---
title: Astra Pentest Reviews
meta_title: 'Astra Pentest Reviews 2026: Details, Pricing, & Features | G2'
meta_description: Filter 200 reviews by the users' company size, role or industry
  to find out how Astra Pentest works for a business like yours.
aggregate_rating:
  rating_value: 4.6
  review_count: 200
  scale: '5'
date_modified: '2026-07-01'
parent_category:
  name: "DevSecOps\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t"
  url: https://www.g2.com/categories/devsecops
---

# Astra Pentest Reviews
**Vendor:** ASTRA IT, Inc.  
**Category:** [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner)  
**Average Rating:** 4.6/5.0  
**Total Reviews:** 200
## About Astra Pentest
Astra Security is a leading continuous penetration testing platform that combines AI-powered autonomous pentesting with certified expert-led assessments. Powered by Attack AI, trained on 6.8M+ security findings and insights from 5,000+ real-world pentests. Astra deploys intelligent agents that continuously discover, validate, prioritize, and help remediate vulnerabilities at scale. While AI handles speed and scale, Astra’s certified security experts focus on what automation alone cannot: complex business logic flaws, multi-step attack chains, advanced exploit paths, and emerging AI/LLM-specific threats. Built for modern engineering teams, Astra integrates directly into CI/CD workflows, enabling continuous security validation between releases instead of relying on outdated annual pentests. The platform delivers comprehensive Autonomous Pentest powered by AI agents, DAST vulnerability scanner and human-driven pentests across web apps, AI/LLMs, mobile apps, APIs, cloud infrastructure. Astra is CREST-accredited, CERT-IN empaneled, and a PCI ASV-certified vendor. Our team also led the development of the OWASP APTS framework, helping shape the industry standard for continuous security testing. Today, 1,500+ organizations across 70+ countries trust Astra Security, including Ford, Loom, CompTIA, Hitachi, HackerRank, and OLX.



## Astra Pentest Pros & Cons
**What users like:**

- Users commend the **responsive customer support** of Astra Pentest, highlighting their flexibility and exceptional service throughout the process. (63 reviews)
- Users value the **comprehensive vulnerability management features** of Astra Pentest, enhancing security tracking and prioritization. (51 reviews)
- Users appreciate the **ease of use** of Astra Pentest, enjoying its straightforward implementation and user-friendly design. (50 reviews)
- Users value the **quick and efficient penetration testing** provided by Astra Pentest, ensuring timely and successful outcomes. (42 reviews)
- Users value the **thorough vulnerability identification** by Astra Pentest, enhancing security confidence and providing valuable solutions. (37 reviews)
- Users commend Astra Pentest for its **intuitive user interface** and excellent responsiveness, making security management seamless. (36 reviews)
- Dashboard Usability (26 reviews)
- Team Expertise (26 reviews)
- Automated Scanning (24 reviews)
- Communication (24 reviews)

**What users dislike:**

- Users experience **poor customer support** with slow response times and a lack of assistance for vulnerability queries. (12 reviews)
- Users criticize the **poor interface design** of Astra Pentest, finding it clunky and non-intuitive for effective use. (10 reviews)
- Users experience **slow performance** with Astra Pentest, affecting the speed of testing results and overall efficiency. (8 reviews)
- Users note that **UX improvement** is necessary due to confusing UI and occasional false positives during scans. (7 reviews)
- Users note a **lack of information** in documentation, causing delays and uncertainty in obtaining crucial audit status updates. (6 reviews)
- Confusing Interface (5 reviews)
- Users experience **dashboard issues** such as slow performance and occasional non-functionality, but support resources are available. (5 reviews)
- Difficult Navigation (5 reviews)
- Users often face **false positives** with Astra Pentest, resulting in wasted time on issues that aren&#39;t truly vulnerabilities. (5 reviews)
- Lack of Detail (5 reviews)

## Astra Pentest Reviews
  ### 1. Exceptional VAPT Solution with Prompt Support

**Rating:** 5.0/5.0 stars

**Reviewed by:** Nikhil Ajit S. | Director IT, Mid-Market (51-1000 emp.)

**Reviewed Date:** May 03, 2024

**What do you like best about Astra Pentest?**

I really appreciate their support and prompt response at any given time. Astra Pentest showcases all the issues, the steps to reproduce them, and the ways to fix them, which is really helpful. Their technical support is also valuable, especially when understanding the importance of issue fixes, and if the way to fix an issue isn't clear, the team is there to help. The initial setup didn't require much effort from our end, and once the pen testing was complete, we didn't need much effort further because most use cases were fixed.

**What do you dislike about Astra Pentest?**

The upcoming year's price of the service could be reduced and extend support towards the SOC and ISO27001 and other compliances without adding up more cost, at least on gap detection.

**What problems is Astra Pentest solving and how is that benefiting you?**

With Astra Pentest, we identify and fix security norms and issues effectively. It provides detailed issue showcases, steps to reproduce, and fixes. Their support is prompt and clarifies any doubts about issue importance or fixes when needed.

  ### 2. Smooth Onboarding, Responsive Support, and Strong Pentest Lifecycle Controls

**Rating:** 5.0/5.0 stars

**Reviewed by:** Sivakumar S. | CTO, Small-Business (50 or fewer emp.)

**Reviewed Date:** June 23, 2026

**What do you like best about Astra Pentest?**

What I liked most about Astra Pentest was the onboarding and support experience. The team was responsive, helpful, and made the entire process straightforward. Setup was quick and easy, and the platform provided strong controls for managing the full testing lifecycle. The centralized dashboard and visibility into findings made it easier to track progress, collaborate with stakeholders, and stay on top of remediation efforts. Overall, it offered a smooth user experience while giving us confidence in our security testing program.

**What do you dislike about Astra Pentest?**

The only challenge I faced was understanding the multi-tenant setup. Since many SaaS platforms support white-labeling and custom domains, additional guidance and documentation around configuring multi-tenant environments would make the onboarding experience even smoother.

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra Pentest helps us proactively identify and remediate security vulnerabilities in our SaaS platform. This is especially valuable for our multi-tenant environment and custom-domain setup, as it gives us confidence in our security posture, helps meet customer security requirements, and streamlines vulnerability management and compliance efforts.

  ### 3. Thorough Pentesting with Clear, Actionable Reporting and Responsive Support

**Rating:** 5.0/5.0 stars

**Reviewed by:** Sevesh A. | Sr. Team Lead, Small-Business (50 or fewer emp.)

**Reviewed Date:** June 16, 2026

**What do you like best about Astra Pentest?**

What I like best about Astra Pentest is the combination of thorough security testing and a user-friendly platform. The reports are clear, actionable, and prioritized based on risk, which makes remediation more efficient. The team is responsive, knowledgeable, and willing to provide clarification when needed. I also appreciate the continuous visibility into vulnerabilities and the structured approach to tracking and validating fixes throughout the engagement.

**What do you dislike about Astra Pentest?**

The platform is intuitive overall, but the initial onboarding and product tour could be improved. A more guided walkthrough of key features, workflows, and best practices would help new users get up to speed faster and make better use of the platform's capabilities. Interactive tutorials or role-based onboarding paths could further enhance the user experience and reduce the learning curve.

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra Pentest helps us identify and remediate security vulnerabilities before they can be exploited, reducing our overall security risk. The platform provides clear visibility into findings, streamlines the remediation process, and helps us validate fixes efficiently. It also supports our compliance and customer assurance requirements by providing structured reports and ongoing security assessments. As a result, we can strengthen our security posture while allowing our engineering team to focus on delivering features with greater confidence.

  ### 4. Smooth, Automated Pen Testing with Astra’s Easy-to-Use Portal

**Rating:** 5.0/5.0 stars

**Reviewed by:** Ashish R. | Technical Architect, Small-Business (50 or fewer emp.)

**Reviewed Date:** May 09, 2026

**What do you like best about Astra Pentest?**

Astra Pentest’s standout quality is the team’s responsiveness and their willingness to accommodate our specific requests throughout the engagement. From the initial scoping through to the final report, the pentesters were professional, highly knowledgeable, and proactive in communicating at every stage. The dashboard is intuitive and provides real-time visibility into test progress, findings, and remediation status, which makes it easy for both our security and development teams to stay aligned.

The combination of automated scanning and manual penetration testing also means vulnerabilities are properly validated instead of creating unnecessary noise. The critical issues they uncovered would have been far more costly to address after a breach, so the value delivered clearly outweighed the cost of the engagement. It’s been one of the best security investments we’ve made, and preventing even a single serious incident more than justifies the price.

The verifiable pentest certificate is a great bonus as well, adding instant credibility when we share our security posture with clients and stakeholders. Overall, the process was smooth, thorough, and genuinely collaborative, and we walked away with more than we expected for the price.

**What do you dislike about Astra Pentest?**

I don’t feel there’s any downside. Everything went smoothly.

**What problems is Astra Pentest solving and how is that benefiting you?**

We needed credible, structured security validation for our application, both to build internal confidence and to meet compliance requirements. Astra Pentest met that need by delivering a thorough assessment that surfaced real, actionable vulnerabilities, rather than a generic list of low-value findings.

One area where they truly stood out was the depth of their cloud target integration. Instead of treating cloud security as an afterthought, Astra’s team carried out a comprehensive review across our cloud infrastructure, covering misconfigurations, exposed services, IAM policy gaps, and overall attack-surface visibility across our environment. Because the testing was tightly integrated with our actual cloud setup, the findings were contextual and specific to our deployment, not just a generic cloud security checklist. That gave our engineering team precise remediation guidance tied directly to our configuration, saving significant time compared with interpreting broad, high-level recommendations.

Their team was also flexible and responsive to our timelines and custom requests, which helped the engagement fit naturally into our development and deployment cycle without disruption. What further strengthened our confidence is that Astra is CERT-In empanelled, so their pentest reports carry strong regulatory acceptance and authenticity—a meaningful advantage when presenting results to auditors, enterprise clients, and compliance bodies. It doesn’t feel like just a vendor-issued certificate; the government recognition adds a layer of trust that’s hard to find elsewhere.

The reports were clear and detailed, and the expert support helped our developers prioritize and remediate issues quickly. As a result, we now have a stronger security posture across both the application and infrastructure layers, along with a verifiable pentest certificate we can share with customers and auditors with full confidence.

  ### 5. Helpful Pentest Process for Customer-Facing Security Proof

**Rating:** 5.0/5.0 stars

**Reviewed by:** Misha O. | CTO, Small-Business (50 or fewer emp.)

**Reviewed Date:** April 23, 2026

**What do you like best about Astra Pentest?**

What I liked best about Astra Pentest was the dashboard and overall interface — it was easy to follow, and findings were organized in a way that made triage straightforward for our team. Beyond the product itself, their team was very responsive throughout the process and helped us harden our infrastructure, not just close individual tickets. The combination of clear reporting and fast collaboration made remediation much faster and more structured on our side

**What do you dislike about Astra Pentest?**

At times, we needed extra back-and-forth to align on whether a retest was targeting the originally reported endpoint versus a new surface. So, we’d value slightly clearer guidance on when an observation should be treated as a reopened finding vs. a new finding.

**What problems is Astra Pentest solving and how is that benefiting you?**

Our main problem is proving to prospective customers that our platform is secure. Astra Pentest helps by giving us independent, structured evidence we can share during security reviews and procurement. That external validation increases trust, shortens security due diligence cycles, and helps us move deals forward faster. Internally, this also gives us a peace of mind that the app we are creating is indeed secure

  ### 6. Astra Delivers Professional, Credible Pen Tests with Excellent ROI

**Rating:** 4.5/5.0 stars

**Reviewed by:** Anand M. | CTO, Small-Business (50 or fewer emp.)

**Reviewed Date:** June 29, 2026

**What do you like best about Astra Pentest?**

We worked with the Astra team for our manual penetration test and had an excellent experience. They were highly professional throughout the engagement, with a strong focus on customer service and responsiveness.

As a startup, the credibility of the security auditor is just as important as the technical assessment itself. Astra provided us with confidence on both fronts. They also delivered excellent ROI for the price, especially considering the credibility and trust their assessment adds. We would gladly work with them again.

**What do you dislike about Astra Pentest?**

Would have loved a linear integration for issues.

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra helps us validate our security posture through a credible independent penetration test, enabling us to build customer trust and meet enterprise security requirements.

  ### 7. Astra Pentest: Stellar Support and Smooth Operation

**Rating:** 5.0/5.0 stars

**Reviewed by:** Ritesh G. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 24, 2026

**What do you like best about Astra Pentest?**

I really appreciate the team at Astra Pentest; they are very helpful and went out of their way to engage more team members to help us, even beyond the regular working hours. The dashboard they provide is state-of-the-art, and everything was very smooth from onboarding to testing to reporting. The team helped us understand issues in detail and also find ways to solve them without requiring extended effort from our engineering team. Their interaction and professionalism impressed me during our initial conversation, and the technical depth and understanding of what we wanted to do were clear. The dashboard demo was very comfortable for us, and we could easily track and fix the issues reported. The initial setup of Astra Pentest was a breeze.

**What do you dislike about Astra Pentest?**

Everything was good!

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra Pentest helped us get a VAPT certificate for penetration testing of API securities and web applications. The team provided great support, explaining issues in detail and simplifying solutions, which saved our engineering effort. The dashboard is state of the art, making issue tracking and resolution easy.

  ### 8. Excellent Support and Smooth Communication

**Rating:** 4.0/5.0 stars

**Reviewed by:** Suraj Y. | System &amp; Network Engineer, Mid-Market (51-1000 emp.)

**Reviewed Date:** June 30, 2026

**What do you like best about Astra Pentest?**

Support works were highly encouraging, communication process smooth

**What do you dislike about Astra Pentest?**

From my perspective, as someone involved in support and establishing communication channels, relying only on email limitations is insufficient; I believe deeper penetration testing should be carried out to find more vulnerabilities and enforce stricter measures.

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra Pentest helps us identify and remediate security vulnerabilities in our applications, improving our overall security posture. It also provides transparency through detailed security reports and certifications, which many of our clients request as part of their security and compliance requirements. This helps build client trust and demonstrates our commitment to maintaining secure applications. Als required for SOC2 Type 2

  ### 9. Seamless Pentesting Experience with a User-Friendly Platform and Proactive Support

**Rating:** 4.5/5.0 stars

**Reviewed by:** Shubham P. | Lead Software Engineer Backend , Mid-Market (51-1000 emp.)

**Reviewed Date:** March 27, 2026

**What do you like best about Astra Pentest?**

What I like best about Astra Pentest is the overall seamless experience it provides—from onboarding to certification. The platform is user-friendly and well-structured, making it easy to track vulnerabilities and remediation progress. Their customer support is highly responsive and proactive, consistently following up and ensuring that all issues are resolved efficiently. The combination of a reliable service, intuitive platform, and strong support team makes the entire pentesting journey smooth and hassle-free.

**What do you dislike about Astra Pentest?**

While the overall experience has been very positive, there is still some room for improvement. The platform could benefit from automated reminder notifications to help teams stay on track with remediation timelines. Additionally, while the current remediation guidance is helpful, it is mostly text-based—adding video content or step-by-step visual guides would make it even more effective, especially for teams with less security expertise.

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra Pentest helps us identify and address security vulnerabilities in a structured and efficient way, which is critical for maintaining a strong security posture. It simplifies the entire pentesting process—from vulnerability detection to remediation and certification—without requiring deep in-house security expertise. This has saved us significant time and effort while ensuring we meet compliance and security requirements.

The platform’s clear reporting and continuous support also help our team prioritize and fix issues faster, reducing risk and improving overall system security. As a result, we can focus more on our core business while having confidence that our applications are secure and compliant.

  ### 10. Astra Security’s Thorough, Collaborative Testing That Helps Teams Fix Real Risks

**Rating:** 5.0/5.0 stars

**Reviewed by:** Shriyansh A. | CTO - Co-Founder, Small-Business (50 or fewer emp.)

**Reviewed Date:** March 25, 2026

**What do you like best about Astra Pentest?**

Astra Security delivers a well-balanced blend of automated scanning and manual penetration testing, making the process both thorough and practical. The engagement feels less like a one-time audit and more like guided collaboration—where the focus is on identifying meaningful vulnerabilities, validating real risks, and helping teams understand and fix failing test cases effectively.

**What do you dislike about Astra Pentest?**

Manual reruns are limited, so if you have a large number of human-detected vulnerabilities, you need to use the manual run feature cautiously.

**What problems is Astra Pentest solving and how is that benefiting you?**

Astra Pentest helps us find actual security issues that matter, instead of just giving a long list of generic or low-value findings. The mix of automated and manual testing makes sure the vulnerabilities are properly validated. This helps us focus on fixing real problems, improves our overall security, and saves time by giving clear, actionable feedback instead of noise.


## Astra Pentest Discussions
  - [What is Astra Pentest used for?](https://www.g2.com/discussions/what-is-astra-pentest-used-for) - 2 comments

- [View Astra Pentest pricing details and edition comparison](https://www.g2.com/products/astra-pentest/reviews/astra-pentest-review-13035539?section=pricing&secure%5Bexpires_at%5D=2026-07-01+13%3A42%3A06+-0500&secure%5Bsession_id%5D=97d4d88a-a8c5-45c3-a69a-83aa8c04d2c8&secure%5Btoken%5D=8f5d98218cd596f84e40fa331c89047f12bdafd5156662c4fe687149bdd38ba5&format=llm_user)
## Astra Pentest Integrations
  - [Asure](https://www.g2.com/products/asure/reviews)
  - [Bitbucket](https://www.g2.com/products/bitbucket/reviews)
  - [CircleCI](https://www.g2.com/products/circleci/reviews)
  - [GitHub](https://www.g2.com/products/github/reviews)
  - [GitLab](https://www.g2.com/products/gitlab/reviews)
  - [Jenkins](https://www.g2.com/products/jenkins/reviews)
  - [Jira](https://www.g2.com/products/jira/reviews)
  - [Slack](https://www.g2.com/products/slack/reviews)
  - [Sprinto](https://www.g2.com/products/sprinto-inc/reviews)
  - [Vanta](https://www.g2.com/products/vanta/reviews)

## Astra Pentest Features
**Administration**
- Content Delivery
- Dashboard & Reporting
- Alerting

**Administration**
- API / Integrations
- Extensibility
- Reporting and Analytics

**Administration**
- API / Integrations
- Extensibility

**Performance**
- Issue Tracking
- Detection Rate
- False Positives
- Automated Scans

**API Management **
- API Discovery
- API Monitoring
- Reporting
- Change Management

**Cloud Visibility**
- Data Discovery
- Cloud Registry
- Cloud Gap Analytics

**Risk Analysis**
- Blacklist and Whitelist
- Vulnerability Assessment
- Security Auditing

**Analysis**
- Issue Tracking
- Reconnaissance
- Vulnerability Scan

**Analysis**
- Reporting and Analytics
- Issue Tracking
- Static Code Analysis
- Vulnerability Scan
- Code Analysis

**Network**
- Compliance Testing
- Perimeter Scanning
- Configuration Monitoring

**Security Testing**
- Compliance Monitoring
- API Verification
- API Testing

**Security**
- Data Security
- Data loss Prevention
- Security Auditing

**Threat Protection**
- Firewall
- DDoS Protection
- Malware Detection
- Malware Removal

**Testing**
- Command-Line Tools
- Manual Testing
- Test Automation
- Performance and Reliability

**Testing**
- Manual Testing
- Test Automation
- Compliance Testing
- Black-Box Scanning
- Detection Rate
- False Positives

**Application**
- Manual Application Testing
- Static Code Analysis
- Black Box Testing

**Security Management**
- Security and Policy Enforcement
- Anomoly Detection
- Bot Detection

**Identity**
- SSO
- Governance
- User Analytics

**Generative AI**
- AI Text Summarization

**Agentic AI - Vulnerability Scanner**
- Autonomous Task Execution
- Proactive Assistance

## Top Astra Pentest Alternatives
  - [Intruder](https://www.g2.com/products/intruder/reviews) - 4.8/5.0 (206 reviews)
  - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) - 4.5/5.0 (289 reviews)
  - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (814 reviews)

