--- title: ProjectDiscovery Reviews meta_title: 'ProjectDiscovery Reviews 2026: Details, Pricing, & Features | G2' meta_description: Filter reviews by the users' company size, role or industry to find out how ProjectDiscovery works for a business like yours. aggregate_rating: rating_value: 5.0 review_count: 4 scale: '5' date_modified: '2026-06-24' parent_category: name: "DevSecOps\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t" url: https://www.g2.com/categories/devsecops --- # ProjectDiscovery Reviews **Vendor:** ProjectDiscovery **Category:** [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner) **Average Rating:** 5.0/5.0 **Total Reviews:** 4 ## About ProjectDiscovery ProjectDiscovery Cloud is a highly customizable vulnerability management platform built for the modern internet. ProjectDiscovery combines exploitable vulnerability detection with exposure management, powered by open-source technology, to provide security teams with a proactive and scalable vulnerability management solution without false positives. At our core is Nuclei, one of the fastest-growing open-source security tools with over 22k GitHub stars. Nuclei uses YAML-based detection templates to simulate real-world attack techniques, delivering highly accurate results with minimal false positives. Our global community of 100,000+ security professionals actively contributes to our suite of open-source tools and maintains nearly 10,000 Nuclei templates, often developing new vulnerability detection templates within hours of discovery. The platform integrates industry-leading asset discovery and reconnaissance capabilities to map both external and internal attack surfaces. It automatically enriches assets with critical attributes like HTTP status codes, detected technologies, and screenshots, providing real-time alerts for suspicious changes and a unified view of security exposure. Our AI-powered automation streamlines security workflows through AI-generated Nuclei templates, enabling rapid creation of custom security checks based on penetration tests, bug bounty findings, and internal red team discoveries. This innovation significantly reduces time to discovery while enabling continuous vulnerability monitoring and regression detection. ProjectDiscovery Cloud includes comprehensive internal scanning, reporting, and enterprise capabilities to meet compliance requirements. Organizations can replace traditional vulnerability scanners with our solution, leveraging current security budgets while gaining enhanced value. By combining community-driven intelligence, AI automation, and enterprise-grade capabilities, ProjectDiscovery Cloud delivers the speed, accuracy, and insights security teams need to build a modern and effective vulnerability management program. ## ProjectDiscovery Pros & Cons **What users like:** - Users highlight the **excellent customer support** from ProjectDiscovery, appreciating their quick responses and genuine care for users. (2 reviews) - Users find the **ease of implementation** of ProjectDiscovery remarkable, allowing immediate value from its modern vulnerability management platform. (2 reviews) - Users find the **onboarding process incredibly simple** , enabling quick integration and immediate value from ProjectDiscovery. (2 reviews) - Users commend the **accuracy of results** from ProjectDiscovery, leading to improved threat insights and streamlined operations. (1 reviews) - Users value the **seamless cloud integration** of ProjectDiscovery, enhancing their vulnerability management with ease and efficiency. (1 reviews) - Customization (1 reviews) - Dashboard Usability (1 reviews) - Detection (1 reviews) - Easy Integrations (1 reviews) - Efficiency Improvement (1 reviews) **What users dislike:** - Users feel there are **dashboard issues** due to limited features compared to more comprehensive security solutions. (1 reviews) - Users note the **inadequate analytics** offered by ProjectDiscovery, limiting insights within complex security ecosystems. (1 reviews) - Users find **integration issues** with ProjectDiscovery in complex security ecosystems compared to more mature solutions. (1 reviews) - Users feel the **lack of features** in ProjectDiscovery limits its effectiveness for complex security operations. (1 reviews) - Users feel the **limited features** of ProjectDiscovery may not meet the needs of complex security environments. (1 reviews) - Limited Integration (1 reviews) - Not User-Friendly (1 reviews) - Performance Issues (1 reviews) ## ProjectDiscovery Reviews ### 1. Very good tool for own Nuclei templates and regular port scans **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Renewables & Environment | IT Security Engineer, Renewables & Environment, Enterprise (> 1000 emp.) **Reviewed Date:** August 19, 2025 **What do you like best about ProjectDiscovery?** The interface is very clear and easy to use. Our desired use case could be implemented very easily, and we were able to quickly work with support to develop solutions that work for us. Customer support is top-notch; you get immediate responses, and they take care of users' problems and concerns right away. The regular port scans help us keep an eye on our attack surface without having to write many scripts ourselves. The integration of GitHub in conjunction with our own templates completes the platform and offers us very high added value. In our internal External Attack Surface Management, Project Discovery is therefore indispensable. **What do you dislike about ProjectDiscovery?** When first getting started, you have to search a bit for the countless functions and features, but you quickly get the hang of it! **What problems is ProjectDiscovery solving and how is that benefiting you?** As part of our EASM process, it is important to perform port scans to regularly check from the outside whether ports are mistakenly open or not. We can schedule our own Nuclei templates with Project Discovery and have new ports scanned automatically. ### 2. From Open Source to Enterprise Game-Changer: ProjectDiscovery Delivers **Rating:** 5.0/5.0 stars **Reviewed by:** Jason F. | Sr Director of Information Security Operations, Enterprise (> 1000 emp.) **Reviewed Date:** April 08, 2025 **What do you like best about ProjectDiscovery?** The combination of speed, scalability, and the ongoing intelligence driven by its active community makes this solution a great addition to existing tooling. We were able to gain coverage across our complex cloud environment and conduct scans in a fraction of the time it used to take, and the constantly updated Nuclei templates provide invaluable, real-time insights into emerging threats. The ability to quickly create custom templates and proactively identify our exposure, has been a differentiator and the overall onboarding and ease of implementation was incredibly simple, both for blind asset discovery and cloud integrations. The support team is on top of all requests and receptive of enhancement requests. **What do you dislike about ProjectDiscovery?** Some organizations with highly complex and deeply integrated security ecosystems might find the current platform to be somewhat less feature-rich compared to more mature, all-encompassing enterprise solutions. More extensive workflow automation capabilities could further enhance its overall utility within larger, more established security operations centers. However, their focus on core functionality is also what contributes to its speed and efficiency, and I anticipate that they will continue to expand the feature set over time based on user feedback and market demands. **What problems is ProjectDiscovery solving and how is that benefiting you?** We started using ProjectDiscovery when our team was looking for innovative solutions to keep up with the scale and complexity of our expanding attack surface. What stood out immediately was how fast and easy it was to get going — we had scans running within 30 minutes of first logging into the platform, including full coverage across 60+ AWS accounts. The performance is seriously impressive. What used to take days with custom scripting now takes minutes and the results themselves are actionable. Centrally located in a management platform the entire team can use - this immediately replaced a lot of our custom scripting and supplemented our existing enterprise tooling. What I really appreciate is how community-driven the whole platform is. The Nuclei templates are constantly updated, which keeps us ahead of the curve and provides transparency on emerging threats - I know what templates are loaded and get full visibility into the conditions that trigger alerts right in the platform - making it much easier to evaluate findings. ProjectDiscovery open source tooling has already become a key part of our security ops, and it’s clear the team behind the enterprise offering is working to understand the needs of it's practitioners. ### 3. Game-Changing Suite for Security Automation – Nuclei Is a Standout! **Rating:** 5.0/5.0 stars **Reviewed by:** Prakash T. | Senior Security Engineer II, Enterprise (> 1000 emp.) **Reviewed Date:** June 13, 2025 **What do you like best about ProjectDiscovery?** ProjectDiscovery's open-source tool suite has completely revolutionized my security workflow. Whether you're a penetration tester, bug bounty hunter, or red teamer, these tools are battle-tested, fast, and developer-friendly. 🔍 Nuclei is the crown jewel. Its templating engine is blazing fast, supports parallel scanning, and allows for custom YAML-based templates, making it easy to scale your recon and vulnerability discovery across thousands of assets in seconds. The community around it is vibrant, and the shared templates library on GitHub is a goldmine of continuously updated detection capabilities. 📡 Subfinder is incredibly accurate and lightning quick for passive subdomain enumeration. It integrates seamlessly with multiple sources and provides a solid foundation for mapping an organization's external attack surface. 🕵️ httpx is my go-to for validating and probing large volumes of targets. Whether I'm checking for HTTP response behavior, status codes, or CDN/waf fingerprints—httpx delivers consistently with great customization. 🔐 Naabu for port scanning is lean yet powerful. It's great for quick visibility into exposed services, and when paired with Nuclei, forms an unbeatable combo for surface mapping and vulnerability discovery. 💡 What sets ProjectDiscovery apart is their modular, CLI-first philosophy, clean Go codebases, and ease of integration into CI/CD pipelines. They’re perfect for automating security at scale. **What do you dislike about ProjectDiscovery?** While the CLI-first design is a strength, there's still a lot of scope to enhance the user experience with a more intuitive and unified UI. **What problems is ProjectDiscovery solving and how is that benefiting you?** ProjectDiscovery is solving the critical challenge of scalable, automated reconnaissance and vulnerability detection. In modern security workflows—especially in bug bounty, red teaming, and large-scale asset monitoring—manual enumeration and scanning are inefficient and error-prone. Their tools like Nuclei, Subfinder, httpx, and Naabu help automate every stage of external surface mapping: from discovering subdomains and probing ports to identifying misconfigurations and known vulnerabilities. This has significantly reduced the time I spend on repetitive tasks, allowing me to focus on deeper analysis and exploitation. By integrating seamlessly into CI/CD pipelines and supporting easy scripting, ProjectDiscovery enables continuous security testing—a major benefit in fast-moving environments. The performance, speed, and customization offered by their tools have streamlined my workflow and improved both the quality and coverage of my assessments. ### 4. Modern, seamless vulnerability management **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** April 09, 2025 **What do you like best about ProjectDiscovery?** The ProjectDiscovery Cloud Platform brings a modern take on vulnerability management. Built upon their solid open source foundation (Nuclei, Cloudlist, httpx and friends), the platform was extremely easy to plug in to our existing infrastructure for asset discovery and for us to start seeing value immediately. All of the expected integrations (Slack, Jira, webhook etc.) are available and work well. Whilst the plethora of community Nuclei templates gives extensive vulnerability scanning coverage, we also run some of our own for bespoke use-cases (and there's even some AI assistance to help with that). With all of this in mind, the core capability of vulnerability management works very well, with zero/low false positives, and quick detection of anything that needs to be mitigated or remediated. The team at ProjectDiscovery are excellent - they're quick to provide support if needed and it's clear that they genuinely care about building a produce that revolutionises the way vulnerability management works. **What do you dislike about ProjectDiscovery?** No downsides to report. The ProjectDiscovery Cloud Platform delivers exactly what we need. **What problems is ProjectDiscovery solving and how is that benefiting you?** Continuous vulnerability management, with actionable output and low noise. - [View ProjectDiscovery pricing details and edition comparison](https://www.g2.com/products/projectdiscovery/reviews?section=pricing&secure%5Bexpires_at%5D=2026-06-25+12%3A21%3A03+-0500&secure%5Bsession_id%5D=2aa0d829-33fc-49dd-b81d-8a57a7b7792d&secure%5Btoken%5D=a0e723ed86a0eb37b465530cc569590b408190742e9884e9d2e4986c24be78ad&format=llm_user) ## ProjectDiscovery Integrations - [GitHub](https://www.g2.com/products/github/reviews) ## ProjectDiscovery Features **Administration** - API / Integrations - Extensibility **Performance** - Issue Tracking - Detection Rate - False Positives - Automated Scans **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Vulnerability Scan - Code Analysis **Network** - Compliance Testing - Perimeter Scanning - Configuration Monitoring **Testing** - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Application** - Manual Application Testing - Static Code Analysis - Black Box Testing **Agentic AI - Vulnerability Scanner** - Autonomous Task Execution - Proactive Assistance ## Top ProjectDiscovery Alternatives - [GitLab](https://www.g2.com/products/gitlab/reviews) - 4.5/5.0 (880 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (808 reviews) - [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) - 4.6/5.0 (369 reviews)