2 reviewers also mention Edgescan for trend reporting, time-to-resolve visibility, and dashboards that help track remediation progress over time. Buyers looking for strong reporting and analytics often value products that combine understandable findings with prioritization and historical visibility so teams can communicate risk clearly and manage remediation more efficiently. ### What platform integrates scanning with patch management systems? Based on G2 reviews, products in this category often support remediation workflows by helping teams connect findings to patching or operational processes. According to verified users, CyberSmart is noted for patch management alongside vulnerability visibility, helping teams see outdated systems and remediate them from the same workflow. G2 reviewers also mention ConnectSecure Vulnerability and Compliance Manager and APPCHECK as tools that support organized remediation, while Qualys and Tenable products are described as integrating findings into broader operational environments. Buyers evaluating vulnerability scanner software for this use case should prioritize products reviewers say make it easier to move from finding issues to coordinating fixes, especially when patching and compliance work need to stay tightly connected. ### What is the most affordable vulnerability scanner for SMBs? Based on G2 reviews, affordability for SMBs is usually described in terms of value, ease of setup, and reduced manual work rather than exact pricing. According to verified users, Aikido Security is frequently described as friendly for small and mid-sized businesses, with reviewers highlighting strong value and straightforward setup. G2 reviewers also mention Intruder as cost-effective and easy to operate, while Offensity is noted as an affordable way to stay on top of cyber risks without hiring dedicated experts. For SMB buyers, the strongest value signals in recent reviews come from products that combine simple onboarding, actionable findings, and automation that reduces the need for extra security staffing. **Here are some of the top-rated products on G2:** - [Aikido Security](https://www.g2.com/products/aikido-security/reviews/aikido-security-review-11660004) – reviewers describe it as suitable for SMBs with broad automated security testing and simple setup - [Intruder](https://www.g2.com/products/intruder/reviews/intruder-review-11847236) – users highlight cost-effective scanning, easy implementation, and low operational overhead - [Offensity](https://www.g2.com/products/offensity/reviews/offensity-review-11393651) – reviewers call out affordability and continuous automated scans for smaller teams ### Which vendor offers automated remediation guidance for vulnerabilities? Based on G2 reviews, several vendors are recognized for helping teams move from findings to fixes with clear remediation guidance. According to verified users, Wiz is frequently praised for actionable remediation steps, contextual prioritization, and guidance that helps security and engineering teams understand what to fix first. G2 reviewers also mention Tenable Nessus for helpful remediation tips and APPCHECK for making vulnerability assignment and management easier. Buyers looking for vulnerability scanner software with strong remediation support should focus on products reviewers say reduce manual triage, explain issues clearly, and provide practical next steps instead of only listing findings. ### Which solution supports vulnerability scanning for cloud environments? Based on G2 reviews, cloud vulnerability scanning is a major strength for multiple products in this category. According to verified users, Wiz is repeatedly praised for broad visibility across cloud environments, including vulnerabilities, misconfigurations, and risk prioritization in a single platform. G2 reviewers also mention Orca Security for agentless cloud scanning and centralized visibility, while Intruder and CrowdStrike Falcon Cloud Security are described as helping teams monitor cloud assets and workloads more effectively. Buyers focused on cloud use cases should look for recent review themes around fast onboarding, multi-cloud visibility, and the ability to prioritize real risks rather than simply generating large volumes of alerts. ### What is the top-rated vulnerability scanner for large organizations? Based on G2 reviews, Wiz appears most frequently in recent feedback and is consistently described as a strong fit for large, complex environments. According to verified users, it helps organizations unify cloud visibility, reduce alert fatigue, and prioritize risks across broad environments without adding heavy deployment friction. G2 reviewers mention benefits such as multi-cloud visibility, strong collaboration across security and engineering teams, and support for scaling security operations in complex estates. For large organizations, the most common recent themes are broad coverage, contextual prioritization, and the ability to consolidate multiple security workflows into one platform, all of which are repeatedly associated with Wiz in the supplied review set. ### What is the best vulnerability scanning tool for enterprise IT teams? Based on G2 reviews, Wiz is the strongest recent fit for enterprise IT teams because reviewers repeatedly describe it as helping large teams unify visibility, prioritize meaningful risks, and coordinate remediation across complex environments. According to verified users, it reduces noise by connecting vulnerabilities, misconfigurations, and exposures in context, which helps enterprise teams focus their efforts more effectively. G2 reviewers also mention fast onboarding, strong integrations, and better collaboration between security, infrastructure, and engineering teams. In the supplied review set, those enterprise-focused themes appear most consistently around Wiz, making it the clearest recent answer for buyers seeking a broad, scalable vulnerability scanner software platform. ### Which tool supports scanning for compliance with industry standards? Based on G2 reviews, several tools are used to support compliance-driven vulnerability scanning. According to verified users, Tenable Nessus is commonly mentioned for helping teams scan against recognized standards and create reports for audit and compliance use cases. G2 reviewers also mention Intruder for ongoing scanning tied to compliance workflows, CyberSmart for Cyber Essentials-related monitoring, and Wiz for supporting PCI, SOC, and broader compliance visibility in cloud environments. Buyers looking for compliance-focused vulnerability scanner software should prioritize tools reviewers say generate understandable reports, surface remediation clearly, and fit into recurring audit or certification processes without adding heavy manual work. ### Which vendor provides real-time vulnerability detection and alerts? Based on G2 reviews, real-time or continuously updated visibility is a common requirement for buyers who need fast response to new issues. According to verified users, Wiz is repeatedly described as providing rapid visibility into vulnerabilities and risks across cloud environments, with contextual prioritization that helps teams respond faster. G2 reviewers also mention Intruder for automatic scanning and timely notifications, while CyberSmart is noted for real-time style reporting on vulnerabilities and patching needs. For this use case, buyers should look for products that reviewers say combine continuous monitoring with useful alerts, so teams can act quickly without being buried in low-value noise. ### Which vulnerability scanner offers the most accurate network security assessments? Based on G2 reviews, Tenable Nessus is one of the clearest choices for accurate network-focused assessments. According to verified users, it is praised for high scanning accuracy, broad plugin coverage, clear reports, and fast identification of vulnerabilities across networks and hybrid environments. G2 reviewers mention that it helps uncover hidden issues, supports regular scanning, and provides actionable remediation tips that make findings easier to address. Other products in the dataset also support network visibility, but Nessus is the one most directly associated in recent reviews with accurate, dependable vulnerability assessments for network assets and infrastructure. ## How Many Vulnerability Scanner Software Products Does G2 Track? **Total Products under this Category:** 222 ### Category Stats (Jun 2026) - **Average Rating**: 4.58/5 The average rating of products in this category, based on all submitted ratings - **Top Trending Product**: CybaOps (+14.29%) - Among all products in this category, CybaOps recorded the largest rating increase compared to last month *Last updated: June 09, 2026* ## How Does G2 Rank Vulnerability Scanner Software Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 7,300+ Authentic Reviews - 222+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. ## Which Vulnerability Scanner Software Is Best for Your Use Case? - **Leader:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - **Highest Performer:** [BugDazz API Scanner](https://www.g2.com/products/bugdazz-api-scanner/reviews) - **Easiest to Use:** [Orca Security](https://www.g2.com/products/orca-security/reviews) - **Top Trending:** [Aikido Security](https://www.g2.com/products/aikido-security/reviews) - **Best Free Software:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews) --- **Sponsored** ### Intruder Intruder is an exposure management platform for scaling to mid-market businesses. Over 3000 companies - across all industries - use Intruder to find critical exposures, respond faster and prevent breaches. Unifying Attack Surface Management, Vulnerability Management and Cloud security into one powerful, easy to use platform, Intruder simplifies the complex task of securing an ever-expanding attack surface. Recognizing no two business are alike, Intruder provides real-time, accurate scanning combined with intelligent risk prioritization, ensuring businesses focus on the exposures that are most relevant to them. And our proactive approach limits the window of risk, continuously monitoring for new threats while eliminating the noise that slows teams down. Whether you're an IT Manager, in DevOps or a CISO, Intruder's easy setup and context-driven approach will free you up to focus on exposures that cause real breaches, not just technical vulnerabilities. Keeping you one step ahead of attackers. [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=1423&secure%5Bdisplayable_resource_id%5D=1423&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=page_category&secure%5Bplacement_resource_ids%5D%5B%5D=1423&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=27706&secure%5Bresource_id%5D=1423&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fvulnerability-scanner%2Ff%2Fmanual-application-testing&secure%5Btoken%5D=923f9838cedfd8326a5ccb970b994c8e5cdab2bf48d2abbe801e79b89ab4b508&secure%5Burl%5D=https%3A%2F%2Fwww.intruder.io%2F%3Futm_source%3Dg2%26utm_medium%3Dp_referral%26utm_campaign%3Dglobal%7Cfixed%7Cg2_clicks_2025&secure%5Burl_type%5D=free_trial) --- ## Vulnerability Scanner Software Features & Capabilities ### What are the Best Vulnerability Scanner Software with Compliance Testing? Allows users to scan applications and networks for specific compliance requirements. **Top-rated Vulnerability Scanner Software for Compliance Testing:** - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) [Explore Vulnerability Scanner Software with Compliance Testing](https://www.g2.com/categories/vulnerability-scanner/f/compliance-testing) ### What are the Best Vulnerability Scanner Software with Perimeter Scanning? Analyzes network devices, servers and operating systems for vulnerabilities. **Top-rated Vulnerability Scanner Software for Perimeter Scanning:** - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) [Explore Vulnerability Scanner Software with Perimeter Scanning](https://www.g2.com/categories/vulnerability-scanner/f/perimeter-scanning) ### What are the Best Vulnerability Scanner Software with Manual Application Testing? Allows users to perfrom hands-on live simulations and penetration tests. **Top-rated Vulnerability Scanner Software for Manual Application Testing:** - [Orca Security](https://www.g2.com/products/orca-security/reviews) - [Aikido Security](https://www.g2.com/products/aikido-security/reviews) - [Intruder](https://www.g2.com/products/intruder/reviews) [Explore Vulnerability Scanner Software with Manual Application Testing](https://www.g2.com/categories/vulnerability-scanner/f/manual-application-testing) ### What are the Best Vulnerability Scanner Software with Static Code Analysis? Scans application source code for security flaws without executing it. **Top-rated Vulnerability Scanner Software for Static Code Analysis:** - [Orca Security](https://www.g2.com/products/orca-security/reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) - [Aikido Security](https://www.g2.com/products/aikido-security/reviews) [Explore Vulnerability Scanner Software with Static Code Analysis](https://www.g2.com/categories/vulnerability-scanner/f/static-code-analysis) ### What are the Best Vulnerability Scanner Software with Automated Scans? Runs pre-scripted vulnerability scans without requiring manual work. **Top-rated Vulnerability Scanner Software for Automated Scans:** - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) [Explore Vulnerability Scanner Software with Automated Scans](https://www.g2.com/categories/vulnerability-scanner/f/automated-scans) ## What Are the Top-Rated Vulnerability Scanner Software Products in 2026? ### 1. [Wiz](https://www.g2.com/products/wiz-wiz/reviews) Wiz transforms cloud security for customers – including more than 50% of the Fortune 100 – by enabling a new operating model. With Wiz, organizations can democratize security across the development lifecycle, empowering them to build fast and securely. Its Cloud Native Application Protection Platform (CNAPP) consolidates CSPM, KSPM, CWPP, Vulnerability management, IaC scanning, CIEM, DSPM into a single platform. Wiz drives visibility, risk prioritization, and business agility. Protecting Your Cloud Environments Requires a Unified, Cloud Native Platform. Wiz connects to every cloud environment, scans every layer, and covers every aspect of your cloud security - including elements that normally require installing agents. Its comprehensive approach has all of these cloud security solutions built in. Hundreds of organizations worldwide, including 50 percent of the Fortune 100, to rapidly identify and remove critical risks in cloud environments. Its customers include Salesforce, Slack, Mars, BMW, Avery Dennison, Priceline, Cushman & Wakefield, DocuSign, Plaid, and Agoda, among others. Wiz is backed by Sequoia, Index Ventures, Insight Partners, Salesforce, Blackstone, Advent, Greenoaks, Lightspeed and Aglaé. Visit https://www.wiz.io for more information. **Average Rating:** 4.7/5.0 **Total Reviews:** 809 **How Do G2 Users Rate Wiz?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10) - **Detection Rate:** 8.8/10 (Category avg: 8.9/10) - **Automated Scans:** 9.0/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.8/10 (Category avg: 8.4/10) **Who Is the Company Behind Wiz?** - **Seller:** [Wiz](https://www.g2.com/sellers/wiz-76a0133b-42e5-454e-b5da-860e503471db) - **Company Website:** https://www.wiz.io/ - **Year Founded:** 2020 - **HQ Location:** New York, US - **Twitter:** @wiz_io (24,733 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/wizsecurity/ (3,383 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CISO, Security Engineer - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 54% Enterprise, 38% Mid-Market #### What Are Wiz's Pros and Cons? **Pros:** - Features (113 reviews) - Security (107 reviews) - Ease of Use (104 reviews) - Visibility (87 reviews) - Easy Setup (68 reviews) **Cons:** - Improvement Needed (35 reviews) - Feature Limitations (34 reviews) - Learning Curve (34 reviews) - Improvements Needed (29 reviews) - Complexity (27 reviews) ### What Do G2 Reviewers Say About Wiz? *AI-generated summary from verified user reviews* **Pros:** - Users love the **seamless integration** and **continuous innovation** of Wiz, enhancing security and compliance effortlessly. - Users value the **unparalleled security features** of Wiz, enhancing multi-cloud visibility and simplifying compliance management. - Users praise the **ease of use** of Wiz, enabling quick integration and seamless functionality for teams of all levels. - Users value the **enhanced visibility** Wiz offers, allowing for better risk management and security posture understanding. - Users find the **easy setup** of Wiz exceptionally quick, enhancing their overall cloud security experience effortlessly. **Cons:** - Users find that **improvement is needed** in usability and reporting functions, often struggling with confusing features and limitations. - Users note **feature limitations** in Wiz, urging for enhancements in DSPM, AI, and overall operational integration. - Users struggle with a steep **learning curve** in understanding the UX and data connections of Wiz. - Users note the need for **improvements in alert tuning and AI transparency** to enhance their experience with Wiz. - Users find the platform's **complexity** overwhelming, requiring time and training to navigate its numerous features effectively. #### What Are Recent G2 Reviews of Wiz? **"[Wiz Delivers Clear Visibility Into Cloud Risks That Truly Matter](https://www.g2.com/survey_responses/wiz-review-12960477)"** **Rating:** 4.5/5.0 stars *— Jason I.* [Read full review](https://www.g2.com/survey_responses/wiz-review-12960477) --- **"[Excellent Cloud Risk Visibility and Fast Insights with Wiz](https://www.g2.com/survey_responses/wiz-review-12964571)"** **Rating:** 4.5/5.0 stars *— Ruben F.* [Read full review](https://www.g2.com/survey_responses/wiz-review-12964571) --- ### 2. [Orca Security](https://www.g2.com/products/orca-security/reviews) The Orca Cloud Security Platform identifies, prioritizes, and remediates risks and compliance issues in workloads, configurations, and identities across your cloud estate spanning AWS, Azure, Google Cloud, Kubernetes, Alibaba Cloud, and Oracle Cloud. Orca offers the industry’s most comprehensive cloud security solution in a single platform — eliminating the need to deploy and maintain multiple point solutions. Orca is agentless-first, and connects to your environment in minutes using Orca’s patented SideScanning™ technology that provides deep and wide visibility into your cloud environment, without requiring agents. In addition, Orca can integrate with third-party agents for runtime visibility and protection for critical workloads. Orca is at the forefront of leveraging Generative AI for simplified investigations and accelerated remediation – reducing required skill levels and saving cloud security, DevOps, and development teams time and effort, while significantly improving security outcomes. As a Cloud Native Application Protection Platform (CNAPP), Orca consolidates many point solutions in one platform, including: CSPM, CWPP, CIEM, Vulnerability Management, Container and Kubernetes Security, DSPM, API Security, CDR, Multi-cloud Compliance, Shift Left Security, and AI-SPM. **Average Rating:** 4.7/5.0 **Total Reviews:** 277 **How Do G2 Users Rate Orca Security?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10) - **Detection Rate:** 8.8/10 (Category avg: 8.9/10) - **Automated Scans:** 9.2/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.7/10 (Category avg: 8.4/10) **Who Is the Company Behind Orca Security?** - **Seller:** [Orca Security](https://www.g2.com/sellers/orca-security) - **Company Website:** https://orca.security - **Year Founded:** 2019 - **HQ Location:** Portland, Oregon - **Twitter:** @orcasec (4,835 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/35573984/ (515 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer, CISO - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 48% Enterprise, 41% Mid-Market #### What Are Orca Security's Pros and Cons? **Pros:** - Ease of Use (37 reviews) - Features (33 reviews) - Security (29 reviews) - User Interface (22 reviews) - Visibility (22 reviews) **Cons:** - Improvement Needed (15 reviews) - Feature Limitations (12 reviews) - Limited Features (10 reviews) - Missing Features (10 reviews) - Ineffective Alerts (9 reviews) ### What Do G2 Reviewers Say About Orca Security? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of Orca Security, highlighting its simplicity and intuitive navigation experience. - Users appreciate the **intuitive interface** of Orca Security, enabling easy reporting and risk understanding without a learning curve. - Users value the **comprehensive cloud security features** of Orca Security, enhancing their security posture effectively. - Users appreciate the **user-friendly interface** of Orca Security, enjoying the ease of navigation and depth of insights. - Users appreciate Orca Security for its **visibility and comprehensive insights** , simplifying cloud security management and vulnerability identification. **Cons:** - Users find the **compliance modules slow** to load and desire improvements for better usability and efficiency. - Users find **feature limitations** in Orca Security, including insufficient vulnerability measures and difficulties in data reporting. - Users express frustration with **limited features** in Orca Security, including slow loading modules and incomplete support for assets. - Users highlight **missing features** in Orca Security, impacting functionality and user experience across various modules. - Users experience **ineffective alerts** from Orca, leading to fatigue and confusion due to duplication and lack of clarity. #### What Are Recent G2 Reviews of Orca Security? **"[Orca Security Review](https://www.g2.com/survey_responses/orca-security-review-12958487)"** **Rating:** 5.0/5.0 stars *— Serina T.* [Read full review](https://www.g2.com/survey_responses/orca-security-review-12958487) --- **"[Orca SideScanning: Fast, Agentless Multi-Cloud Visibility with Zero Blind Spots](https://www.g2.com/survey_responses/orca-security-review-12972841)"** **Rating:** 5.0/5.0 stars *— Shivam S.* [Read full review](https://www.g2.com/survey_responses/orca-security-review-12972841) --- #### What Are G2 Users Discussing About Orca Security? - [Where is Orca security based?](https://www.g2.com/discussions/where-is-orca-security-based) - 2 comments - [How much does Orca security cost?](https://www.g2.com/discussions/how-much-does-orca-security-cost) - 1 comment - [What is ORCA platform?](https://www.g2.com/discussions/what-is-orca-platform) - 1 comment - [What does Orca Security do?](https://www.g2.com/discussions/what-does-orca-security-do) - 1 comment ### 3. [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) Built for security practitioners, by security professionals, Nessus products by Tenable are the de-facto industry standard for vulnerability assessment. Nessus performs point-in-time assessments to help security professionals quickly and easily identify and fix vulnerabilities, including software flaws, missing patches, malware, and misconfigurations - across a variety of operating systems, devices, and applications. With features such as pre-built policies and templates, customizable reporting, group “snooze” functionality, and real-time updates, Nessus is designed to make vulnerability assessment simple, easy, and intuitive. The result: less time and effort to assess, prioritize, and remediate issues. **Average Rating:** 4.5/5.0 **Total Reviews:** 289 **How Do G2 Users Rate Tenable Nessus?** - **Has the product been a good partner in doing business?:** 8.7/10 (Category avg: 9.2/10) - **Detection Rate:** 8.9/10 (Category avg: 8.9/10) - **Automated Scans:** 9.0/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.4/10 (Category avg: 8.4/10) **Who Is the Company Behind Tenable Nessus?** - **Seller:** [Tenable](https://www.g2.com/sellers/tenable) - **Company Website:** https://www.tenable.com/ - **HQ Location:** Columbia, MD - **Twitter:** @TenableSecurity (87,752 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®) - **Ownership:** NASDAQ: TENB **Who Uses This Product?** - **Who Uses This:** Security Engineer, Network Engineer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 40% Mid-Market, 34% Enterprise #### What Are Tenable Nessus's Pros and Cons? **Pros:** - Vulnerability Identification (20 reviews) - Vulnerability Detection (18 reviews) - Ease of Use (16 reviews) - Automated Scanning (15 reviews) - Features (13 reviews) **Cons:** - Slow Scanning (7 reviews) - Expensive (6 reviews) - Limited Features (6 reviews) - Complexity (5 reviews) - False Positives (5 reviews) ### What Do G2 Reviewers Say About Tenable Nessus? *AI-generated summary from verified user reviews* **Pros:** - Users value the **robust vulnerability identification** capabilities of Tenable Nessus, ensuring effective security risk management. - Users value the **advanced vulnerability detection** capabilities of Tenable Nessus, enhancing their security risk management effectively. - Users enjoy the **ease of use** of Tenable Nessus, appreciating its simple setup and user-friendly interface. - Users value the **comprehensive automated scanning** capabilities of Tenable Nessus for identifying vulnerabilities across various devices. - Users appreciate the **robust scanning capabilities** of Nessus, valuing its extensive reporting and automation features. **Cons:** - Users find the **slow scanning** process time-consuming, especially in large environments, impacting overall productivity and requiring downtime. - Users note the **high costs** associated with running and maintaining Tenable Nessus, impacting overall accessibility. - Users find **limited features** in Tenable Nessus, restricting host numbers, scans, and capabilities for mobile app testing. - Users find the **complexity** of Nessus challenging, especially with advanced features and the steep learning curve required. - Users often deal with **false positives** , causing extra workload and complicating vulnerability management efforts. #### What Are Recent G2 Reviews of Tenable Nessus? **"[Self-Contained Nessus Scanning with Full Control in Offline Environments](https://www.g2.com/survey_responses/tenable-nessus-review-12937668)"** **Rating:** 4.0/5.0 stars *— Verified User in Higher Education* [Read full review](https://www.g2.com/survey_responses/tenable-nessus-review-12937668) --- **"[Reliable and Efficient Vulnerability Management Tool](https://www.g2.com/survey_responses/tenable-nessus-review-12989192)"** **Rating:** 5.0/5.0 stars *— Mohsin H.* [Read full review](https://www.g2.com/survey_responses/tenable-nessus-review-12989192) --- #### What Are G2 Users Discussing About Tenable Nessus? - [What is Nessus used for?](https://www.g2.com/discussions/what-is-nessus-used-for) - 1 comment - [What types of vulnerabilities are scanned by Nessus?](https://www.g2.com/discussions/what-types-of-vulnerabilities-are-scanned-by-nessus) - [Is there a free version of Nessus?](https://www.g2.com/discussions/is-there-a-free-version-of-nessus) - 2 comments - [What is an advantage of using Nessus?](https://www.g2.com/discussions/what-is-an-advantage-of-using-nessus) - [What does Nessus scan for?](https://www.g2.com/discussions/what-does-nessus-scan-for) - 1 comment ### 4. [Aikido Security](https://www.g2.com/products/aikido-security/reviews) Aikido Security is the developer-first security platform that unifies code, cloud, protection, and attack testing in one suite of best-in-class products. Built by developers for developers, Aikido helps teams of any size ship secure software faster, automate protection, and simulate real-world attacks with AI-driven precision. The platform’s proprietary AI cuts noise by 95%, delivers one-click fixes, and saves developers 10+ hours per week. Aikido Intel proactively uncovers vulnerabilities in open source packages before disclosure, helping secure more than 50,000 organizations worldwide, including Revolut, Niantic, Visma, Montblanc, and GoCardless. **Average Rating:** 4.6/5.0 **Total Reviews:** 141 **How Do G2 Users Rate Aikido Security?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10) - **Detection Rate:** 9.0/10 (Category avg: 8.9/10) - **Automated Scans:** 8.9/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.1/10 (Category avg: 8.4/10) **Who Is the Company Behind Aikido Security?** - **Seller:** [Aikido Security](https://www.g2.com/sellers/aikido-security) - **Company Website:** https://aikido.dev - **Year Founded:** 2022 - **HQ Location:** Ghent, Belgium - **Twitter:** @AikidoSecurity (11,770 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/aikido-security/ (241 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, Founder - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 70% Small-Business, 18% Mid-Market #### What Are Aikido Security's Pros and Cons? **Pros:** - Ease of Use (78 reviews) - Security (55 reviews) - Features (52 reviews) - Easy Integrations (47 reviews) - Easy Setup (47 reviews) **Cons:** - Missing Features (19 reviews) - Expensive (17 reviews) - Limited Features (16 reviews) - Pricing Issues (15 reviews) - Lacking Features (14 reviews) ### What Do G2 Reviewers Say About Aikido Security? *AI-generated summary from verified user reviews* **Pros:** - Users value the **ease of use** of Aikido Security, appreciating its clear insights and seamless integration into their workflows. - Users value the **reliable security findings** of Aikido Security, seamlessly enhancing their DevSecOps pipeline and workflows. - Users appreciate the **intuitive UI and comprehensive security features** of Aikido Security, making vulnerability management easy and efficient. - Users value the **easy integrations** with GitHub, allowing hassle-free management of repositories for both developers and non-developers. - Users find Aikido's setup process to be **exceptionally easy** , achieving integration and reports in under ten minutes. **Cons:** - Users note the **lack of advanced features** in Aikido Security, such as dark mode and in-depth analysis tools. - Users find the pricing **too expensive** for small businesses, making upgrades unjustifiable for many startups. - Users feel Aikido Security has **limited features** , especially in the free plan and advanced configuration options. - Users find the **pricing issues** significant, with steep costs making it difficult for small businesses to upgrade. - Users find Aikido Security to be **lacking features** , desiring more comprehensive analysis and advanced reporting capabilities. #### What Are Recent G2 Reviews of Aikido Security? **"[Outstanding Free Tier Value with Clear, Actionable Security Findings](https://www.g2.com/survey_responses/aikido-security-review-12403232)"** **Rating:** 5.0/5.0 stars *— Adham E.* [Read full review](https://www.g2.com/survey_responses/aikido-security-review-12403232) --- **"[Effortless Security Testing with Comprehensive Coverage](https://www.g2.com/survey_responses/aikido-security-review-12747129)"** **Rating:** 4.0/5.0 stars *— Dylan E.* [Read full review](https://www.g2.com/survey_responses/aikido-security-review-12747129) --- ### 5. [Intruder](https://www.g2.com/products/intruder/reviews) Intruder is an exposure management platform for scaling to mid-market businesses. Over 3000 companies - across all industries - use Intruder to find critical exposures, respond faster and prevent breaches. Unifying Attack Surface Management, Vulnerability Management and Cloud security into one powerful, easy to use platform, Intruder simplifies the complex task of securing an ever-expanding attack surface. Recognizing no two business are alike, Intruder provides real-time, accurate scanning combined with intelligent risk prioritization, ensuring businesses focus on the exposures that are most relevant to them. And our proactive approach limits the window of risk, continuously monitoring for new threats while eliminating the noise that slows teams down. Whether you're an IT Manager, in DevOps or a CISO, Intruder's easy setup and context-driven approach will free you up to focus on exposures that cause real breaches, not just technical vulnerabilities. Keeping you one step ahead of attackers. **Average Rating:** 4.8/5.0 **Total Reviews:** 206 **How Do G2 Users Rate Intruder?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10) - **Detection Rate:** 9.3/10 (Category avg: 8.9/10) - **Automated Scans:** 9.5/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 9.5/10 (Category avg: 8.4/10) **Who Is the Company Behind Intruder?** - **Seller:** [Intruder](https://www.g2.com/sellers/intruder) - **Company Website:** https://www.intruder.io - **Year Founded:** 2015 - **HQ Location:** London - **Twitter:** @intruder_io (979 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/6443623/ (84 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, Director - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 57% Small-Business, 36% Mid-Market #### What Are Intruder's Pros and Cons? **Pros:** - Ease of Use (41 reviews) - Vulnerability Detection (30 reviews) - Customer Support (25 reviews) - User Interface (24 reviews) - Vulnerability Identification (24 reviews) **Cons:** - Expensive (9 reviews) - Slow Scanning (8 reviews) - Licensing Issues (7 reviews) - False Positives (6 reviews) - Limited Features (6 reviews) ### What Do G2 Reviewers Say About Intruder? *AI-generated summary from verified user reviews* **Pros:** - Users find Intruder to be **super easy to configure** , facilitating quick setup and management of security tasks. - Users value the **easy configuration and automated vulnerability detection** in Intruder, streamlining security management significantly. - Users commend Intruder's **exceptional customer support** , noting quick responses and friendly assistance during their cybersecurity management. - Users value Intruder's **easy-to-use interface** , which simplifies security tasks and integrates seamlessly with existing tools. - Users appreciate the **easy vulnerability identification** of Intruder, ensuring timely detection of security issues across cloud resources. **Cons:** - Users find the service **expensive** and suggest alternative pricing models for better value. - Users face issues with **slow scanning** , leading to missed vulnerabilities and difficulties in testing mobile devices. - Users face challenges with **licensing issues** , needing time to understand the model for effective use. - Users experience **false positives** , leading to confusion as some minor vulnerabilities are prioritized like critical ones. - Users find the **limited features** of Intruder frustrating, especially regarding license understanding and reporting flexibility. #### What Are Recent G2 Reviews of Intruder? **"[Outstanding Experience with No Drawbacks](https://www.g2.com/survey_responses/intruder-review-12097237)"** **Rating:** 5.0/5.0 stars *— Nic H.* [Read full review](https://www.g2.com/survey_responses/intruder-review-12097237) --- **"[Intruder: Insightful Vulnerability Management Platform That Strengthens Security Operation](https://www.g2.com/survey_responses/intruder-review-12395645)"** **Rating:** 4.5/5.0 stars *— HALADU A.* [Read full review](https://www.g2.com/survey_responses/intruder-review-12395645) --- #### What Are G2 Users Discussing About Intruder? - [Who developed intruder?](https://www.g2.com/discussions/who-developed-intruder) - [What is an intruder in cyber security?](https://www.g2.com/discussions/what-is-an-intruder-in-cyber-security) - [Is intruder IO safe?](https://www.g2.com/discussions/is-intruder-io-safe) - 1 comment - [What is intruder software?](https://www.g2.com/discussions/what-is-intruder-software) - 1 comment ### 6. [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) Sysdig Secure is the real-time cloud-native application protection platform (CNAPP) trusted by organizations of all sizes around the world.. Built by the creators of Falco and Wireshark, Sysdig uniquely delivers runtime-powered visibility and agentic AI to stop cloud attacks instantly, not after the damage is done. With Sysdig, you can: - Stop threats in 2 seconds and respond in minutes - Cut vulnerability noise by 95% with runtime prioritization - Detect real risk instantly across workloads, identities, and misconfigurations - Close permissions gaps in under 2 minutes Sysdig Secure consolidates CSPM, CWPP, CIEM, vulnerability management, and threat detection into a single open, real-time platform. Unlike other CNAPPs, Sysdig connects signals across runtime, identity, and posture to eliminate blind spots, reduce tool sprawl, and accelerate innovation without compromise. No guesswork. No black boxes. Just cloud security, the right way. Learn more at https://sysdig.com **Average Rating:** 4.8/5.0 **Total Reviews:** 110 **How Do G2 Users Rate Sysdig Secure?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10) - **Detection Rate:** 9.5/10 (Category avg: 8.9/10) - **Automated Scans:** 9.5/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 9.5/10 (Category avg: 8.4/10) **Who Is the Company Behind Sysdig Secure?** - **Seller:** [Sysdig](https://www.g2.com/sellers/sysdig-715eaed9-9743-4f27-bd2b-d3730923ac3e) - **Company Website:** https://www.sysdig.com - **Year Founded:** 2013 - **HQ Location:** San Francisco, California - **Twitter:** @Sysdig (10,284 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/3592486/ (627 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 47% Enterprise, 40% Mid-Market #### What Are Sysdig Secure's Pros and Cons? **Pros:** - Security (32 reviews) - Vulnerability Detection (31 reviews) - Threat Detection (30 reviews) - Detection Efficiency (29 reviews) - Visibility (23 reviews) **Cons:** - Feature Limitations (10 reviews) - Complexity (9 reviews) - Missing Features (8 reviews) - Difficult Learning (7 reviews) - Feature Complexity (7 reviews) ### What Do G2 Reviewers Say About Sysdig Secure? *AI-generated summary from verified user reviews* **Pros:** - Users value the **advanced threat detection** and extensive scanning capabilities provided by Sysdig Secure for effective cloud protection. - Users value Sysdig Secure's **runtime threat detection and extensive scanning capabilities** , simplifying cloud and container security management. - Users value the **real-time threat detection** and comprehensive scanning capabilities of Sysdig Secure for enhanced security. - Users value the **exceptional detection efficiency** of Sysdig Secure, enhancing proactive security and risk management significantly. - Users value the **comprehensive visibility** Sysdig Secure provides for their containers and Kubernetes clusters. **Cons:** - Users note **feature limitations** , including UI quirks and the lack of agentless scanning and advanced dashboards. - Users find Sysdig Secure's **initial setup complexity** challenging, particularly for those without technical expertise. - Users highlight **missing features** like runtime detection and tracing capabilities, impacting overall effectiveness and performance. - Users find the **difficult learning** curve of Sysdig Secure challenging, impacting quick and intuitive threat analysis. - Users note the **complexity during setup and overwhelming interface** of Sysdig Secure can hinder effective use. #### What Are Recent G2 Reviews of Sysdig Secure? **"[Next-Level Threat Detection: Bridging Runtime Security with Compliance Excellence](https://www.g2.com/survey_responses/sysdig-secure-review-10601664)"** **Rating:** 5.0/5.0 stars *— Anil Z.* [Read full review](https://www.g2.com/survey_responses/sysdig-secure-review-10601664) --- **"[Excellent Real-Time Kubernetes Security Visibility and Threat Detection](https://www.g2.com/survey_responses/sysdig-secure-review-12711991)"** **Rating:** 5.0/5.0 stars *— Syed Shahid A.* [Read full review](https://www.g2.com/survey_responses/sysdig-secure-review-12711991) --- #### What Are G2 Users Discussing About Sysdig Secure? - [What does Sysdig Platform do?](https://www.g2.com/discussions/what-does-sysdig-platform-do) - [What Sysdig secure?](https://www.g2.com/discussions/what-sysdig-secure) - [Is Sysdig free?](https://www.g2.com/discussions/is-sysdig-free) - 1 comment - [What is Sysdig used for?](https://www.g2.com/discussions/what-is-sysdig-used-for) - 1 comment ### 7. [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews) Astra Security is a leading continuous penetration testing platform that combines AI-powered autonomous pentesting with certified expert-led assessments. Powered by Attack AI, trained on 6.8M+ security findings and insights from 5,000+ real-world pentests. Astra deploys intelligent agents that continuously discover, validate, prioritize, and help remediate vulnerabilities at scale. While AI handles speed and scale, Astra’s certified security experts focus on what automation alone cannot: complex business logic flaws, multi-step attack chains, advanced exploit paths, and emerging AI/LLM-specific threats. Built for modern engineering teams, Astra integrates directly into CI/CD workflows, enabling continuous security validation between releases instead of relying on outdated annual pentests. The platform delivers comprehensive DAST coverage across web applications, mobile apps, APIs, cloud infrastructure. Astra is CREST-accredited, CERT-IN empaneled, and a PCI ASV-certified vendor. Our team also led the development of the OWASP APTS framework, helping shape the industry standard for continuous security testing. Today, 1,500+ organizations across 70+ countries trust Astra Security, including Ford, Loom, CompTIA, Hitachi, HackerRank, and OLX. **Average Rating:** 4.6/5.0 **Total Reviews:** 191 **How Do G2 Users Rate Astra Pentest?** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.2/10) - **Detection Rate:** 8.7/10 (Category avg: 8.9/10) - **Automated Scans:** 8.9/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.7/10 (Category avg: 8.4/10) **Who Is the Company Behind Astra Pentest?** - **Seller:** [ASTRA IT, Inc.](https://www.g2.com/sellers/astra-it-inc) - **Company Website:** https://www.getastra.com/ - **Year Founded:** 2018 - **HQ Location:** New Delhi, IN - **Twitter:** @getastra (694 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/getastra/ (130 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, CEO - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 65% Small-Business, 29% Mid-Market #### What Are Astra Pentest's Pros and Cons? **Pros:** - Customer Support (65 reviews) - Vulnerability Detection (52 reviews) - Ease of Use (51 reviews) - Pentesting Efficiency (42 reviews) - Vulnerability Identification (38 reviews) **Cons:** - Poor Customer Support (12 reviews) - Poor Interface Design (10 reviews) - Slow Performance (8 reviews) - UX Improvement (7 reviews) - False Positives (6 reviews) ### What Do G2 Reviewers Say About Astra Pentest? *AI-generated summary from verified user reviews* **Pros:** - Users praise Astra Pentest for their **outstanding customer support** , highlighting responsiveness, flexibility, and collaborative engagement throughout the process. - Users value the **comprehensive and user-friendly dashboard** for real-time vulnerability insights and remediation guidance. - Users appreciate the **ease of use** of Astra Pentest, finding the platform intuitive and efficient for managing security vulnerabilities. - Users value the **efficiency of Astra Pentest** for proactive security, enabling timely vulnerability detection and resolution. - Users value the **thorough vulnerability identification** and detailed guidance provided by Astra Pentest's expert team. **Cons:** - Users report **poor customer support** , particularly noting delays in response times impacting their pentesting experience. - Users find the **poor interface design** of Astra Pentest challenging, hindering effective note-taking and clarity on rescans. - Users report **slow performance** of Astra Pentest, affecting report speed and overall experience significantly. - Users find the **UI lacking** , with issues like adding notes and confusion over rescan requirements impacting usability. - Users often face **false positives** with Astra Pentest, resulting in wasted time on issues that aren't truly vulnerabilities. #### What Are Recent G2 Reviews of Astra Pentest? **"[Thorough Pentesting with Clear, Actionable Reporting and Responsive Support](https://www.g2.com/survey_responses/astra-pentest-review-12963285)"** **Rating:** 5.0/5.0 stars *— Sevesh A.* [Read full review](https://www.g2.com/survey_responses/astra-pentest-review-12963285) --- **"[Smooth, Automated Pen Testing with Astra’s Easy-to-Use Portal](https://www.g2.com/survey_responses/astra-pentest-review-12631139)"** **Rating:** 5.0/5.0 stars *— Ashish R.* [Read full review](https://www.g2.com/survey_responses/astra-pentest-review-12631139) --- #### What Are G2 Users Discussing About Astra Pentest? - [What is Astra Pentest used for?](https://www.g2.com/discussions/what-is-astra-pentest-used-for) - 2 comments ### 8. [Burp Suite](https://www.g2.com/products/burp-suite/reviews) Burp Suite is a complete ecosystem for web application and API security testing, combining two products: Burp Suite DAST - a best-of-breed, precision DAST solution that automates runtime testing, and Burp Suite Professional - the industry-standard toolkit for manual penetration testing. Developed by PortSwigger, more than 85,000 security professionals rely on Burp Suite to find, verify, and understand vulnerabilities across complex modern web applications. Burp Suite DAST is PortSwigger’s enterprise dynamic application security testing (DAST) solution, purpose-built for continuous, automated scanning of web applications and APIs. Unlike many DAST solutions, which are part of a wider AST offering, Burp Suite DAST is not a bolt-on tool - instead it’s precision-built from over 20 years of dynamic testing experience. Burp Suite DAST reveals the runtime issues that static analysis tools miss, such as authentication flaws, configuration drift, and chained vulnerabilities. Built on the same proprietary scanning engine that powers Burp Suite Professional, it delivers precise, low-noise results that security teams trust. Key capabilities of Burp Suite DAST include: Continuous, automated scanning of web applications and APIs, integration with CI/CD pipelines and vulnerability management tools, flexible deployment across cloud, and on-premise environments, shared scanning logic and configurations between automated and manual testing, accurate, low-noise detection informed by PortSwigger Research. Burp Suite Professional complements DAST with deep manual testing capability. It’s the industry-standard toolkit for penetration testers, consultants, and AppSec engineers who need complete insight and flexibility when validating or exploring vulnerabilities. Findings discovered by DAST can be investigated and verified in Burp Suite Professional, ensuring every result is accurate, contextual, and actionable. Together, Burp Suite DAST and Burp Suite Professional create a unified ecosystem that delivers automation at breadth and manual depth where it counts. Burp Suite is built for AppSec teams who need scalable, trustworthy coverage across web and API environments, enabling a seamless handoff between automated and manual testing. **Average Rating:** 4.8/5.0 **Total Reviews:** 126 **How Do G2 Users Rate Burp Suite?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10) - **Detection Rate:** 8.6/10 (Category avg: 8.9/10) - **Automated Scans:** 8.6/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.0/10 (Category avg: 8.4/10) **Who Is the Company Behind Burp Suite?** - **Seller:** [PortSwigger](https://www.g2.com/sellers/portswigger) - **Company Website:** https://www.portswigger.net - **Year Founded:** 2008 - **HQ Location:** Knutsford, GB - **Twitter:** @Burp_Suite (138,186 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/portswigger-web-security/ (321 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Cyber Security Analyst - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 41% Mid-Market, 31% Small-Business #### What Are Burp Suite's Pros and Cons? **Pros:** - Ease of Use (12 reviews) - User Interface (8 reviews) - Testing Services (7 reviews) - Features (5 reviews) - Clear Interface (4 reviews) **Cons:** - Expensive (5 reviews) - Slow Performance (5 reviews) - High Learning Curve (2 reviews) - Learning Curve (2 reviews) - Limited Customization (2 reviews) ### What Do G2 Reviewers Say About Burp Suite? *AI-generated summary from verified user reviews* **Pros:** - Users laud the **user-friendly interface** of Burp Suite, making it easy for beginners to navigate and utilize effectively. - Users praise the **user-friendly interface** of Burp Suite, making traffic analysis accessible and efficient for beginners. - Users value the **deep automation and manual testing capabilities** of Burp Suite for comprehensive security assessments. - Users appreciate the **control and visibility** Burp Suite provides during web application testing, enhancing vulnerability discovery. - Users find Burp Suite's **clear interface** highly intuitive, enabling effective web application penetration testing with ease. **Cons:** - Users find Burp Suite **expensive, especially the Pro version** , which can be a barrier for students and independent learners. - Users experience **slow performance** with Burp Suite, especially on lower-end systems during extensive scans and plugin usage. - Users find the **steep learning curve** of Burp Suite challenging, especially for beginners navigating its complex features. - Users face a **steep learning curve** with Burp Suite, especially when starting with the proxy setup and tool workflow. - Users find the **limited customization** options in Burp Suite restrict their ability to tailor the tool to their needs. #### What Are Recent G2 Reviews of Burp Suite? **"[Burp Suite Pro: A Powerful, All-in-One Platform for Web App Pen Testing](https://www.g2.com/survey_responses/burp-suite-review-12818180)"** **Rating:** 4.5/5.0 stars *— Aryan S.* [Read full review](https://www.g2.com/survey_responses/burp-suite-review-12818180) --- **"[Complete Control Over Web Requests with Burp Suite](https://www.g2.com/survey_responses/burp-suite-review-12677559)"** **Rating:** 5.0/5.0 stars *— Arish B.* [Read full review](https://www.g2.com/survey_responses/burp-suite-review-12677559) --- #### What Are G2 Users Discussing About Burp Suite? - [What are the benefits and challenges of using BurpSuite for web application security?](https://www.g2.com/discussions/what-are-the-benefits-and-challenges-of-using-burpsuite-for-web-application-security) - [What is BurpSuite used for?](https://www.g2.com/discussions/burpsuite-what-is-burpsuite-used-for) - [What types of vulnerabilities can Burp Suite detect?](https://www.g2.com/discussions/what-types-of-vulnerabilities-can-burp-suite-detect) - [What is Burp Suite Professional?](https://www.g2.com/discussions/what-is-burp-suite-professional) - 1 comment - [Is BurpSuite free?](https://www.g2.com/discussions/is-burpsuite-free) - 2 comments ### 9. [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) Tenable Vulnerability Management provides a risk-based approach to identifying, prioritizing, and remediating vulnerabilities across your entire attack surface. Powered by Nessus technology and AI-driven analytics, it goes beyond CVSS scores to assess exploitability, asset criticality, and business impact—so you can focus on what matters most. With continuous visibility, automated scanning, and real-time risk insights, security teams can quickly expose and close critical vulnerabilities before they’re exploited. Advanced asset identification ensures accurate tracking in dynamic environments, while intuitive dashboards, comprehensive reporting, and seamless third-party integrations help streamline workflows. As a cloud-based solution, Tenable Vulnerability Management scales with your organization, empowering security teams to maximize efficiency, reduce risk, and improve resilience against evolving threats. **Average Rating:** 4.5/5.0 **Total Reviews:** 113 **How Do G2 Users Rate Tenable Vulnerability Management?** - **Has the product been a good partner in doing business?:** 8.6/10 (Category avg: 9.2/10) - **Detection Rate:** 9.0/10 (Category avg: 8.9/10) - **Automated Scans:** 9.3/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.7/10 (Category avg: 8.4/10) **Who Is the Company Behind Tenable Vulnerability Management?** - **Seller:** [Tenable](https://www.g2.com/sellers/tenable) - **Company Website:** https://www.tenable.com/ - **HQ Location:** Columbia, MD - **Twitter:** @TenableSecurity (87,752 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®) - **Ownership:** NASDAQ: TENB **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 55% Enterprise, 33% Mid-Market #### What Are Tenable Vulnerability Management's Pros and Cons? **Pros:** - Ease of Use (8 reviews) - Scanning Efficiency (8 reviews) - Features (6 reviews) - Automated Scanning (5 reviews) - Vulnerability Identification (5 reviews) **Cons:** - Expensive (4 reviews) - Inadequate Reporting (4 reviews) - Limited Reporting (4 reviews) - Pricing Issues (4 reviews) - Complexity (3 reviews) ### What Do G2 Reviewers Say About Tenable Vulnerability Management? *AI-generated summary from verified user reviews* **Pros:** - Users value the **user-friendly interface** of Tenable Vulnerability Management, making vulnerability prioritization and action effortless. - Users appreciate the **fast and efficient scanning process** of Tenable Vulnerability Management, enhancing their vulnerability management experience. - Users praise the **robust scanning capabilities** of Tenable Vulnerability Management, facilitating thorough assessments of diverse resources. - Users appreciate the **efficient automated scanning** capabilities of Tenable Vulnerability Management for internal and external resources. - Users value the **effective vulnerability identification** in Tenable Vulnerability Management, enhancing focus on critical security issues. **Cons:** - Users find the **pricing structure of Tenable Vulnerability Management overly expensive** , making it hard for tighter budgets. - Users find the **reporting capabilities inadequate** , requiring external processing for detailed insights into vulnerabilities. - Users find the **reporting capabilities limited** , requiring external processing for more detailed and personalized insights. - Users find **pricing issues** significant, noting high costs and complex licensing models that hinder budget management. - Users find the **complexity** of Tenable Vulnerability Management challenging, especially with the licensing and report refinement. #### What Are Recent G2 Reviews of Tenable Vulnerability Management? **"[Outstanding TVM Features and Support, Needs Better Asset Licensing Controls](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-11846361)"** **Rating:** 4.5/5.0 stars *— Joseph R.* [Read full review](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-11846361) --- **"[TVM Does What You Need](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561)"** **Rating:** 4.5/5.0 stars *— Verified User in Higher Education* [Read full review](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561) --- #### What Are G2 Users Discussing About Tenable Vulnerability Management? - [What is your primary use case for Tenable Vulnerability Management, and how has it impacted your security posture?](https://www.g2.com/discussions/what-is-your-primary-use-case-for-tenable-vulnerability-management-and-how-has-it-impacted-your-security-posture) - 1 comment - [What is Tenable.io used for?](https://www.g2.com/discussions/what-is-tenable-io-used-for) - 1 comment - [How much is tenable io?](https://www.g2.com/discussions/how-much-is-tenable-io) - [How do I link Nessus to tenable io?](https://www.g2.com/discussions/how-do-i-link-nessus-to-tenable-io) - [What is the difference between Nessus and tenable io?](https://www.g2.com/discussions/what-is-the-difference-between-nessus-and-tenable-io) ### 10. [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews) Crowdstrike Falcon Cloud Security is the only CNAPP to stop breaches in the cloud Built for today’s hybrid and multi-cloud environments, Falcon Cloud Security protects the entire cloud attack surface - from code to runtime - by combining continuous agentless visibility with real-time detection and response. At runtime, Falcon Cloud Security delivers best-in-class cloud workload protection and real-time cloud detection and response (CDR) to stop active threats across hybrid environments. Integrated with the CrowdStrike Falcon platform, it correlates signals across endpoint, identity, and cloud to detect sophisticated cross-domain attacks that point solutions miss—enabling teams to respond faster and stop breaches in progress. To reduce risk before attacks occur, Falcon Cloud Security also delivers agentless-driven posture management that proactively shrinks the cloud attack surface. Unlike typical solutions, Crowdstrike enriches cloud risk detections with adversary intelligence and graph-based context, enabling security teams to prioritize exploitable exposures and prevent breaches before they happen. Customers using Falcon Cloud Security consistently see measurable results: 89% faster cloud detection and response 100x reduction in false positives by prioritizing exploitable, business-critical risk 83% reduction in cloud security licenses due to elimination of redundant tools **Average Rating:** 4.6/5.0 **Total Reviews:** 92 **How Do G2 Users Rate CrowdStrike Falcon Cloud Security?** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.2/10) **Who Is the Company Behind CrowdStrike Falcon Cloud Security?** - **Seller:** [CrowdStrike](https://www.g2.com/sellers/crowdstrike) - **Company Website:** https://www.crowdstrike.com - **Year Founded:** 2011 - **HQ Location:** Sunnyvale, CA - **Twitter:** @CrowdStrike (110,809 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2497653/ (11,343 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 45% Enterprise, 41% Mid-Market #### What Are CrowdStrike Falcon Cloud Security's Pros and Cons? **Pros:** - Security (49 reviews) - Cloud Security (37 reviews) - Detection Efficiency (34 reviews) - Vulnerability Detection (31 reviews) - Ease of Use (29 reviews) **Cons:** - Expensive (17 reviews) - Improvements Needed (14 reviews) - Improvement Needed (13 reviews) - Feature Complexity (8 reviews) - Learning Curve (8 reviews) ### What Do G2 Reviewers Say About CrowdStrike Falcon Cloud Security? *AI-generated summary from verified user reviews* **Pros:** - Users value the **advanced threat detection capabilities** of CrowdStrike Falcon Cloud Security for protecting sensitive data effectively. - Users appreciate the **advanced threat detection capabilities** of CrowdStrike Falcon Cloud Security for effective cybersecurity management. - Users praise the **real-time threat detection** of CrowdStrike Falcon Cloud Security for its effectiveness in safeguarding sensitive data. - Users appreciate the **advanced vulnerability detection** of CrowdStrike Falcon Cloud Security for effectively safeguarding sensitive data. - Users value the **ease of use** of CrowdStrike Falcon Cloud Security, enjoying seamless deployment and management across endpoints. **Cons:** - Users find CrowdStrike Falcon Cloud Security to be **expensive** , making it a challenging choice for small businesses. - Users indicate a need for **improved support and training resources** as well as better response times and tuning options. - Users indicate that **improvement is needed** in CrowdStrike Falcon's support responsiveness and resources, highlighting potential for enhancement. - Users find the **feature complexity** of CrowdStrike Falcon Cloud Security overwhelming, requiring a steep learning curve for effective use. - Users find the **learning curve steep** , particularly for those unfamiliar with similar security tools, complicating the experience. #### What Are Recent G2 Reviews of CrowdStrike Falcon Cloud Security? **"[Smashing your head into a server rack? Admin, Meet Crowdstrike Falcon Cloud Security!](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-12609797)"** **Rating:** 5.0/5.0 stars *— Verified User in Consumer Goods* [Read full review](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-12609797) --- **"[Quiet, Unobtrusive Endpoint Security That Just Works](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-12973136)"** **Rating:** 4.0/5.0 stars *— Verified User in Computer Software* [Read full review](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-12973136) --- ### 11. [Pentera](https://www.g2.com/products/pentera/reviews) Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. Its customers include Casey's General Stores, Emeria, LuLu International Exchange, IP Telecom PT, BrewDog, City National Bank, Schmitz Cargobull, and MBC Group. Pentera is backed by leading investors such as K1 Investment Management, Insight Partners, Blackstone, Evolution Equity Partners, and AWZ. Visit https://pentera.io for more information. **Average Rating:** 4.5/5.0 **Total Reviews:** 169 **How Do G2 Users Rate Pentera?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Detection Rate:** 8.4/10 (Category avg: 8.9/10) - **Automated Scans:** 9.1/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 7.8/10 (Category avg: 8.4/10) **Who Is the Company Behind Pentera?** - **Seller:** [Pentera](https://www.g2.com/sellers/pentera) - **Company Website:** https://pentera.io/ - **Year Founded:** 2015 - **HQ Location:** Boston, MA - **Twitter:** @penterasec (3,291 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/penterasecurity/ (483 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Banking, Government Administration - **Company Size:** 52% Enterprise, 36% Mid-Market #### What Are Pentera's Pros and Cons? **Pros:** - Vulnerability Identification (5 reviews) - Automation (4 reviews) - Customer Support (4 reviews) - Improvement (4 reviews) - Automated Testing (3 reviews) **Cons:** - Inadequate Reporting (2 reviews) - Missing Features (2 reviews) - Resource Intensive (2 reviews) - Access Control (1 reviews) - Access Restrictions (1 reviews) ### What Do G2 Reviewers Say About Pentera? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **vulnerability scanning and remediation suggestions** provided by Pentera, enhancing overall security outcomes. - Users appreciate the **fully automated** features of Pentera, enhancing security testing and ensuring effective control responses. - Users praise the **responsive customer support** of Pentera, enhancing the overall experience with effective assistance. - Users value the **time-saving automation** and ease of use, enhancing their cybersecurity effectiveness and efficiency. - Users value the **fully automated testing** of Pentera, praising its quick implementation and user-friendly interface. **Cons:** - Users find the **reporting inadequate** in Pentera, suggesting a need for more informative and comprehensive dashboards. - Users feel the **missing features** in Pentera hinder functionality, citing lack of updates and limited accessibility options. - Users express concerns over Pentera's **high resource utilization** , impacting performance and system efficiency. - Users criticize the **limited access control** due to lack of robust RBAC and infrequent updates on vulnerabilities. - Users express concerns about **access restrictions** , noting a lack of robust role-based access control and new vulnerabilities. #### What Are Recent G2 Reviews of Pentera? **"[Cutting-Edge Security with a Real Attacker Approach](https://www.g2.com/survey_responses/pentera-review-12864952)"** **Rating:** 4.5/5.0 stars *— Yaron C.* [Read full review](https://www.g2.com/survey_responses/pentera-review-12864952) --- **"[Reliable Tool for Vulnerability Detection but Script Issues](https://www.g2.com/survey_responses/pentera-review-12864934)"** **Rating:** 4.0/5.0 stars *— Avitzur Y.* [Read full review](https://www.g2.com/survey_responses/pentera-review-12864934) --- ### 12. [SentinelOne Singularity Endpoint](https://www.g2.com/products/sentinelone-singularity-endpoint/reviews) SentinelOne (NYSE:S) is pioneering autonomous cybersecurity to prevent, detect, and respond to cyber attacks faster and with higher accuracy than ever before. The Singularity Platform protects and empowers leading global enterprises with real-time visibility, cross-platform correlation, and AI-powered response across endpoints, cloud workloads and containers, network-connected (IoT) devices and identity-centric attack surfaces. To learn more, visit www.sentinelone.com or follow us at @SentinelOne, on LinkedIn or Facebook. Over 9,250 customers, including 4 of the Fortune 10, hundreds of the Global 2000, prominent governments, healthcare providers, and educational institutions, trust SentinelOne to bring their defenses into the future, gaining more capability with less complexity. SentinelOne is a Leader in the Gartner Magic Quadrant for Endpoint Protection Platforms, and is a go-to platform across all customer profiles, as highlighted in Gartner’s Critical Capabilities report. SentinelOne continues to prove its industry-leading capabilities in the MITRE Engenuity ATT&CK® Evaluation, with 100% protection detection, 88% less noise, and zero delays in the 2024 MITRE ATT&CK Engenuity evaluations, demonstrating our dedication to keeping our customers ahead of threats from every vector. **Average Rating:** 4.7/5.0 **Total Reviews:** 195 **How Do G2 Users Rate SentinelOne Singularity Endpoint?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Detection Rate:** 9.5/10 (Category avg: 8.9/10) - **Automated Scans:** 8.7/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 7.6/10 (Category avg: 8.4/10) **Who Is the Company Behind SentinelOne Singularity Endpoint?** - **Seller:** [SentinelOne](https://www.g2.com/sellers/sentinelone) - **Company Website:** https://www.sentinelone.com - **Year Founded:** 2013 - **HQ Location:** Mountain View, CA - **Twitter:** @SentinelOne (57,863 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2886771/ (3,162 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 45% Mid-Market, 36% Enterprise #### What Are SentinelOne Singularity Endpoint's Pros and Cons? **Pros:** - Ease of Use (61 reviews) - Tool Efficiency (18 reviews) - Malware Protection (13 reviews) - Useful (13 reviews) - Performance (12 reviews) **Cons:** - Update Issues (13 reviews) - Difficult Learning (8 reviews) - Frequent Updates (7 reviews) - Agent Removal Issues (6 reviews) - Ineffective Alerts (6 reviews) ### What Do G2 Reviewers Say About SentinelOne Singularity Endpoint? *AI-generated summary from verified user reviews* **Pros:** - Users find the **system easy to implement** and appreciate its functionality across numerous endpoints in their organization. - Users praise the **efficiency of SentinelOne's threat detection** , highlighting its real-time capabilities and user-friendly interface. - Users commend SentinelOne for its **exceptional malware protection** , effectively safeguarding against various cyber threats and attacks. - Users find the **incident notification system** of SentinelOne Singularity Endpoint easy to use and highly effective. - Users commend the **excellent features and ease of use** of SentinelOne, enhancing overall security and support. **Cons:** - Users face **update issues** with SentinelOne, leading to login problems and inefficiencies in managing new versions. - Users find SentinelOne Singularity Endpoint has a **difficult learning curve** , making it challenging for beginners to navigate effectively. - Users face challenges with **frequent updates** , leading to login issues and adaptation struggles after each new version release. - Users face **agent removal issues** that can disrupt application functionality and complicate uninstallation processes. - Users face **ineffective alerts** from SentinelOne, complicating troubleshooting and leaving some applications blocked unexpectedly. #### What Are Recent G2 Reviews of SentinelOne Singularity Endpoint? **"[Strong - Reliable Endpoint Protection with Automation](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-12210547)"** **Rating:** 5.0/5.0 stars *— Harshul S.* [Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-12210547) --- **"[Autonomous Protection, Robust Security for Energy-Critical Systems](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-12707750)"** **Rating:** 5.0/5.0 stars *— Viral S.* [Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-12707750) --- #### What Are G2 Users Discussing About SentinelOne Singularity Endpoint? - [How does Sentinel one work?](https://www.g2.com/discussions/sentinelone-singularity-how-does-sentinel-one-work) - [How does Sentinel one work?](https://www.g2.com/discussions/how-does-sentinel-one-work) - [Is SentinelOne an antivirus?](https://www.g2.com/discussions/sentinelone-singularity-is-sentinelone-an-antivirus) - [Is SentinelOne an antivirus?](https://www.g2.com/discussions/is-sentinelone-an-antivirus) - 2 comments - [What is SentinelOne used for?](https://www.g2.com/discussions/sentinelone-singularity-what-is-sentinelone-used-for) ### 13. [SentinelOne Singularity Cloud Security](https://www.g2.com/products/sentinelone-singularity-cloud-security/reviews) Singularity Cloud Security is SentinelOne’s comprehensive, cloud-native application protection platform (CNAPP). It combines the best of agentless insights with AI-powered threat protection, to secure and protect your multi-cloud infrastructure, services, and containers from build time to runtime. SentinelOne’s CNAPP applies an attacker’s mindset to help security practitioners better prioritize their remediation tasks with evidence-backed Verified Exploit Paths™. The efficient and scalable runtime protection, proven over 5 years and trusted by many of the world’s leading cloud enterprises, harnesses local, autonomous AI engines to detect and thwart runtime threats in real-time. CNAPP data and workload telemetry is recorded to SentinelOne’s unified security lake, for easy access and investigation. **Average Rating:** 4.9/5.0 **Total Reviews:** 113 **How Do G2 Users Rate SentinelOne Singularity Cloud Security?** - **Has the product been a good partner in doing business?:** 9.9/10 (Category avg: 9.2/10) - **Detection Rate:** 9.8/10 (Category avg: 8.9/10) - **Automated Scans:** 9.8/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 9.9/10 (Category avg: 8.4/10) **Who Is the Company Behind SentinelOne Singularity Cloud Security?** - **Seller:** [SentinelOne](https://www.g2.com/sellers/sentinelone) - **Company Website:** https://www.sentinelone.com - **Year Founded:** 2013 - **HQ Location:** Mountain View, CA - **Twitter:** @SentinelOne (57,863 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2886771/ (3,162 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 60% Mid-Market, 31% Enterprise #### What Are SentinelOne Singularity Cloud Security's Pros and Cons? **Pros:** - Security (27 reviews) - Ease of Use (20 reviews) - Vulnerability Detection (19 reviews) - Cloud Management (16 reviews) - Cloud Security (15 reviews) **Cons:** - Complexity (5 reviews) - Ineffective Alerts (5 reviews) - Complex Setup (4 reviews) - Difficult Configuration (4 reviews) - Poor UI (4 reviews) ### What Do G2 Reviewers Say About SentinelOne Singularity Cloud Security? *AI-generated summary from verified user reviews* **Pros:** - Users value the **robust security capabilities** of SentinelOne Singularity Cloud Security, enhancing their cloud protection and compliance. - Users find **SentinelOne Singularity Cloud Security easy to use** , facilitating quick onboarding and efficient team collaboration. - Users appreciate the **automatic vulnerability detection** of SentinelOne Singularity Cloud Security, enhancing confidence in their cloud security measures. - Users value the **seamless cloud management** in PingSafe, enabling quick onboarding and continuous security for new accounts. - Users appreciate the **powerful automation and support** of SentinelOne Singularity Cloud Security, enhancing their cloud protection confidently. **Cons:** - Users find the **complexity of setup and configuration** in SentinelOne Singularity Cloud Security challenging, especially without expertise. - Users find that **ineffective alerts** require ongoing tuning and can complicate the overall user experience with the platform. - Users find the **complex setup** of SentinelOne Singularity Cloud Security to be time-consuming and challenging, especially for smaller teams. - Users find the **difficult configuration** of SentinelOne Singularity Cloud Security challenging, impacting initial setup and ongoing management. - Users find the **poor UI** of SentinelOne Singularity Cloud Security makes setup and navigation challenging and unintuitive. #### What Are Recent G2 Reviews of SentinelOne Singularity Cloud Security? **"[Effortless to Use and Highly Intuitive](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-12192686)"** **Rating:** 4.0/5.0 stars *— Devisri V.* [Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-12192686) --- **"[Easy Deployment, Seamless RMM Onboarding, and Great Value](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-12676743)"** **Rating:** 5.0/5.0 stars *— Randall D.* [Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-12676743) --- ### 14. [HackerOne Platform](https://www.g2.com/products/hackerone-hackerone-platform/reviews) HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). The HackerOne Platform unites agentic AI solutions with the ingenuity of the world’s largest community of security researchers to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems. Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming, and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, Crypto.com, General Motors, Goldman Sachs, Lufthansa, Uber, UK Ministry of Defence, and the U.S. Department of Defense, trust HackerOne to safeguard their digital ecosystems. HackerOne was recognized in Gartner’s Emerging Tech Impact Radar: AI Cybersecurity Ecosystem report for its leadership in AI Security Testing and has been named a Most Loved Workplace for Young Professionals (2024). **Average Rating:** 4.5/5.0 **Total Reviews:** 73 **How Do G2 Users Rate HackerOne Platform?** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.2/10) - **Detection Rate:** 7.5/10 (Category avg: 8.9/10) - **Automated Scans:** 6.7/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 7.9/10 (Category avg: 8.4/10) **Who Is the Company Behind HackerOne Platform?** - **Seller:** [HackerOne](https://www.g2.com/sellers/hackerone) - **Company Website:** https://hackerone.com - **Year Founded:** 2012 - **HQ Location:** San Francisco, California - **Twitter:** @Hacker0x01 (337,493 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/hackerone/ (6,738 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 42% Enterprise, 41% Mid-Market #### What Are HackerOne Platform's Pros and Cons? **Pros:** - Ease of Use (19 reviews) - Helpful (12 reviews) - Collaboration (11 reviews) - Security Protection (11 reviews) - Customer Support (10 reviews) **Cons:** - Complexity Issues (5 reviews) - Expensive (5 reviews) - Time Management (5 reviews) - Poor Customer Support (4 reviews) - Poor Interface Design (4 reviews) ### What Do G2 Reviewers Say About HackerOne Platform? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **streamlined interface** of HackerOne, facilitating effortless management of bug bounties and vulnerabilities. - Users value the **streamlined interface** of HackerOne for efficient bug management and effective collaboration with ethical hackers. - Users value the **collaborative community** of ethical hackers on HackerOne, enhancing security through effective teamwork and support. - Users highlight the **strong security protection** provided by HackerOne, enhancing their organization’s vulnerability management effectively. - Users value the **exceptional customer support** of HackerOne, providing guidance and assistance throughout the setup and operation. **Cons:** - Users find **complexity issues** in triage and credentials management can hinder their overall experience with HackerOne. - Users find HackerOne to be **expensive** , impacting budgets despite appreciating its valuable security features. - Users find that **time management issues** arise due to inconsistent triage and guidelines enforcement on HackerOne Platform. - Users criticize the **poor customer support** of HackerOne, highlighting slow responses and unresolved ticket issues. - Users find the **interface confusing** , leading to difficulties in navigating reports and using the platform effectively. #### What Are Recent G2 Reviews of HackerOne Platform? **"[Powerful Bug Bounty Platform with Room for Improvements](https://www.g2.com/survey_responses/hackerone-platform-review-12784912)"** **Rating:** 4.5/5.0 stars *— Mikhail Y.* [Read full review](https://www.g2.com/survey_responses/hackerone-platform-review-12784912) --- **"[Straightforward, Practical Vulnerability Management with Clear Visibility](https://www.g2.com/survey_responses/hackerone-platform-review-12788653)"** **Rating:** 5.0/5.0 stars *— Verified User in Automotive* [Read full review](https://www.g2.com/survey_responses/hackerone-platform-review-12788653) --- #### What Are G2 Users Discussing About HackerOne Platform? - [How many hackers are there in HackerOne?](https://www.g2.com/discussions/how-many-hackers-are-there-in-hackerone) - 2 comments, 1 upvote - [What is managed program in HackerOne?](https://www.g2.com/discussions/what-is-managed-program-in-hackerone) - [How many programs are managed by HackerOne?](https://www.g2.com/discussions/how-many-programs-are-managed-by-hackerone) - [What is the use of HackerOne?](https://www.g2.com/discussions/what-is-the-use-of-hackerone) ### 15. [Snyk](https://www.g2.com/products/snyk/reviews) Snyk (pronounced sneak) is a developer security platform for securing custom code, open source dependencies, containers, and cloud infrastructure all from a single platform. Snyk’s developer security solutions enable modern applications to be built securely, empowering developers to own and build security for the whole application, from code & open source to containers & cloud infrastructure. Secure while you code in your IDE: find issues quickly using the scanner, fix issues easily with remediation advice, verify the updated code. Integrate your source code repositories to secure applications: integrate a repository to find issues, prioritize with context, fix & merge. Secure your containers as you build, throughout the SDLC: start fixing containers as soon as your write a Dockerfile, continuously monitor container images throughout their lifecycle, and prioritize with context. Secure build and deployment pipelines: Integrate natively with your CI/CD tool, configure your rules, find & fix issues in your application, and monitor your applications. Secure your apps quickly with Snyk’s vulnerability scanning and automated fixes - Try for Free! **Average Rating:** 4.5/5.0 **Total Reviews:** 133 **How Do G2 Users Rate Snyk?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.2/10) - **Detection Rate:** 8.5/10 (Category avg: 8.9/10) - **Automated Scans:** 9.1/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.2/10 (Category avg: 8.4/10) **Who Is the Company Behind Snyk?** - **Seller:** [Snyk](https://www.g2.com/sellers/snyk) - **HQ Location:** Boston, Massachusetts - **Twitter:** @snyksec (21,057 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/10043614/ (1,370 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 44% Mid-Market, 35% Small-Business #### What Are Snyk's Pros and Cons? **Pros:** - Easy Integrations (5 reviews) - Vulnerability Detection (5 reviews) - Ease of Use (4 reviews) - User Interface (4 reviews) - Vulnerability Identification (4 reviews) **Cons:** - Expensive (3 reviews) - False Positives (3 reviews) - Poor Interface Design (2 reviews) - Pricing Issues (2 reviews) - Scanning Issues (2 reviews) ### What Do G2 Reviewers Say About Snyk? *AI-generated summary from verified user reviews* **Pros:** - Users enjoy the **easy integration** with GitHub, streamlining vulnerability management within their development processes. - Users appreciate Snyk's **rapid vulnerability detection** , ensuring quick identification and remediation of security issues in code. - Users find Snyk's interface highly **intuitive and easy to use** , enabling efficient vulnerability management and reporting. - Users appreciate the **intuitive UI** of Snyk, enhancing vulnerability management and reporting for development teams. - Users appreciate the **vulnerability identification** capabilities of Snyk, enhancing security and streamlining development processes. **Cons:** - Users note that Snyk can be **very expensive** , making it a significant investment for its full feature set. - Users experience **false positives** in Snyk's reports, leading to confusion and potential oversight of real vulnerabilities. - Users find the **poor interface design** of Snyk less integrated and needing improvement for a better experience. - Users find **high pricing issues** with Snyk's features, but consider it a worthwhile long-term investment. - Users experience **false positives in scans** , and the slow pipeline integration can hinder overall efficiency. #### What Are Recent G2 Reviews of Snyk? **"[Seamless DevSecOps with Smart PR Patching and Actionable Vulnerability Insights](https://www.g2.com/survey_responses/snyk-review-12669557)"** **Rating:** 4.0/5.0 stars *— Mainak S.* [Read full review](https://www.g2.com/survey_responses/snyk-review-12669557) --- **"[Seamless Dev-First Security with Fast Scans and Actionable Fixes](https://www.g2.com/survey_responses/snyk-review-12676270)"** **Rating:** 4.5/5.0 stars *— Prateek J.* [Read full review](https://www.g2.com/survey_responses/snyk-review-12676270) --- #### What Are G2 Users Discussing About Snyk? - [What is Snyk scanning?](https://www.g2.com/discussions/what-is-snyk-scanning) - 2 comments, 2 upvotes - [Is Snyk a SaaS?](https://www.g2.com/discussions/is-snyk-a-saas) - 2 comments - [How good is Snyk?](https://www.g2.com/discussions/how-good-is-snyk) - 2 comments - [What is Snyk used for?](https://www.g2.com/discussions/what-is-snyk-used-for) ### 16. [CyberSmart](https://www.g2.com/products/cybersmart/reviews) CyberSmart is the UK’s leading cybersecurity platform for small and medium-sized businesses and the organisations that support them. As the UK’s largest provider of Cyber Essentials certification and a National Ambassador to the Cyber Resilience Centres network, CyberSmart plays a central role in raising cyber maturity across the UK economy. We work closely with businesses, managed service providers, and government-backed initiatives to deliver practical, scalable cybersecurity that aligns with real-world commercial pressures. A recognised market leader in delivering Cyber Essentials and Cyber Essentials Plus at scale, CyberSmart helps organisations achieve trusted certification quickly and maintain continuous compliance long after the audit is complete. As regulatory requirements, supply chain scrutiny, and insurance expectations continue to increase, businesses need more than a point-in-time assessment - they need ongoing assurance. The CyberSmart platform brings together people, process and technology in one integrated solution. It combines always-on device monitoring, vulnerability management, automated patch management, security awareness training, certification, privacy management and streamlined access to cyber insurance. By unifying protection and compliance within a single platform, CyberSmart reduces tool sprawl, simplifies security operations, and provides clear, prioritised visibility into risk. CyberSmart also supports larger organisations and supply-chain assurance programmes by enabling certification at scale across supplier tiers, providing executive-level visibility of supplier risk, and leveraging a network of over 1,000 MSP partners to drive adoption without disrupting commercial relationships. Trusted by over 7,000 businesses and partners worldwide, CyberSmart delivers Complete Cyber Confidence - helping organisations stay secure, demonstrate compliance, and build measurable resilience over time. **Average Rating:** 4.4/5.0 **Total Reviews:** 50 **How Do G2 Users Rate CyberSmart?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10) - **Detection Rate:** 8.8/10 (Category avg: 8.9/10) - **Automated Scans:** 10.0/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 10.0/10 (Category avg: 8.4/10) **Who Is the Company Behind CyberSmart?** - **Seller:** [CyberSmart](https://www.g2.com/sellers/cybersmart) - **Year Founded:** 2016 - **HQ Location:** London, GB - **Twitter:** @CyberSmartUK (1,928 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/be-cybersmart (74 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 63% Small-Business, 21% Mid-Market #### What Are CyberSmart's Pros and Cons? **Pros:** - Ease of Use (34 reviews) - Customer Support (20 reviews) - Helpful (16 reviews) - Implementation Ease (14 reviews) - Setup Ease (12 reviews) **Cons:** - Technical Issues (8 reviews) - False Positives (7 reviews) - Expensive (6 reviews) - Pricing Issues (6 reviews) - Improvement Needed (5 reviews) ### What Do G2 Reviewers Say About CyberSmart? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of CyberSmart, simplifying management and reducing stress with its intuitive portal. - Users commend CyberSmart for its **quick and helpful customer support** , resolving issues efficiently and effectively. - Users value the **quick and helpful responses** from CyberSmart, enhancing efficiency in resolving client issues promptly. - Users praise the **implementation ease** of CyberSmart, noting quick setup and user-friendly navigation for stress-free management. - Users applaud the **quick and easy setup** of CyberSmart, making onboarding a breeze for teams. **Cons:** - Users report **technical issues** like false positives and unresponsive mobile app, complicating device management. - Users report frequent **false positives** , leading to unnecessary panic and confusion regarding device statuses. - Users find the **pricing to be quite high** , especially for CE+ audits and vulnerability management services. - Users feel that the **pricing structure** of CyberSmart is high, particularly for CE+ audits and vulnerability management. - Users report **improvement needed** as the app occasionally shows false positives and misidentifies user accounts. #### What Are Recent G2 Reviews of CyberSmart? **"[CyberSmart Makes Security Compliance Simple with Clear, Actionable Guidance](https://www.g2.com/survey_responses/cybersmart-review-12381456)"** **Rating:** 5.0/5.0 stars *— Connor S.* [Read full review](https://www.g2.com/survey_responses/cybersmart-review-12381456) --- **"[Streamlines Certification with Minimal Setup](https://www.g2.com/survey_responses/cybersmart-review-12396205)"** **Rating:** 4.0/5.0 stars *— Scott H.* [Read full review](https://www.g2.com/survey_responses/cybersmart-review-12396205) --- #### What Are G2 Users Discussing About CyberSmart? - [What is CyberSmart used for?](https://www.g2.com/discussions/what-is-cybersmart-used-for) ### 17. [Amazon Inspector](https://www.g2.com/products/amazon-inspector/reviews) Amazon Inspector is an automated vulnerability management service that continuously scans AWS workloads—including Amazon EC2 instances, container images in Amazon ECR, AWS Lambda functions, and code repositories—for software vulnerabilities and unintended network exposure. By integrating seamlessly with AWS environments, it provides real-time detection and prioritization of security issues, enabling organizations to enhance their security posture efficiently. Key Features and Functionality: - Automated Discovery and Continuous Scanning: Automatically identifies and assesses AWS resources for vulnerabilities and network exposures, ensuring comprehensive coverage without manual intervention. - Contextualized Risk Scoring: Generates risk scores by correlating vulnerability data with environmental factors such as network accessibility and exploitability, aiding in the prioritization of remediation efforts. - Integration with AWS Services: Seamlessly integrates with AWS Security Hub and Amazon EventBridge, facilitating automated workflows and centralized management of security findings. - Support for Multiple Resource Types: Extends vulnerability management to various AWS services, including EC2 instances, container images, Lambda functions, and code repositories, providing a unified security assessment across the cloud environment. - Agentless Scanning for EC2 Instances: Offers continuous monitoring of EC2 instances for software vulnerabilities without the need for installing additional agents, simplifying deployment and maintenance. Primary Value and Problem Solved: Amazon Inspector addresses the critical need for continuous and automated vulnerability management within AWS environments. By providing real-time detection and prioritization of security issues, it enables organizations to proactively identify and remediate vulnerabilities, reducing the risk of security breaches and ensuring compliance with industry standards. Its integration with existing AWS services and support for various resource types streamline security operations, allowing teams to focus on strategic initiatives while maintaining a robust security posture. **Average Rating:** 4.4/5.0 **Total Reviews:** 24 **How Do G2 Users Rate Amazon Inspector?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Detection Rate:** 9.2/10 (Category avg: 8.9/10) - **Automated Scans:** 9.2/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 7.8/10 (Category avg: 8.4/10) **Who Is the Company Behind Amazon Inspector?** - **Seller:** [Amazon Web Services (AWS)](https://www.g2.com/sellers/amazon-web-services-aws-3e93cc28-2e9b-4961-b258-c6ce0feec7dd) - **Year Founded:** 2006 - **HQ Location:** Seattle, WA - **Twitter:** @awscloud (2,232,483 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/amazon-web-services/ (156,424 employees on LinkedIn®) - **Ownership:** NASDAQ: AMZN **Who Uses This Product?** - **Top Industries:** Computer Software - **Company Size:** 42% Small-Business, 35% Mid-Market #### What Are Amazon Inspector's Pros and Cons? **Pros:** - Security Protection (3 reviews) - Customer Support (2 reviews) - Centralization Management (1 reviews) - Collaboration (1 reviews) - Security (1 reviews) **Cons:** - Complexity (1 reviews) - Complexity Issues (1 reviews) - Learning Curve (1 reviews) - Limited Features (1 reviews) - Not User-Friendly (1 reviews) ### What Do G2 Reviewers Say About Amazon Inspector? *AI-generated summary from verified user reviews* **Pros:** - Users value the **comprehensive security insights** from Amazon Inspector, enhancing their ability to manage vulnerabilities effectively. - Users appreciate the **excellent customer support** from AWS, which enhances their experience and confidence in using the service. - Users value the **centralized management** of logs in Amazon Inspector, enhancing visibility and compliance across the environment. - Users value the **collaborative monitoring capabilities** of Amazon Inspector, enhancing security awareness and risk management. - Users appreciate the **easy setup and automatic security issue detection** , making it simple to maintain security standards. **Cons:** - Users highlight the **complexity** of configuring AWS security features, necessitating skilled admins to ensure proper setup. - Users find the **complexity issues** of Amazon Inspector challenging, often requiring skilled administrators for proper configuration. - Users find the **steep learning curve** of Amazon Inspector challenging, requiring well-trained admins for effective use. - Users find **limited features** in Amazon Inspector, which restrict the service's effectiveness in handling sensitive documents. - Users find Amazon Inspector **not user-friendly** , as the complexity requires trained admins for effective configuration and security. #### What Are Recent G2 Reviews of Amazon Inspector? **"[Amazon Inspector - user review](https://www.g2.com/survey_responses/amazon-inspector-review-11821851)"** **Rating:** 4.5/5.0 stars *— Roshan R.* [Read full review](https://www.g2.com/survey_responses/amazon-inspector-review-11821851) --- **"[Easy AWS Integration with Clear Vulnerability Reporting](https://www.g2.com/survey_responses/amazon-inspector-review-12534377)"** **Rating:** 4.0/5.0 stars *— Verified User in Information Technology and Services* [Read full review](https://www.g2.com/survey_responses/amazon-inspector-review-12534377) --- ### 18. [Qualys WAS](https://www.g2.com/products/qualys-was/reviews) Qualys WAS is Qualys's platform for end-to-end web application scanning. **Average Rating:** 4.5/5.0 **Total Reviews:** 19 **How Do G2 Users Rate Qualys WAS?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10) - **Detection Rate:** 9.1/10 (Category avg: 8.9/10) - **Automated Scans:** 9.6/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.2/10 (Category avg: 8.4/10) **Who Is the Company Behind Qualys WAS?** - **Seller:** [Qualys](https://www.g2.com/sellers/qualys) - **Year Founded:** 1999 - **HQ Location:** Foster City, CA - **Twitter:** @qualys (34,248 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/8561/ (3,627 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 45% Mid-Market, 35% Enterprise #### What Are Recent G2 Reviews of Qualys WAS? **"[The best web application scanning system](https://www.g2.com/survey_responses/qualys-was-review-8325914)"** **Rating:** 5.0/5.0 stars *— Muhammed S.* [Read full review](https://www.g2.com/survey_responses/qualys-was-review-8325914) --- **"[Best Software for Vulnerability Management](https://www.g2.com/survey_responses/qualys-was-review-8158576)"** **Rating:** 5.0/5.0 stars *— Victor Hugo M.* [Read full review](https://www.g2.com/survey_responses/qualys-was-review-8158576) --- #### What Are G2 Users Discussing About Qualys WAS? - [What is the 6 step lifecycle of Qualys vulnerability management?](https://www.g2.com/discussions/what-is-the-6-step-lifecycle-of-qualys-vulnerability-management) - [What are the advantages of the global asset inventory application?](https://www.g2.com/discussions/what-are-the-advantages-of-the-global-asset-inventory-application) - [What are the typical features offered by vulnerability scanner?](https://www.g2.com/discussions/what-are-the-typical-features-offered-by-vulnerability-scanner) - 1 comment ### 19. [Tenable Security Center](https://www.g2.com/products/tenable-security-center/reviews) Tenable Security Center (formerly Tenable.sc) is the industry's most comprehensive risk-based vulnerability management (RBVM) solution, enabling you to: • See all your vulnerabilities and continuously assess all assets the moment they join the network -- including transient devices that aren’t regularly connected • Predict what matters by understanding vulnerabilities in the context of business risk, as well as the criticality of affected assets • Act on each high priority vulnerability to effectively manage risk, and measure KPIs to effectively communicate effectiveness Legacy vulnerability management tools weren't designed to handle the modern attack surface and the growing number of threats that come with them. Instead, they’re limited to a theoretical view of risk, leading security teams to waste the majority of their time chasing after the wrong issues while missing many of the most critical vulnerabilities that pose the greatest risk to the business. By taking a risk-based approach to vulnerability management, Tenable.sc enables security teams to focus on the vulnerabilities and assets that matter most, so they can address the organization’s true business risk instead of wasting their valuable time on vulnerabilities that have a low likelihood of being exploited. Tenable delivers the most comprehensive risk-based vulnerability management solution available to help you prioritize your remediation efforts, so you can take decisive action to reduce the greatest amount of business risk with the least amount of effort. **Average Rating:** 4.6/5.0 **Total Reviews:** 73 **How Do G2 Users Rate Tenable Security Center?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.2/10) - **Detection Rate:** 8.8/10 (Category avg: 8.9/10) - **Automated Scans:** 9.1/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.9/10 (Category avg: 8.4/10) **Who Is the Company Behind Tenable Security Center?** - **Seller:** [Tenable](https://www.g2.com/sellers/tenable) - **HQ Location:** Columbia, MD - **Twitter:** @TenableSecurity (87,752 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®) - **Ownership:** NASDAQ: TENB **Who Uses This Product?** - **Top Industries:** Computer & Network Security, Banking - **Company Size:** 59% Enterprise, 24% Mid-Market #### What Are Tenable Security Center's Pros and Cons? **Pros:** - Features (2 reviews) - Compliance Management (1 reviews) - Customer Support (1 reviews) - Cybersecurity (1 reviews) - Dashboard Design (1 reviews) **Cons:** - Complexity (1 reviews) - Complex Queries (1 reviews) - Complex Setup (1 reviews) - Difficult Setup (1 reviews) - Integration Issues (1 reviews) ### What Do G2 Reviewers Say About Tenable Security Center? *AI-generated summary from verified user reviews* **Pros:** - Users value the **informative dashboard** and features like compliance scans and easy scanner management in Tenable Security Center. - Users value the **compliance scanning capabilities** of Tenable Security Center for meeting essential standards like ISO 27001. - Users praise the **responsive customer support** for effectively addressing queries and licensing concerns. - Users value the **compliance scanning features** of Tenable Security Center, ensuring alignment with ISO 27001 and audit needs. - Users value the **informative dashboard** of Tenable Security Center, providing a comprehensive overview of essential data. **Cons:** - Users find the **complexity of installation and documentation** challenging, impacting their overall experience with Tenable Security Center. - Users find the **complexity of queries** in Tenable Security Center hampers troubleshooting and support efforts significantly. - Users find the **complex setup** process challenging, often requiring significant time and assistance to navigate. - Users report a **difficult setup** process, citing complex documentation and installation issues requiring significant effort to resolve. - Users report **integration issues** with Tenable Security Center, including complex installation and challenging documentation. #### What Are Recent G2 Reviews of Tenable Security Center? **"[Comprehensive Review of Tenable Security Center: Features, Benefits, and Insights](https://www.g2.com/survey_responses/tenable-security-center-review-10789575)"** **Rating:** 4.5/5.0 stars *— Kiran R.* [Read full review](https://www.g2.com/survey_responses/tenable-security-center-review-10789575) --- **"[Unified Vulnerability Dashboard with Clear, Standardized Reporting](https://www.g2.com/survey_responses/tenable-security-center-review-12601930)"** **Rating:** 4.5/5.0 stars *— Kenneth W.* [Read full review](https://www.g2.com/survey_responses/tenable-security-center-review-12601930) --- #### What Are G2 Users Discussing About Tenable Security Center? - [What is Tenable.sc used for?](https://www.g2.com/discussions/tenable-security-center-what-is-tenable-sc-used-for) - 1 comment - [What are tenable plugins?](https://www.g2.com/discussions/what-are-tenable-plugins) - [What is the difference between Nessus and tenable io?](https://www.g2.com/discussions/tenable-sc-what-is-the-difference-between-nessus-and-tenable-io) - [What database does tenable SC use?](https://www.g2.com/discussions/what-database-does-tenable-sc-use) - [What is tenable SC used for?](https://www.g2.com/discussions/what-is-tenable-sc-used-for) ### 20. [Edgescan](https://www.g2.com/products/edgescan/reviews) What Is Edgescan? Edgescan is a cybersecurity company that helps organizations proactively identify, validate, and prioritize vulnerabilities across their applications, API’s and digital landscape. The company specializes in continuous vulnerability assessment, automated penetration testing, Attack Surface Management and Penetration Testing as a Service (PTaaS). Edgescan combines advanced automation with certified security experts, including professionals holding credentials such as CREST and OSCP, to deliver highly accurate and actionable security testing. This hybrid approach allows organizations to move beyond traditional point-in-time penetration tests and operate a continuous proactive cybersecurity program. The Edgescan platform is designed primarily for web application and API security, enabling organizations to continuously assess their attack surface and identify vulnerabilities throughout the development lifecycle but also delivers “full stack” coverage to detect host layer CVE’s. With a client retention rate of over 90%, Edgescan has built long-term partnerships by delivering measurable improvements in security efficiency, risk visibility, and vulnerability management. Key Features and Capabilities of Edgescan Automated Penetration Testing Edgescan uses intelligent automation to continuously assess applications, APIs, hosts, and cloud environments for vulnerabilities. This enables frequent, scalable security testing across modern and distributed architectures. Human‑Validated Testing Findings are reviewed and manually validated by certified security experts to eliminate false positives and provide deeper insight into real‑world exploitability. Each result is accurate, contextual, and actionable. Penetration Testing as a Service (PTaaS) Edgescan’s PTaaS model extends beyond automated testing by allowing expert testers to focus on vulnerabilities that require human analysis, including: • Business logic flaws • Authentication and authorization weaknesses • Context-dependent exposures • Complex attack chains and privilege escalation paths Cyber Analytics and AI‑Assisted Validation AI-driven analysis enhances detection, verifies exploitability, and increases accuracy. This reduces noise and gives security teams a clearer picture of genuine threats. Integrated Threat Intelligence Edgescan correlates vulnerabilities with real-world threat intelligence, including known exploits and ransomware activity to help organizations prioritize the most dangerous exposures first. Risk‑Based Prioritization Findings are prioritized based on exploitability, severity, threat context, and business impact, ensuring teams focus on the issues that matter most. Primary Value: What Edgescan Solves for Clients Edgescan enables organizations to shift from reactive vulnerability management to a continuous, proactive security model. Traditional scanners and periodic penetration tests frequently produce large volumes of unvalidated findings. This creates noise and forces security teams to spend hours determining which issues are real and critical. Edgescan solves this by combining: Automation for continuous testing Human expertise for validation and complex analysis Cyber analytics and AI for accuracy and prioritization Key Benefits Significant efficiency gains: reducing thousands of hours spent on manual validation. Higher accuracy, thanks to expert‑validated findings and reduced false positives. Clear prioritization, using threat intelligence and ransomware insights to highlight the highest‑risk exposures. Continuous security improvement, enabling rapid detection, faster remediation, and scalable vulnerability management. By unifying automation, human expertise, AI, and threat intelligence, Edgescan empowers organizations to maintain a continuous cybersecurity program that strengthens overall security posture while dramatically reducing operational burden. **Average Rating:** 4.7/5.0 **Total Reviews:** 51 **How Do G2 Users Rate Edgescan?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) - **Detection Rate:** 9.3/10 (Category avg: 8.9/10) - **Automated Scans:** 9.6/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.3/10 (Category avg: 8.4/10) **Who Is the Company Behind Edgescan?** - **Seller:** [Edgescan](https://www.g2.com/sellers/edgescan) - **Company Website:** https://www.edgescan.com - **Year Founded:** 2017 - **HQ Location:** Dublin, Dublin - **Twitter:** @edgescan (2,256 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2928425/ (88 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 32% Enterprise, 32% Mid-Market #### What Are Edgescan's Pros and Cons? **Pros:** - Ease of Use (25 reviews) - Vulnerability Detection (24 reviews) - Customer Support (19 reviews) - Vulnerability Identification (19 reviews) - Features (18 reviews) **Cons:** - Complex UI (5 reviews) - Limited Customization (5 reviews) - Poor Interface Design (5 reviews) - Slow Performance (5 reviews) - UX Improvement (5 reviews) ### What Do G2 Reviewers Say About Edgescan? *AI-generated summary from verified user reviews* **Pros:** - Users find Edgescan's **ease of use** beneficial, with a simple interface that facilitates quick, effective navigation and access to information. - Users appreciate the **automated vulnerability detection** in Edgescan, which simplifies security management and enhances team communication. - Users commend the **excellent customer support** from Edgescan, noting their responsiveness and proactive assistance for various needs. - Users value the **automated vulnerability identification** feature, enhancing efficiency and clarity in managing security risks. - Users appreciate the **robust and intuitive interface** of Edgescan, making security assessments streamlined and efficient. **Cons:** - Users find the **complex UI** challenging initially, noting difficulty in navigation and a need for improvement. - Users experience **limited customization** options in Edgescan, affecting the ability to tailor functionality to specific needs. - Users find the **poor interface design** of Edgescan challenging, affecting usability and accessibility of essential features. - Users note that the **slow performance** of Edgescan's scans can lead to longer wait times for results. - Users find the **UI not user friendly** , highlighting difficulties in navigation and the need for improvements in dashboard functionality. #### What Are Recent G2 Reviews of Edgescan? **"[Edgescan Is Amazing!](https://www.g2.com/survey_responses/edgescan-review-11014532)"** **Rating:** 5.0/5.0 stars *— Greg S.* [Read full review](https://www.g2.com/survey_responses/edgescan-review-11014532) --- **"[Edgescan: Easy Setup, Clear Insights, and Expert Security Support](https://www.g2.com/survey_responses/edgescan-review-12224347)"** **Rating:** 5.0/5.0 stars *— Matt W.* [Read full review](https://www.g2.com/survey_responses/edgescan-review-12224347) --- #### What Are G2 Users Discussing About Edgescan? - [What is edgescan used for?](https://www.g2.com/discussions/what-is-edgescan-used-for) - 1 comment ### 21. [Qualys VM](https://www.g2.com/products/qualys-vm/reviews) Qualys Vulnerability Management (VM) is a cloud-based service that provides organizations with immediate, global visibility into potential vulnerabilities within their IT systems. By continuously detecting and assessing threats, Qualys VM helps prevent security breaches and ensures compliance with internal policies and external regulations. Its cloud-native architecture eliminates the need for on-premises hardware, facilitating rapid deployment and scalability. Key Features and Functionality: - Comprehensive Asset Discovery: Automatically identifies and inventories all IT assets across on-premises, cloud, and hybrid environments. - Continuous Vulnerability Assessment: Performs ongoing scans to detect vulnerabilities with high accuracy, minimizing false positives. - Prioritization with Threat Intelligence: Utilizes real-time threat intelligence to prioritize vulnerabilities based on risk, focusing remediation efforts on the most critical issues. - Integrated Remediation: Offers actionable remediation steps and integrates with patch management workflows to streamline the vulnerability management process. - Scalability and Flexibility: Supports a wide range of operating systems and integrates with various cloud platforms, including AWS, Azure, GCP, and OCI, ensuring comprehensive coverage. Primary Value and Problem Solved: Qualys VM addresses the challenge of managing and mitigating vulnerabilities in complex IT environments. By providing continuous, automated vulnerability assessments and prioritizing threats based on real-time intelligence, it enables organizations to proactively protect their systems against potential attacks. The cloud-based nature of Qualys VM reduces the need for substantial resource deployment, offering a cost-effective solution for maintaining robust security postures. **Average Rating:** 4.2/5.0 **Total Reviews:** 22 **How Do G2 Users Rate Qualys VM?** - **Has the product been a good partner in doing business?:** 8.5/10 (Category avg: 9.2/10) - **Detection Rate:** 9.2/10 (Category avg: 8.9/10) - **Automated Scans:** 8.5/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.1/10 (Category avg: 8.4/10) **Who Is the Company Behind Qualys VM?** - **Seller:** [Qualys](https://www.g2.com/sellers/qualys) - **Year Founded:** 1999 - **HQ Location:** Foster City, CA - **Twitter:** @qualys (34,248 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/8561/ (3,627 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 57% Enterprise, 35% Mid-Market #### What Are Qualys VM's Pros and Cons? **Pros:** - Ease of Use (2 reviews) - Vulnerability Identification (2 reviews) - Automated Scanning (1 reviews) - Dashboard Usability (1 reviews) - Features (1 reviews) **Cons:** - Access Restrictions (1 reviews) - Expensive (1 reviews) - Inefficient Filtering (1 reviews) - Limited Customization (1 reviews) - Poor Customer Support (1 reviews) ### What Do G2 Reviewers Say About Qualys VM? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **ease of use** of Qualys VM, enjoying its interactive dashboard and real-time vulnerability insights. - Users appreciate the **continuous vulnerability scanning** of Qualys VM, enabling quick and effective security issue remediation. - Users value the **continuous vulnerability scanning** of Qualys VM, enabling swift identification and remediation of security issues. - Users appreciate the **interactive dashboard** of Qualys VM, finding it engaging and enhancing their overall experience. - Users appreciate the **real-time vulnerability insights** and the fun, interactive dashboard of Qualys VM. **Cons:** - Users find the **access restrictions** of Qualys VM too limiting for their team's productivity and flexibility. - Users find the solution **expensive** and note that customer support responsiveness could be improved. - Users find the **inefficient filtering** in Qualys VM frustrating, as it complicates identifying actionable vulnerabilities quickly. - Users find that the **limited customization** in Qualys VM can hinder their ability to focus on key vulnerabilities. - Users express frustration with the **poor customer support** , citing slow response times and lack of technical assistance. #### What Are Recent G2 Reviews of Qualys VM? **"[One Stop for Endpoint Security](https://www.g2.com/survey_responses/qualys-vm-review-10919831)"** **Rating:** 4.5/5.0 stars *— Mukesh K.* [Read full review](https://www.g2.com/survey_responses/qualys-vm-review-10919831) --- **"[Improved UI and Fast Scan Insights with Solid SNOW Integration](https://www.g2.com/survey_responses/qualys-vm-review-12679027)"** **Rating:** 4.5/5.0 stars *— Daniel S.* [Read full review](https://www.g2.com/survey_responses/qualys-vm-review-12679027) --- #### What Are G2 Users Discussing About Qualys VM? - [Which of the following sensors are presently used by Qualys VM to collect the data needed to perform host vulnerability assessments?](https://www.g2.com/discussions/which-of-the-following-sensors-are-presently-used-by-qualys-vm-to-collect-the-data-needed-to-perform-host-vulnerability-assessments) - [What are the advantages of the global asset inventory application?](https://www.g2.com/discussions/qualys-vm-what-are-the-advantages-of-the-global-asset-inventory-application) - [What is Qualys tool used for?](https://www.g2.com/discussions/qualys-vm-what-is-qualys-tool-used-for) - [What is Qualys VM?](https://www.g2.com/discussions/what-is-qualys-vm) ### 22. [Bitsight](https://www.g2.com/products/bitsight/reviews) Bitsight is the global leader in cyber risk intelligence, leveraging advanced AI to empower organizations with precise insights derived from the industry’s most extensive external cybersecurity dataset. With more than 3,500 customers and over 68,000 organizations active on its platform, Bitsight delivers real-time visibility into cyber risk and threat exposure, enabling teams to rapidly identify vulnerabilities, detect emerging threats, prioritize remediation, and mitigate risks across their extended attack surface. Bitsight proactively uncovers security gaps across infrastructure, cloud environments, digital identities, and third- and fourth-party ecosystems. From security operations and governance teams to executive boardrooms, Bitsight provides the unified intelligence backbone required to confidently manage cyber risk and address exposures before they impact performance. **Average Rating:** 4.5/5.0 **Total Reviews:** 76 **How Do G2 Users Rate Bitsight?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10) **Who Is the Company Behind Bitsight?** - **Seller:** [Bitsight](https://www.g2.com/sellers/bitsight) - **Company Website:** https://www.bitsight.com/ - **Year Founded:** 2011 - **HQ Location:** Boston, MA - **Twitter:** @BitSight (4,503 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/bitsight/ (741 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Hospital & Health Care - **Company Size:** 71% Enterprise, 24% Mid-Market #### What Are Bitsight's Pros and Cons? **Pros:** - Security (15 reviews) - Risk Management (14 reviews) - Ease of Use (13 reviews) - Features (11 reviews) - Customer Support (10 reviews) **Cons:** - Lack of Clarity (5 reviews) - Missing Features (5 reviews) - Poor Customer Support (4 reviews) - Poor Notifications (4 reviews) - Slow Loading (4 reviews) ### What Do G2 Reviewers Say About Bitsight? *AI-generated summary from verified user reviews* **Pros:** - Users value the **ease of understanding** of the BitSight Rating score for quick security assessments. - Users value BitSight for its **comprehensive risk scanning** , facilitating thorough vendor assessments and due diligence. - Users value the **ease of use** of BitSight, appreciating its intuitive interface and straightforward integration into workflows. - Users appreciate the **robust insights and reporting features** of BitSight, enhancing collaboration and risk management with vendors. - Users value the **responsive customer support** of Bitsight, which helps resolve issues quickly and effectively. **Cons:** - Users express concerns over the **lack of clarity** in BitSight's scoring mechanisms and occasional inaccuracies in reports. - Users find the **missing features** like questionnaire functionality and mobile app limits the effectiveness of Bitsight. - Users are disappointed by **poor customer support** , citing thin documentation and unhelpful responses for a premium product. - Users express frustration with **poor notifications** , citing delays and historical breach alerts that hinder critical monitoring. - Users experience **slow loading** times with Bitsight, which impacts productivity and overall user satisfaction. #### What Are Recent G2 Reviews of Bitsight? **"[Finds Public-Facing Security Flaws and Clearly Shows How to Fix Them](https://www.g2.com/survey_responses/bitsight-review-12760320)"** **Rating:** 4.5/5.0 stars *— Verified User in Computer Software* [Read full review](https://www.g2.com/survey_responses/bitsight-review-12760320) --- **"[Effortless Cyber Risk Scoring for Proactive Security](https://www.g2.com/survey_responses/bitsight-review-12098656)"** **Rating:** 4.0/5.0 stars *— Matthew P.* [Read full review](https://www.g2.com/survey_responses/bitsight-review-12098656) --- #### What Are G2 Users Discussing About Bitsight? - [What does Bitsight Security Ratings do?](https://www.g2.com/discussions/what-does-bitsight-security-ratings-do) - [How is BitSight calculated?](https://www.g2.com/discussions/how-is-bitsight-calculated) - [What is a BitSight security rating?](https://www.g2.com/discussions/what-is-a-bitsight-security-rating) ### 23. [TrendAI Vision One - Cloud Security](https://www.g2.com/products/trendai-vision-one-cloud-security/reviews) In today's complex digital landscape, securing your cloud environment is paramount. The management and security of your hybrid and multi-cloud setup pose increasing challenges. Trend's Cloud Security provides essential visibility, allowing you and your teams to secure every aspect of your transformation and eliminate disruptive security silos. Automate security policies, deployments, monitoring, and compliance audits seamlessly from a single console, ensuring the automatic protection of all workloads from both known and unknown threats. With Cloud-Native Application Protection and robust platform capabilities, Trend empowers you to proactively address vulnerabilities and defend against threats. Gain centralized visibility, continuous asset discovery, and contextualized risk assessments, equipping your team with everything necessary to stay ahead of potential cloud security risks. **Average Rating:** 4.5/5.0 **Total Reviews:** 181 **How Do G2 Users Rate TrendAI Vision One - Cloud Security?** - **Has the product been a good partner in doing business?:** 9.1/10 (Category avg: 9.2/10) - **Detection Rate:** 8.9/10 (Category avg: 8.9/10) - **Automated Scans:** 9.0/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.5/10 (Category avg: 8.4/10) **Who Is the Company Behind TrendAI Vision One - Cloud Security?** - **Seller:** [Trend Micro](https://www.g2.com/sellers/trend-micro) - **Year Founded:** 1988 - **HQ Location:** Tokyo - **LinkedIn® Page:** https://www.linkedin.com/company/4312/ (8,040 employees on LinkedIn®) - **Ownership:** OTCMKTS:TMICY - **Total Revenue (USD mm):** $1,515 **Who Uses This Product?** - **Who Uses This:** Cyber Security Associate, Cyber Security Engineer - **Top Industries:** Computer & Network Security, Information Technology and Services - **Company Size:** 43% Mid-Market, 34% Enterprise #### What Are TrendAI Vision One - Cloud Security's Pros and Cons? **Pros:** - Security (9 reviews) - Security Protection (7 reviews) - Compliance (6 reviews) - Cloud Security (4 reviews) - Comprehensive Security (4 reviews) **Cons:** - Complexity (6 reviews) - Complex Setup (4 reviews) - Feature Complexity (4 reviews) - Learning Curve (4 reviews) - Difficult Learning (3 reviews) ### What Do G2 Reviewers Say About TrendAI Vision One - Cloud Security? *AI-generated summary from verified user reviews* **Pros:** - Users appreciate the **centralized management system** of TrendAI Vision One, simplifying security configurations and monitoring. - Users value the **robust multi-layered security** of TrendAI Vision One, effectively protecting diverse cloud workloads from threats. - Users value the **unified visibility** of TrendAI Vision One, enhancing compliance and threat management across environments. - Users value the **comprehensive coverage of both on-premise and cloud security** , enhancing protection for diverse infrastructures. - Users value the **comprehensive security** of TrendAI Vision One, facilitating seamless monitoring and threat management across environments. **Cons:** - Users find TrendAI Vision One to be **complex and not user-friendly** , requiring expert handling and increasing misconfiguration risks. - Users find TrendAI Vision One's setup to be **complex and time-consuming** , requiring specialized expertise for proper configuration. - Users find the **feature complexity** of TrendAI Vision One challenging, requiring expertise for effective use and integration. - Users find the **learning curve steep** , making it challenging for beginners to navigate and configure the system effectively. - Users find TrendAI Vision One's **difficult learning curve** frustrating, requiring technical expertise for proper setup and management. #### What Are Recent G2 Reviews of TrendAI Vision One - Cloud Security? **"[Solid choice for teams juggling cloud and](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11405274)"** **Rating:** 4.0/5.0 stars *— Kaushal K.* [Read full review](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11405274) --- **"[Hybrid Cloud Security :Unified Protection with Powerful Feature.](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11834984)"** **Rating:** 5.0/5.0 stars *— ADITYA T.* [Read full review](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11834984) --- #### What Are G2 Users Discussing About TrendAI Vision One - Cloud Security? - [What is deep security software?](https://www.g2.com/discussions/trend-micro-hybrid-cloud-security-what-is-deep-security-software) - 1 upvote - [What is Trend Micro in information security?](https://www.g2.com/discussions/what-is-trend-micro-in-information-security) - 1 upvote - [Is Trend Micro cloud based?](https://www.g2.com/discussions/is-trend-micro-cloud-based) - [What is deep security software?](https://www.g2.com/discussions/what-is-deep-security-software) - [What does Trend Micro Deep Security do?](https://www.g2.com/discussions/trend-micro-hybrid-cloud-security-solution-what-does-trend-micro-deep-security-do) ### 24. [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) Red Hat® Ansible® Automation Platform is Red Hat's primary enterprise automation product offering., it includes all of the tooling needed for building, deploying, and managing end-to-end automation at scale. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless technical implementation. IT managers can provide guidelines on how automation is applied to individual teams. Meanwhile, automation creators retain the freedom to write tasks that use existing knowledge, without the operational overhead of conforming to complex tools and frameworks. It is a more secure and stable foundation for deploying end-to-end automation solutions, from hybrid cloud to the edge. Ansible Automation Platform uses an open source development model of the Ansible project to create an experience tailored to enterprise automation. This open development model connects the engineers behind Ansible Automation Platform to more than a dozen open source Ansible projects in the community. As members work together to identify and elevate the best ideas, Red Hat supports them by contributing to the code and creating products from upstream projects. View more at https://www.ansible.com/compare Ansible Automation Platform simplifies packaging and distribution while providing tested and trusted interoperability between all the components. Combined with an 18-month support life cycle, Ansible Automation Platform takes the complexity, uncertainty, and guesswork out of using upstream open source tools. With a Red Hat subscription, you get certified and validated automation content from our robust partner ecosystem; added security, reporting, and analytics; and life cycle technical support from Red Hat and Red Hat’s technology partners to scale automation across your organization. And you’ll get expert knowledge gained from our success with thousands of customers. **Average Rating:** 4.6/5.0 **Total Reviews:** 369 **How Do G2 Users Rate Red Hat Ansible Automation Platform?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.2/10) - **Detection Rate:** 7.9/10 (Category avg: 8.9/10) - **Automated Scans:** 8.8/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 9.2/10 (Category avg: 8.4/10) **Who Is the Company Behind Red Hat Ansible Automation Platform?** - **Seller:** [Red Hat](https://www.g2.com/sellers/red-hat) - **Year Founded:** 1993 - **HQ Location:** Raleigh, NC - **Twitter:** @RedHat (300,769 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/3545/ (19,413 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** DevOps Engineer, Software Engineer - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 48% Enterprise, 36% Mid-Market #### What Are Red Hat Ansible Automation Platform's Pros and Cons? **Pros:** - Automation (56 reviews) - Automation Efficiency (47 reviews) - Ease of Use (41 reviews) - Easy Integrations (37 reviews) - Task Automation (37 reviews) **Cons:** - Learning Curve (16 reviews) - Learning Difficulty (16 reviews) - Complexity (15 reviews) - Complex Setup (12 reviews) - Automation Issues (10 reviews) ### What Do G2 Reviewers Say About Red Hat Ansible Automation Platform? *AI-generated summary from verified user reviews* **Pros:** - Users value the **automation capabilities** of Red Hat Ansible Automation Platform, simplifying repeatable tasks without human intervention. - Users appreciate the **automation efficiency** of Red Hat Ansible Automation Platform, streamlining tasks with minimal human interaction. - Users appreciate the **ease of use** of Red Hat Ansible Automation Platform, enhancing productivity and accessibility for all. - Users value the **easy integrations** of Red Hat Ansible Automation Platform, enhancing automation through streamlined access and management. - Users value the **task automation** capabilities of Red Hat Ansible Automation Platform for streamlining repetitive processes effortlessly. **Cons:** - Users face a **steep learning curve** with Ansible, requiring adjustments from traditional automation methods and installation challenges. - Users find the **learning difficulty** of Red Hat Ansible Automation Platform challenging due to its complexity and daunting environment. - Users find the **complexity of the environment** daunting, complicating management and understanding of licensing in large setups. - Users find the **complex setup** of Red Hat Ansible Automation Platform challenging, especially with dependency management and installation. - Users experience **automation issues** with Red Hat Ansible, citing difficulties with security and inventory export limitations. #### What Are Recent G2 Reviews of Red Hat Ansible Automation Platform? **"[Consistent, Scalable Automation That Boosts Stability and Efficiency](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12121846)"** **Rating:** 5.0/5.0 stars *— Prasanth K.* [Read full review](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12121846) --- **"[Efficient Automation with Some Learning Curves](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12646247)"** **Rating:** 4.0/5.0 stars *— Jairo R.* [Read full review](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12646247) --- #### What Are G2 Users Discussing About Red Hat Ansible Automation Platform? - [What is Red Hat Ansible Automation Platform used for?](https://www.g2.com/discussions/what-is-red-hat-ansible-automation-platform-used-for) - 1 comment - [Is Red Hat Ansible free?](https://www.g2.com/discussions/is-red-hat-ansible-free) - [What should I automate with Ansible?](https://www.g2.com/discussions/what-should-i-automate-with-ansible) - [What are the three main components in Red Hat Ansible automation platform?](https://www.g2.com/discussions/what-are-the-three-main-components-in-red-hat-ansible-automation-platform) - [What is Red Hat Ansible automation platform?](https://www.g2.com/discussions/what-is-red-hat-ansible-automation-platform) ### 25. [Indusface WAS](https://www.g2.com/products/indusface-was/reviews) Indusface WAS (Web Application Scanner) provides comprehensive managed dynamic application security testing (DAST) solution. It is a zero-touch, non-intrusive cloud-based solution that provides daily monitoring for web applications, checking for systems and application vulnerabilities, and malware. Indusface WAS with its automated scans & manual pentesting done by certified security experts ensures none of the OWASP Top10, business logic vulnerabilities, and malware go unnoticed. With zero false-positive guarantee and comprehensive reporting with remediation guidance, Indusface web app scanning ensures developers to quickly fix vulnerabilities seamlessly. **Average Rating:** 4.6/5.0 **Total Reviews:** 63 **How Do G2 Users Rate Indusface WAS?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10) - **Detection Rate:** 9.2/10 (Category avg: 8.9/10) - **Automated Scans:** 9.3/10 (Category avg: 9.0/10) - **Configuration Monitoring:** 8.8/10 (Category avg: 8.4/10) **Who Is the Company Behind Indusface WAS?** - **Seller:** [Indusface](https://www.g2.com/sellers/indusface) - **Year Founded:** 2012 - **HQ Location:** Vadodara - **Twitter:** @Indusface (3,472 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/indusface/ (180 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 52% Small-Business, 37% Mid-Market #### What Are Indusface WAS's Pros and Cons? **Pros:** - Vulnerability Detection (19 reviews) - Vulnerability Identification (16 reviews) - Customer Support (6 reviews) - Scanning Efficiency (6 reviews) - Security (6 reviews) **Cons:** - Expensive (2 reviews) - Confusing Interface (1 reviews) - Lacking Features (1 reviews) - Limited Scope (1 reviews) - Poor Interface Design (1 reviews) ### What Do G2 Reviewers Say About Indusface WAS? *AI-generated summary from verified user reviews* **Pros:** - Users value the **effective vulnerability detection** of Indusface WAS, which prioritizes fixes with zero false positives. - Users commend the **consistent and reliable vulnerability detection** of Indusface WAS, enhancing their security across deployments. - Users praise the **excellent customer support** from Indusface, ensuring prompt assistance and detailed guidance throughout the process. - Users value the **scanning efficiency** of Indusface WAS, enabling thorough assessments and timely updates for vulnerabilities. - Users value the **deep-dive security scans** from Indusface WAS, enhancing accreditation and vulnerability management effectively. **Cons:** - Users feel the pricing for Indusface WAS is **too high** , especially for staging and development environment scans. - Users find the **interface confusing** , noting it could be more intuitive and informative for better usability. - Users feel the product is **lacking features** for development environments, particularly in pricing and scan capabilities. - Users desire **expanded options for staging/development environment scans** to enhance functionality beyond the free version's limitations. - Users find the **interface design lacking** in intuitiveness and modernity, impacting overall user experience. #### What Are Recent G2 Reviews of Indusface WAS? **"[Great support Given by shivani](https://www.g2.com/survey_responses/indusface-was-review-11074325)"** **Rating:** 5.0/5.0 stars *— Sai N.* [Read full review](https://www.g2.com/survey_responses/indusface-was-review-11074325) --- **"[Vulnerability and malware scanner in one](https://www.g2.com/survey_responses/indusface-was-review-11323529)"** **Rating:** 5.0/5.0 stars *— Verified User in Insurance* [Read full review](https://www.g2.com/survey_responses/indusface-was-review-11323529) --- #### What Are G2 Users Discussing About Indusface WAS? - [What is Indusface WAS used for?](https://www.g2.com/discussions/what-is-indusface-was-used-for) ## What Is Vulnerability Scanner Software? [DevSecOps Software](https://www.g2.com/categories/devsecops) ## What Software Categories Are Similar to Vulnerability Scanner Software? - [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools) - [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast) - [Risk-Based Vulnerability Management Software](https://www.g2.com/categories/risk-based-vulnerability-management) --- ## How Do You Choose the Right Vulnerability Scanner Software? ### What You Should Know About Vulnerability Scanner Software ### What is Vulnerability Scanner Software? Vulnerability scanners are used to examine applications, networks, and environments for security flaws and misconfigurations. These tools run a variety of dynamic security tests to identify security threats along an application or network’s attack surface. Scans can be used for anything from an application penetration test to a compliance scan. Depending on the specific objectives a user has, they can customize the vulnerability scanner to test for specific issues or requirements. Companies can configure these tests to their unique environment. Companies that handle lots of personal or financial data may scan to ensure every transaction or datastore is encrypted from the public. They could also test their web applications against specific threats like SQL injection or cross-site scripting (XSS) attacks. The highly-customizable nature of vulnerability scanners provides users with tailor-made solutions for application and network security examination. Many of these tools offer continuous scanning and testing for nonstop protection and monitoring. Whatever administrators set as a priority will be tested periodically and inform employees of issues or incidents. Continuous monitoring makes it much easier to discover vulnerabilities before they become an issue and drastically reduce the amount of time a vulnerability takes to remediate. Key Benefits of Vulnerability Scanner Software - Scan networks and applications for security flaws - Diagnose, track, and remediate vulnerabilities - Identify and resolve misconfigurations - Perform ad hoc security tests ### Why Use Vulnerability Scanner Software? Applications and networks are only beneficial to a business if they operate smoothly and securely. Vulnerability scanners are a useful tool to view internal systems and applications from the perspective of the attacker. These tools allow for dynamic testing while applications operate. This helps security teams take a step beyond patches and code analysis to evaluate security posture while the application, network, or instance actually runs. **Application security—** Cloud, web, and desktop applications all require security, but operate differently. While many vulnerability scanners support testing for all kinds of applications, vulnerability scanners often support a few application types, but not others. Still, they will all examine the application itself, as well as the paths a user needs to access it. For example, if a vulnerability scanner is used on a web application, the tool will take into account the various attack vectors a hacker might take. This includes a site’s navigation, regional access, privileges, and other factors decided by the user. From there, the scanner will output reports on specific vulnerabilities, compliance issues, and other operational flaws. **Networks —** While software applications are often the most obvious use cases for vulnerability scanners, network vulnerability scanners are also quite common. These tools take into account the network itself, as well as computers, servers, mobile devices and any other asset accessing a network. This helps businesses identify vulnerable devices and abnormal behaviors within a network to identify and remediate issues as well as improve their network's security posture. Many even provide visual tools for mapping networks and their associated assets to simplify the management and prioritization of vulnerabilities requiring remediation. **Cloud environments —** Not to be confused with cloud-based solutions delivered in a SaaS model, cloud vulnerability scanners examine cloud services, cloud computing environments, and integrated connections. Like network vulnerability scanners, cloud environments require an examination on a few levels. Cloud assets come in many forms including devices, domains, and instances; but all must be accounted for and scanned. In a properly secured cloud computing environment, integrations and API connections, assets, and environments must all be mapped, configurations must be monitored, and requirements must be enforced. ### What are the Common Features of Vulnerability Scanner Software? Vulnerability scanners can provide a wide range of features, but here are a few of the most common found in the market. **Network mapping —** Network mapping features provide a visual representation of network assets including endpoints, servers, and mobile devices to intuitively demonstrate an entire network’s components. **Web inspection —** Web inspection features are used to assess the security of a web application in the context of its availability. This includes site navigation, taxonomies, scripts, and other web-based operations that may impact a hacker’s abilities. [**Defect tracking**](https://www.g2.com/categories/vulnerability-scanner/f/issue-tracking) **—** Defect and issue tracking functionality helps users discover and document vulnerabilities and track them to their source through the resolution process. **Interactive scanning —** Interactive scanning or interactive application security testing features allow a user to be directly involved in the scanning process, watch tests in real time, and perform ad hoc tests. [**Perimeter scanning**](https://www.g2.com/categories/vulnerability-scanner/f/perimeter-scanning) **—** Perimeter scanning will analyze assets connected to a network or cloud environment for vulnerabilities. [**Black box testing**](https://www.g2.com/categories/vulnerability-scanner/f/black-box-testing) **—** Black box scanning refers to tests conducted from the hacker’s perspective. Black box scanning examines functional applications externally for vulnerabilities like SQL injection or XSS. **Continuous monitoring —** Continuous monitoring allows users to set it and forget it. They enable scanners to run all the time as they alert users of new vulnerabilities. [**Compliance monitoring**](https://www.g2.com/categories/vulnerability-scanner/f/compliance-testing) **—** Compliance-related monitoring features are used to monitor data quality and send alerts based on violations or misuse. **Asset discovery —** Asset discovery features unveil applications in use and trends associated with asset traffic, access, and usage. **Logging and reporting —** Log documentation and reporting provides required reports to manage operations. It provides adequate logging to troubleshoot and support auditing. **Threat intelligence —** Threat intelligence features integrate with or store information related to common threats and how to resolve them once incidents occur. **Risk analysis —** Risk scoring and risk analysis features identify, score, and prioritize security risks, vulnerabilities, and compliance impacts of attacks and breaches. **Extensibility —** Extensibility and integration features provide the ability to extend the platform or product to include additional features and functionalities. Many vulnerability scanner tools will also offer the following features:  - [Configuration monitoring capabilities](https://www.g2.com/categories/vulnerability-scanner/f/configuration-monitoring) - [Automated scan capabilities](https://www.g2.com/categories/vulnerability-scanner/f/automated-scans) - [Manual application testing capabilities](https://www.g2.com/categories/vulnerability-scanner/f/manual-application-testing) - [Static code analysis capabilities](https://www.g2.com/categories/vulnerability-scanner/f/static-code-analysis) ### Potential Issues with Vulnerability Scanner Software **False positives —** False positives are one of the most common issues with security tools. They indicate a tool is not running efficiently and introduce lots of unnecessary labor. Users should examine figures related to specific products and their accuracy before purchasing a solution. **Integrations —** Integrations can make an application or product do virtually anything, but only if the integration is supported. If a specific solution must be integrated or a specific data source is highly relevant, be sure it’s compatible with the vulnerability scanner before making that decision. **Scalability —** Scalability is always important, especially for growing teams. Cloud and SaaS-based solutions are traditionally the most scalable, but desktop and open source tools may be as well. Scalability will be important for teams considering collaborative use, concurrent use, and multi-application and environment scanning. ### Software and Services Related to Vulnerability Scanner Software These technology families are either closely related to vulnerability scanners or there is frequent overlap between products. [**Risk-based vulnerability management software**](https://www.g2.com/categories/risk-based-vulnerability-management) **—** Risk-based vulnerability management software is used to analyze security posture based on a wide array of risk factors. From there, companies prioritize vulnerabilities based on their risk score. These tools often have some overlapping features, but they’re more geared towards prioritizing risks in large organizations rather than identifying vulnerabilities to individual applications or environments. [**Dynamic application security testing (DAST) software**](https://www.g2.com/categories/dynamic-application-security-testing-dast) **—** DAST software is very closely related to vulnerability scanners and are sometimes used interchangeably. The differentiating factor here, though, is the ability to scan networks, cloud services, and IT assets in addition to applications. While they do scan for vulnerabilities, they won’t allow users to map networks, visualize environments, or examine vulnerabilities beyond the scope of the application. [**Static application security testing (SAST) software**](https://www.g2.com/categories/static-application-security-testing-sast) **—** SAST software is not that similar to vulnerability scanners, unlike DAST tools. SAST tools allow for the examination of source code and non-operational application components. They also can’t simulate attacks or perform functional security tests. Still, these can be useful for defect and bug tracking if the vulnerability is rooted in an application’s source code. [**Penetration testing software**](https://www.g2.com/categories/penetration-testing) **—** Penetration testing software is one aspect of vulnerability scanning, but a penetration test will not provide a wide variety of security tests. They are useful for testing common attack types, but they won’t be very effective in identifying and remediating the root cause of a vulnerability.