# Which solution supports vulnerability scanning for cloud environments?

<p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">I’m trying to figure out which platforms actually support <a class="a a--md" elv="true" href="https://www.g2.com/categories/vulnerability-scanner">vulnerability scanning</a> for cloud environments — ideally across AWS, Azure, and GCP without a ton of overhead. From the G2 grid data, here are some of the top options I’ve been digging into:</p><ul>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/wiz-wiz/reviews"><strong>Wiz</strong></a><strong>:</strong> Purpose-built for cloud, with deep visibility across workloads and configurations.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/orca-security/reviews"><strong>Orca Security</strong></a><strong>:</strong> Agentless scanning that covers multi-cloud environments quickly, no agents required.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/tenable-nessus/reviews"><strong>Tenable Nessus</strong></a><strong>:</strong> Long-time standard, with plugins and support for cloud infrastructure, though not cloud-native at its core.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/external_clickthroughs/record?secure%5Bcategory_id%5D=1423&amp;secure%5Bmedium%5D=sponsored&amp;secure%5Bplacement_reason%5D=page_category&amp;secure%5Bplacement_resource_ids%5D%5B%5D=1423&amp;secure%5Bproduct_id%5D=31923&amp;secure%5Bresource_id%5D=1423&amp;secure%5Bresource_type%5D=Category&amp;secure%5Bsource_type%5D=category_page&amp;secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fvulnerability-scanner%2Fad%3Ffree_page%3Dfalse&amp;secure%5Btoken%5D=1bc4d19d10a87731d2221139ed6af311fd76fea7bc0503cf8472e868c88ace6f&amp;secure%5Burl%5D=https%3A%2F%2Fwww.tenable.com%2Flp%2Fcampaigns%2F22%2Ftry-tenable-vm%2F&amp;secure%5Burl_type%5D=free_trial"><strong>Tenable Vulnerability Management</strong></a><strong>:</strong> Enterprise-level solution that ties cloud vulnerability data into broader security workflows.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/sysdig-sysdig-secure/reviews"><strong>Sysdig Secure</strong></a><strong>:</strong> Strong choice for container and Kubernetes environments, with runtime scanning and monitoring.</li>
</ul><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">Other big names I see often for cloud vulnerability scanning (not in this snapshot) are Qualys, Rapid7 InsightVM, Prisma Cloud, and CrowdStrike Falcon Spotlight.</p><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">Anyone here running security in cloud-heavy environments: Which of these tools has actually been the most effective at catching issues without slowing down deployments?</p>

##### Post Metadata
- Posted at: 8 months ago
- Author title: SaaS and Software Research
- Net upvotes: 2


## Comments
### Comment 1

&lt;p&gt;Also, I’m also curious, do you all find agentless scanning is enough for cloud, or do you still prefer agent-based tools for deeper visibility? Agentless sounds super convenient, but I’ve heard mixed takes on accuracy.&lt;/p&gt;

##### Comment Metadata
- Posted at: 8 months ago
- Author title: SaaS and Software Research
- Net upvotes: 1




## Related discussions
- [How well does Trello scale into a larger team?](https://www.g2.com/discussions/1-how-well-does-trello-scale-into-a-larger-team)
  - Posted at: almost 13 years ago
  - Comments: 6
- [Can we please add a new section](https://www.g2.com/discussions/2-can-we-please-add-a-new-section)
  - Posted at: almost 13 years ago
  - Comments: 0
- [Quantifiable benefits from implementing your CRM](https://www.g2.com/discussions/quantifiable-benefits-from-implementing-your-crm)
  - Posted at: almost 13 years ago
  - Comments: 4