NodeZero from Horizon3.ai Reviews & Product Details

I really appreciate using NodeZero from Horizon3.ai for its capability to run continuous pen testing on our internal and external environments. It does a fantastic job of identifying security vulnerabilities and prioritizing them, enabling us to focus on remediation efforts with minimal effort but maximum impact. I love the ability to validate that fixes are successfully implemented, which helps keep the environment secure. NodeZero effectively improves the security of the entire organization by listing vulnerabilities and increasing their severity based on their role in attack chains. The continuous testing feature is huge for rerunning tests after fixes and consistently staying updated with new features. It's a big improvement compared to traditional pen tests, which are less frequent. The prioritization aspect helps our understaffed security team focus on the most critical vulnerabilities rather than on raw numbers of critical or high vulnerabilities, which aren’t always exploitable. Plus, Horizon3.ai's team was great at helping us set up the initial scans, allowing us to be up and running in less than 24 hours. Review collected by and hosted on G2.com.

I really don't have any significant issues with NodeZero from Horizon3.ai. Because of our near continuous pen testing, we sometimes have scans that will run a little bit longer and overrun the start time of the next scheduled scan. But that is a relatively easy fix. Review collected by and hosted on G2.com.

I love the simplicity of NodeZero from Horizon3.ai. You don’t have to be a pen tester to run a test, and I really appreciate that the results come back on the same day, highlighting what to fix, how to fix it, and showing remediations. The tenant setup is very easy, and once it's done, you're ready to test. We look at best-in-breed technologies, and Horizon3 is certainly that! Review collected by and hosted on G2.com.

I think the only thing is to add web application testing but this is on the roadmap Review collected by and hosted on G2.com.

It is both intuitive and thorough with easy integration and implementation. During product review, NodeZero became an obvious choice because interaction was simple enough for our nontechnical personnel to follow yet the platform capabilities matched those of skilled professionals. The company has VERY responsive customer service and keeps up with the most recently discovered vulnerabilities and offers rapid release of testing against them. This has become a highly used and critical part of our cybersecurity toolbox. Review collected by and hosted on G2.com.

The only issue is something I just discovered and have not brought to their product team yet. Tripwires doesn't report the specific machines it failed on and succeeded on in an obvious manner. Review collected by and hosted on G2.com.

I really like the service and attention that NodeZero from Horizon3.ai offers. The platform's CMMC aligned guidance is great, providing us with the necessary support to comply under CMMC and covering those pentest controls. I appreciate the flexibility to run focused or ad hoc tests, which is invaluable for us. The expertise of the team is unmatched, and I couldn't have chosen a better company. You all are great, and Will is particularly excellent. The initial setup was very easy too. Review collected by and hosted on G2.com.

N/A Review collected by and hosted on G2.com.

Speed and accuracy. Support for the multiple types of penetration testing. Review collected by and hosted on G2.com.

The installation - docker solution that can be pain in real enterprise grade networks. Customization / fine tuning is missing. Support for custom templates, custom actions. Review collected by and hosted on G2.com.

You can scan internally, externally, and unlimited times, and fantastic reporting Review collected by and hosted on G2.com.

Would like to see more features from the platform Review collected by and hosted on G2.com.

Finding the misconfigurations that have been inherent to an environment for years. Finding weaknesses that I didn't realize were an issue. Finally the ability to be alerted by Rapid Response for existing new vulnerabilities that are exploitable. Review collected by and hosted on G2.com.

No downside. If there is one part that I would like more out of is the application testing (specifically on the external pentests) Review collected by and hosted on G2.com.