Cobalt has a built-in "engineering rotation" system where you can leverage their entire talent pool of pentesters to gain new perspectives from your engagements. The rotation in engineers has been revolutionary in ensuring we're patching issues that previous passes may not have covered, and we're always getting fresh results. Review collected by and hosted on G2.com.
We've loved interacting with Cobalt! Their dashboard is easy to understand and provides a "managers view" of the findings. The test/re-test cycle happens within 48 hours, and our experiences have all been met, and exceeded in our three engagements. I would undoubtedly recommend Cobalt to any company that has pentesting needs. Review collected by and hosted on G2.com.
111 out of 112 Total Reviews for Cobalt
Overall Review Sentiment for Cobalt
Log in to view review sentiment.
CobaltIO is the best pentesting company I worked with. What makes them different is the manual testing of any discovered vulnerability rather than running automated pen tests. They use common tools for this which would be available to everyone but at the same time they compesate that with their skills and knowledge. Cobalt is the only company I know which is very transparent on their testers' recruitment criteria and staging. Customer support is great and very helpful. Review collected by and hosted on G2.com.
Nothing I can think of would influence my decision into looking around for other testing companies Review collected by and hosted on G2.com.
We engaged Cobalt to perform a penetration test on a small application, including some API testing. Our experience was very positive. Their team was professional and conducted thorough manual security testing tailored to our specific business use case. They followed industry-standard security practices and guidelines throughout the process. We appreciated the quality of their work. Overall, we are very satisfied with the service and would recommend them for application security testing. Review collected by and hosted on G2.com.
The pen tester was not involved at the start, so we had to explain the project multiple times—first to the sales team, then to the account manager, and finally to the tester. Streamlining this process would enhance the overall experience and would save lot of our effort to prepare the documents and video recordings of our requirements. Review collected by and hosted on G2.com.
Once you have the guidelines setup, the rest of the process is very straightforward and insightful. The Cobalt team assigned to our pen test was communicative, helpful, and seemingly experienced and thorough. Cobalt communication with regard to testing updates and status is stellar. They check almost all the boxes when it comes to technicaly attack vectors. They also provide an easy to follow checklist for setting up and completing the penetration test. Review collected by and hosted on G2.com.
Setting up the penetration test and providing all of the necessary details and documents is a bit tedious, but I think it's reasonable that context and direction is needed in order to perform a thorough test. Still, some of the instructions could be more detailed and/or the Cobalt team could take the lead more on gathering information. Review collected by and hosted on G2.com.
Cobalt Pentest has been an invaluable asset for me as it helps me to facilitate tasks better. The platform's seamless integration with our existing ticketing and messaging systems helps to streamline our workflow and communication.
The platform's ability to conduct both DAST and attack surface scanning provides additional resources and scans to help us gather a better understanding of our security posture. The setup process was straightforward, and the customer service team has been extremely helpful and responsive.
The pentest engagements we've had have been conducted smoothly. The pentesters helped in during the pentest and even once the pentest was finished with their detailed report for all of the vulnerabilities. Review collected by and hosted on G2.com.
To date, I've been highly satisfied with Cobalt Pentest's services. I look forward to continuing our partnership and deepening our collaboration with their skilled pentesters.
I wish that Cobalt maintains rigorous quality standards for their pentesters and conducts thorough Know Your Employee (KYE) vetting. This commitment to quality assurance ensures that we receive top-tier penetration testing services. Review collected by and hosted on G2.com.
1. The quality of security assessment on the application performed by the pentester.
2. Quality security issues with all details including steps to reproduce, POC and remediation step ease the access to implement the fix.
3. I also like the report generation from the dashboard.
4. The customer support is helpful and promptly response to the quaries. Review collected by and hosted on G2.com.
There's really nothing to dislike about cobalt. Review collected by and hosted on G2.com.
Provides excellent penetration testing. But, not only do you get tickets with the results, they also provide suggested fixes for each of the issues they uncover, saving your engineering team research time. Excellent communication from our pentester as well. Review collected by and hosted on G2.com.
Since we pentest yearly, it had been almost year since I logged in and I could not get my previous account to work. CS solved it for me, but it was a bit of a time sink trying to get back in to start the process. Review collected by and hosted on G2.com.
Cobalt is a cost effective solution for penetration testing. Over the years, I have spoken to many firms and vendors regarding penetration testing, and the range of cost is pretty large. I have used several of them, and it is often hard to determine if you are getting the true value with higher cost. With Cobalt, they have a pool of researchers that could be working on your project. The benefit is that you can have a different ones if you prefer every year, which could potentially find new issues since they might have approaches. Additionally, the overhead of running a pentest is pretty low as there is no weekly progress meetings etc. Overall, I have been a happy customer. Review collected by and hosted on G2.com.
The effectiveness of the pentest will be depended on the researcher to certain extend. If you don't know the researcher, you might want to do some research but the public info can be limited. Another concern is tgat if they are testing in your production environment, then the data access can be a risk if you have sensetive data. In which case, I might want to hire a firm with full time employees. Review collected by and hosted on G2.com.
The best part while working with the Cobolt team was their descriptive daily updates on the pentest with all possible scenarios they tested.
All their updates are posted in a professional manner with easy to understand terms.
The findings reported by them has a very good template with detailed PoC and screen shots. The report is easily understood when shared with customers. They also justify the severity reported for the findings.
They ensure to deploy a team of skilled pentesters to get the job done. Overall their service gets the job done and the report is crafted in a very professional way Review collected by and hosted on G2.com.
One drawback observed was that if the application is complicated or has lot of features, some in-depth coverage is missed out. On several occasions, few pentest issues were found by internal pentesting team that was missed out by Cobalt team. This probably happens cause the same pentesting team is not during the next round of pentest. Something that they can improve upon. Review collected by and hosted on G2.com.
The timely response from their team with each and every finding. They provide detailed explanations for each finding and how to reproduce it. The report they provide after the completion of the pen test is very helpful and easy to use for different compliance standards. The portal is user-friendly and intuitive. The integration with Slack is extremely helpful for keeping track of updates. Their support over Slack is outstanding throughout the entire process. Review collected by and hosted on G2.com.
The documentation to use the product can be improved.
The portal is user-friendly but a detailed tutorial or documentation will help users to navigate and use the advance features available. Review collected by and hosted on G2.com.
I really liked that our needs were met completely. We had a meeting with the team before the project kicked off and we were able to set our expectations for everything we needed. Once the time came to execute the project, everything was done to our specifications and we were able to get all of the reporting done the way we wanted it. We were very happy with the experience. Review collected by and hosted on G2.com.
I do not have anything negative to say about Cobalt or the experience we recieved. All of my interactions with the team was great, and the project was done exactly the way I wanted it to go. Review collected by and hosted on G2.com.