# Best Vulnerability Scanner Software

*By [Lauren Worth](https://research.g2.com/insights/author/lauren-worth)*


Vulnerability scanners continuously monitor applications and networks against an up-to-date database of known vulnerabilities, identifying potential exploits, producing analytical reports on the security state of applications and networks, and providing recommendations to remedy known issues.

### Core Capabilities of Vulnerability Scanner Software

To qualify for inclusion in the Vulnerability Scanner category, a product must:

- Maintain a database of known vulnerabilities
- Continuously scan applications for vulnerabilities
- Produce reports analyzing known vulnerabilities and new exploits

### Common Use Cases for Vulnerability Scanner Software

Security and IT teams use vulnerability scanners to proactively identify and address weaknesses before they can be exploited. Common use cases include:

- Running scheduled and on-demand scans of applications and network infrastructure for known CVEs
- Generating prioritized vulnerability reports to guide remediation efforts
- Testing application and network security posture as part of ongoing compliance and risk management programs

### How Vulnerability Scanner Software Differs from Other Tools

Some vulnerability scanners operate similarly to [dynamic application security testing (DAST)](https://www.g2.com/categories/dynamic-application-security-testing-dast) tools, but the key distinction is that vulnerability scanners test applications and networks against known vulnerability databases rather than mimicking real-world attacks or performing penetration tests. DAST tools simulate attacker behavior to uncover runtime vulnerabilities, while scanners focus on identification and reporting of known weaknesses.

### Insights from G2 on Vulnerability Scanner Software

Based on category trends on G2, continuous scanning and comprehensive vulnerability reporting stand out as standout capabilities. Faster identification of critical exposures and improved compliance readiness stand out as primary benefits of adoption.





## Top Vulnerability Scanner Software at a Glance
| # | Product | Rating | Best For | What Users Say |
|---|---------|--------|----------|----------------|
| 1 | [Wiz](https://www.g2.com/products/wiz-wiz/reviews) | 4.7/5.0 (822 reviews) | Risk-based cloud vulnerability prioritization with context | "[Wiz Delivers Clear Visibility Into Cloud Risks That Truly Matter](https://www.g2.com/survey_responses/wiz-review-12960477)" |
| 2 | [Aikido Security](https://www.g2.com/products/aikido-security/reviews) | 4.6/5.0 (202 reviews) | Auto-triaged DevSecOps scanning with low false positives | "[Enterprise Security Without an Enterprise Security Team](https://www.g2.com/survey_responses/aikido-security-review-13108704)" |
| 3 | [Orca Security](https://www.g2.com/products/orca-security/reviews) | 4.7/5.0 (300 reviews) | Agentless cloud vulnerability scanning with contextual risk prioritization | "[Orca Makes Shadow AI Agents Visible and Governable Across Our Cloud](https://www.g2.com/survey_responses/orca-security-review-13119948)" |
| 4 | [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) | 4.5/5.0 (289 reviews) | Credentialed infrastructure scans with compliance auditing | "[Self-Contained Nessus Scanning with Full Control in Offline Environments](https://www.g2.com/survey_responses/tenable-nessus-review-12937668)" |
| 5 | [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews) | 4.6/5.0 (212 reviews) | SaaS pentest certification with manual validation | "[Smooth Onboarding, Responsive Support, and Strong Pentest Lifecycle Controls](https://www.g2.com/survey_responses/astra-pentest-review-13001206)" |
| 6 | [Intruder](https://www.g2.com/products/intruder/reviews) | 4.8/5.0 (207 reviews) | Continuous vulnerability scanning with emerging threat detection | "[Reliable Service with Flexible Plans and Strong Support](https://www.g2.com/survey_responses/intruder-review-13110046)" |
| 7 | [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) | 4.8/5.0 (110 reviews) | Runtime vulnerability detection in Kubernetes workloads | "[Excellent Real-Time Kubernetes Security Visibility and Threat Detection](https://www.g2.com/survey_responses/sysdig-secure-review-12711991)" |
| 8 | [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews) | 4.6/5.0 (116 reviews) | — | "[Unified Cloud Posture Visibility with CrowdStrike Falcon Cloud Security](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13109056)" |
| 9 | [Burp Suite](https://www.g2.com/products/burp-suite/reviews) | 4.8/5.0 (126 reviews) | Manual web application penetration testing workflows | "[Complete Control Over Web Requests with Burp Suite](https://www.g2.com/survey_responses/burp-suite-review-12677559)" |
| 10 | [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) | 4.5/5.0 (113 reviews) | Risk-based vulnerability prioritization with VPR scoring | "[TVM Does What You Need](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561)" |

---
## What Are the Most Common Questions About Vulnerability Scanner Software?
*AI-generated · Last updated: May 26, 2026*
### What platform provides detailed vulnerability reporting and analytics?
Based on G2 reviews, several vulnerability scanner software products are praised for detailed reporting and clear visibility into findings. According to verified users, Tenable Nessus stands out for detailed reports, audit-friendly outputs, and remediation suggestions, while Intruder reviewers mention clear dashboards and practical reporting that help teams understand and act on issues quickly. G2 reviewers also mention Edgescan for trend reporting, time-to-resolve visibility, and dashboards that help track remediation progress over time. Buyers looking for strong reporting and analytics often value products that combine understandable findings with prioritization and historical visibility so teams can communicate risk clearly and manage remediation more efficiently.


### What platform integrates scanning with patch management systems?
Based on G2 reviews, products in this category often support remediation workflows by helping teams connect findings to patching or operational processes. According to verified users, CyberSmart is noted for patch management alongside vulnerability visibility, helping teams see outdated systems and remediate them from the same workflow. G2 reviewers also mention ConnectSecure Vulnerability and Compliance Manager and APPCHECK as tools that support organized remediation, while Qualys and Tenable products are described as integrating findings into broader operational environments. Buyers evaluating vulnerability scanner software for this use case should prioritize products reviewers say make it easier to move from finding issues to coordinating fixes, especially when patching and compliance work need to stay tightly connected.


### What is the most affordable vulnerability scanner for SMBs?
Based on G2 reviews, affordability for SMBs is usually described in terms of value, ease of setup, and reduced manual work rather than exact pricing. According to verified users, Aikido Security is frequently described as friendly for small and mid-sized businesses, with reviewers highlighting strong value and straightforward setup. G2 reviewers also mention Intruder as cost-effective and easy to operate, while Offensity is noted as an affordable way to stay on top of cyber risks without hiring dedicated experts. For SMB buyers, the strongest value signals in recent reviews come from products that combine simple onboarding, actionable findings, and automation that reduces the need for extra security staffing.

**Here are some of the top-rated products on G2:**

- [Aikido Security](https://www.g2.com/products/aikido-security/reviews/aikido-security-review-11660004) – reviewers describe it as suitable for SMBs with broad automated security testing and simple setup
- [Intruder](https://www.g2.com/products/intruder/reviews/intruder-review-11847236) – users highlight cost-effective scanning, easy implementation, and low operational overhead
- [Offensity](https://www.g2.com/products/offensity/reviews/offensity-review-11393651) – reviewers call out affordability and continuous automated scans for smaller teams


### Which vendor offers automated remediation guidance for vulnerabilities?
Based on G2 reviews, several vendors are recognized for helping teams move from findings to fixes with clear remediation guidance. According to verified users, Wiz is frequently praised for actionable remediation steps, contextual prioritization, and guidance that helps security and engineering teams understand what to fix first. G2 reviewers also mention Tenable Nessus for helpful remediation tips and APPCHECK for making vulnerability assignment and management easier. Buyers looking for vulnerability scanner software with strong remediation support should focus on products reviewers say reduce manual triage, explain issues clearly, and provide practical next steps instead of only listing findings.


### Which solution supports vulnerability scanning for cloud environments?
Based on G2 reviews, cloud vulnerability scanning is a major strength for multiple products in this category. According to verified users, Wiz is repeatedly praised for broad visibility across cloud environments, including vulnerabilities, misconfigurations, and risk prioritization in a single platform. G2 reviewers also mention Orca Security for agentless cloud scanning and centralized visibility, while Intruder and CrowdStrike Falcon Cloud Security are described as helping teams monitor cloud assets and workloads more effectively. Buyers focused on cloud use cases should look for recent review themes around fast onboarding, multi-cloud visibility, and the ability to prioritize real risks rather than simply generating large volumes of alerts.


### What is the top-rated vulnerability scanner for large organizations?
Based on G2 reviews, Wiz appears most frequently in recent feedback and is consistently described as a strong fit for large, complex environments. According to verified users, it helps organizations unify cloud visibility, reduce alert fatigue, and prioritize risks across broad environments without adding heavy deployment friction. G2 reviewers mention benefits such as multi-cloud visibility, strong collaboration across security and engineering teams, and support for scaling security operations in complex estates. For large organizations, the most common recent themes are broad coverage, contextual prioritization, and the ability to consolidate multiple security workflows into one platform, all of which are repeatedly associated with Wiz in the supplied review set.


### What is the best vulnerability scanning tool for enterprise IT teams?
Based on G2 reviews, Wiz is the strongest recent fit for enterprise IT teams because reviewers repeatedly describe it as helping large teams unify visibility, prioritize meaningful risks, and coordinate remediation across complex environments. According to verified users, it reduces noise by connecting vulnerabilities, misconfigurations, and exposures in context, which helps enterprise teams focus their efforts more effectively. G2 reviewers also mention fast onboarding, strong integrations, and better collaboration between security, infrastructure, and engineering teams. In the supplied review set, those enterprise-focused themes appear most consistently around Wiz, making it the clearest recent answer for buyers seeking a broad, scalable vulnerability scanner software platform.


### Which tool supports scanning for compliance with industry standards?
Based on G2 reviews, several tools are used to support compliance-driven vulnerability scanning. According to verified users, Tenable Nessus is commonly mentioned for helping teams scan against recognized standards and create reports for audit and compliance use cases. G2 reviewers also mention Intruder for ongoing scanning tied to compliance workflows, CyberSmart for Cyber Essentials-related monitoring, and Wiz for supporting PCI, SOC, and broader compliance visibility in cloud environments. Buyers looking for compliance-focused vulnerability scanner software should prioritize tools reviewers say generate understandable reports, surface remediation clearly, and fit into recurring audit or certification processes without adding heavy manual work.


### Which vendor provides real-time vulnerability detection and alerts?
Based on G2 reviews, real-time or continuously updated visibility is a common requirement for buyers who need fast response to new issues. According to verified users, Wiz is repeatedly described as providing rapid visibility into vulnerabilities and risks across cloud environments, with contextual prioritization that helps teams respond faster. G2 reviewers also mention Intruder for automatic scanning and timely notifications, while CyberSmart is noted for real-time style reporting on vulnerabilities and patching needs. For this use case, buyers should look for products that reviewers say combine continuous monitoring with useful alerts, so teams can act quickly without being buried in low-value noise.


### Which vulnerability scanner offers the most accurate network security assessments?
Based on G2 reviews, Tenable Nessus is one of the clearest choices for accurate network-focused assessments. According to verified users, it is praised for high scanning accuracy, broad plugin coverage, clear reports, and fast identification of vulnerabilities across networks and hybrid environments. G2 reviewers mention that it helps uncover hidden issues, supports regular scanning, and provides actionable remediation tips that make findings easier to address. Other products in the dataset also support network visibility, but Nessus is the one most directly associated in recent reviews with accurate, dependable vulnerability assessments for network assets and infrastructure.




## G2 Grid® for Vulnerability Scanner Software
![G2 Grid® for Vulnerability Scanner Software plotting products by satisfaction and market presence](https://www.g2.com/categories/vulnerability-scanner/grids.png?focus%5B%5D=146504&focus%5B%5D=1259627&focus%5B%5D=123609&focus%5B%5D=32494&focus%5B%5D=154599&focus%5B%5D=27706&focus%5B%5D=20460&focus%5B%5D=151443)
Highlighted products: Wiz, Aikido Security, Orca Security, Tenable Nessus, Astra Pentest, Intruder, Sysdig Secure, and CrowdStrike Falcon Cloud Security.
Underlying data: [Grid® JSON](https://www.g2.com/categories/vulnerability-scanner/grids.json?focus%5B%5D=wiz-wiz&amp;focus%5B%5D=aikido-security&amp;focus%5B%5D=orca-security&amp;focus%5B%5D=tenable-nessus&amp;focus%5B%5D=astra-pentest&amp;focus%5B%5D=intruder&amp;focus%5B%5D=sysdig-sysdig-secure&amp;focus%5B%5D=crowdstrike-falcon-cloud-security)


## How Many Vulnerability Scanner Software Products Does G2 Track?
**Total Products under this Category:** 223

### Category Stats (Jul 2026)
- **Average Rating**: 4.58/5 (↓0.01 vs Jun 2026) The average rating of products in this category, based on all submitted ratings
- **Top Trending Product**: CybaOps (+8.33%) - Among all products in this category, CybaOps recorded the largest rating increase compared to last month
*Last updated: July 16, 2026*


## How Does G2 Rank Vulnerability Scanner Software Products?

**Why You Can Trust G2's Software Rankings:**

- 30 Analysts and Data Experts
- 7,500+ Authentic Reviews
- 223+ Products
- Unbiased Rankings

G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category.


## Which Vulnerability Scanner Software Is Best for Your Use Case?

- **Leader:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
- **Highest Performer:** [BugDazz API Scanner](https://www.g2.com/products/bugdazz-api-scanner/reviews)
- **Easiest to Use:** [Orca Security](https://www.g2.com/products/orca-security/reviews)
- **Top Trending:** [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
- **Best Free Software:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews)


---

**Sponsored**

### Aikido Security

Aikido Security is the developer-first security platform that unifies code, cloud, protection, and attack testing in one suite of best-in-class products. Built by developers for developers, Aikido helps teams of any size ship secure software faster, automate protection, and simulate real-world attacks with AI-driven precision. The platform’s proprietary AI cuts noise by 95%, delivers one-click fixes, and saves developers 10+ hours per week. Aikido Intel proactively uncovers vulnerabilities in open source packages before disclosure, helping secure more than 50,000 organizations worldwide, including Revolut, Niantic, Visma, Montblanc, and GoCardless.



[Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&amp;secure%5Bad_slot%5D=category_product_list&amp;secure%5Bcategory_id%5D=1423&amp;secure%5Bchosen_at%5D=2026-07-17T15%3A17%3A50Z&amp;secure%5Bdisplayable_resource_id%5D=1423&amp;secure%5Bdisplayable_resource_type%5D=Category&amp;secure%5Bmedium%5D=sponsored&amp;secure%5Bplacement_reason%5D=page_category&amp;secure%5Bplacement_resource_ids%5D%5B%5D=1423&amp;secure%5Bprioritized%5D=false&amp;secure%5Bproduct_id%5D=1259627&amp;secure%5Bresource_id%5D=1423&amp;secure%5Bresource_type%5D=Category&amp;secure%5Bsource_type%5D=category_page&amp;secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fvulnerability-scanner%3Fopen_modal_url%3D%252Fproducts%252Fresilientx-security-platform%252Fwishlists%253Fhost_path%253D%25252Fcategories%25252Fvulnerability-scanner%2526source%253Dcategory&amp;secure%5Btoken%5D=88a7fe1a3bd590a37eee3a7934f0462f2e0ef99ea9b6cdd09c69a8c9fa20973f&amp;secure%5Burl%5D=https%3A%2F%2Fwww.aikido.dev%2Fuse-cases%2Fvulnerability-management%3Futm_source%3Dg2%26utm_campaign%3Dg2-promoted-listing-vulnerability-mgmt%26utm_medium%3Dcpc&amp;secure%5Burl_type%5D=custom_url)

---


## Vulnerability Scanner Software Features & Capabilities

### What are the Best Vulnerability Scanner Software with Compliance Testing?
Allows users to scan applications and networks for specific compliance requirements.

**Top-rated Vulnerability Scanner Software for Compliance Testing:**
- [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
- [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
- [Orca Security](https://www.g2.com/products/orca-security/reviews)
[Explore Vulnerability Scanner Software with Compliance Testing](https://www.g2.com/categories/vulnerability-scanner/f/compliance-testing)

### What are the Best Vulnerability Scanner Software with Perimeter Scanning?
Analyzes network devices, servers and operating systems for vulnerabilities.

**Top-rated Vulnerability Scanner Software for Perimeter Scanning:**
- [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
- [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
- [Orca Security](https://www.g2.com/products/orca-security/reviews)
[Explore Vulnerability Scanner Software with Perimeter Scanning](https://www.g2.com/categories/vulnerability-scanner/f/perimeter-scanning)

### What are the Best Vulnerability Scanner Software with Manual Application Testing?
Allows users to perfrom hands-on live simulations and penetration tests.

**Top-rated Vulnerability Scanner Software for Manual Application Testing:**
- [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
- [Orca Security](https://www.g2.com/products/orca-security/reviews)
- [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews)
[Explore Vulnerability Scanner Software with Manual Application Testing](https://www.g2.com/categories/vulnerability-scanner/f/manual-application-testing)

### What are the Best Vulnerability Scanner Software with Static Code Analysis?
Scans application source code for security flaws without executing it.

**Top-rated Vulnerability Scanner Software for Static Code Analysis:**
- [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
- [Orca Security](https://www.g2.com/products/orca-security/reviews)
- [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews)
[Explore Vulnerability Scanner Software with Static Code Analysis](https://www.g2.com/categories/vulnerability-scanner/f/static-code-analysis)

### What are the Best Vulnerability Scanner Software with Automated Scans?
Runs pre-scripted vulnerability scans without requiring manual work.

**Top-rated Vulnerability Scanner Software for Automated Scans:**
- [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
- [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
- [Orca Security](https://www.g2.com/products/orca-security/reviews)
[Explore Vulnerability Scanner Software with Automated Scans](https://www.g2.com/categories/vulnerability-scanner/f/automated-scans)


## What Are the Top-Rated Vulnerability Scanner Software Products in 2026?
### 1. [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
Wiz transforms cloud security for customers – including more than 50% of the Fortune 100 – by enabling a new operating model. With Wiz, organizations can democratize security across the development lifecycle, empowering them to build fast and securely. Its Cloud Native Application Protection Platform (CNAPP) consolidates CSPM, KSPM, CWPP, Vulnerability management, IaC scanning, CIEM, DSPM into a single platform. Wiz drives visibility, risk prioritization, and business agility. Protecting Your Cloud Environments Requires a Unified, Cloud Native Platform. Wiz connects to every cloud environment, scans every layer, and covers every aspect of your cloud security - including elements that normally require installing agents. Its comprehensive approach has all of these cloud security solutions built in. Hundreds of organizations worldwide, including 50 percent of the Fortune 100, to rapidly identify and remove critical risks in cloud environments. Its customers include Salesforce, Slack, Mars, BMW, Avery Dennison, Priceline, Cushman &amp; Wakefield, DocuSign, Plaid, and Agoda, among others. Wiz is backed by Sequoia, Index Ventures, Insight Partners, Salesforce, Blackstone, Advent, Greenoaks, Lightspeed and Aglaé. Visit https://www.wiz.io for more information.


**Average Rating:** 4.7/5.0
**Total Reviews:** 822
**How Do G2 Users Rate Wiz?**

- **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.8/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.0/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.8/10 (Category avg: 8.4/10)

**Who Is the Company Behind Wiz?**

- **Seller:** [Wiz](https://www.g2.com/sellers/wiz-76a0133b-42e5-454e-b5da-860e503471db)
- **Company Website:** https://www.wiz.io/
- **Year Founded:** 2020
- **HQ Location:** New York, US
- **Twitter:** @wiz_io (24,733 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/wizsecurity/ (3,383 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** CISO, Security Engineer
- **Top Industries:** Financial Services, Computer Software
- **Company Size:** 54% Enterprise, 39% Mid-Market


#### What Are Wiz's Pros and Cons?

**Pros:**

- Features (110 reviews)
- Security (107 reviews)
- Ease of Use (103 reviews)
- Visibility (86 reviews)
- Easy Setup (67 reviews)

**Cons:**

- Learning Curve (34 reviews)
- Feature Limitations (33 reviews)
- Improvement Needed (33 reviews)
- Improvements Needed (28 reviews)
- Complexity (27 reviews)


### What Do G2 Reviewers Say About Wiz?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend the **capable APIs and user-friendly UI** , providing valuable insights and continuous improvements in security features.
- Users value the **unmatched security features** of Wiz, providing comprehensive visibility and proactive threat management capabilities.
- Users find Wiz&#39;s product suite **extremely easy to use** , benefiting from seamless integration and a user-friendly interface.
- Users appreciate the **visibility** Wiz offers, enhancing security posture and prioritizing critical vulnerabilities effectively.
- Users praise the **easy setup** of Wiz, enabling quick deployment and seamless integration across modules for enhanced security.

**Cons:**

- Users experience a **steep learning curve** with Wiz, making it challenging for newcomers to fully utilize the platform.
- Users find the **feature limitations** of Wiz, such as complex reporting and management, hinder user-friendliness and efficiency.
- Users highlight the need for **improvement in performance and reporting capabilities** to enhance overall usability of Wiz.
- Users note several **improvements needed** , particularly in dashboard reporting and the complexity of the pricing model.
- Users find the **complexity of the interface** overwhelming initially, requiring time to adapt and learn effectively.

#### What Are Recent G2 Reviews of Wiz?

**"[Excellent Cloud Risk Visibility and Fast Insights with Wiz](https://www.g2.com/survey_responses/wiz-review-12964571)"**

**Rating:** 4.5/5.0 stars
*— Ruben F.*

[Read full review](https://www.g2.com/survey_responses/wiz-review-12964571)

---

**"[Wiz Delivers Clear Visibility Into Cloud Risks That Truly Matter](https://www.g2.com/survey_responses/wiz-review-12960477)"**

**Rating:** 4.5/5.0 stars
*— Jason I.*

[Read full review](https://www.g2.com/survey_responses/wiz-review-12960477)

---



### 2. [Aikido Security](https://www.g2.com/products/aikido-security/reviews)
Aikido Security is the developer-first security platform that unifies code, cloud, protection, and attack testing in one suite of best-in-class products. Built by developers for developers, Aikido helps teams of any size ship secure software faster, automate protection, and simulate real-world attacks with AI-driven precision. The platform’s proprietary AI cuts noise by 95%, delivers one-click fixes, and saves developers 10+ hours per week. Aikido Intel proactively uncovers vulnerabilities in open source packages before disclosure, helping secure more than 50,000 organizations worldwide, including Revolut, Niantic, Visma, Montblanc, and GoCardless.


**Average Rating:** 4.6/5.0
**Total Reviews:** 202
**How Do G2 Users Rate Aikido Security?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.0/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.0/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.1/10 (Category avg: 8.4/10)

**Who Is the Company Behind Aikido Security?**

- **Seller:** [Aikido Security](https://www.g2.com/sellers/aikido-security)
- **Company Website:** https://aikido.dev
- **Year Founded:** 2022
- **HQ Location:** Ghent, Belgium
- **Twitter:** @AikidoSecurity (11,770 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/aikido-security/ (241 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Founder, CTO
- **Top Industries:** Computer Software, Information Technology and Services
- **Company Size:** 77% Small-Business, 14% Mid-Market


#### What Are Aikido Security's Pros and Cons?

**Pros:**

- Ease of Use (78 reviews)
- Security (55 reviews)
- Features (52 reviews)
- Easy Integrations (47 reviews)
- Easy Setup (47 reviews)

**Cons:**

- Missing Features (19 reviews)
- Expensive (17 reviews)
- Limited Features (16 reviews)
- Pricing Issues (15 reviews)
- Lacking Features (14 reviews)


### What Do G2 Reviewers Say About Aikido Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **ease of use** of Aikido Security, benefiting from its clear, actionable insights and seamless integration.
- Users praise Aikido Security for its **fast and user-friendly identification of security issues** in codebases, enhancing development practices.
- Users appreciate the **robust features of Aikido Security** , valuing its usability and effectiveness in enhancing security workflows.
- Users value the **easy integrations** with GitLab, allowing for quick start and effective tracking of security issues.
- Users commend the **easy setup** of Aikido Security, simplifying integration and enhancing their security workflow significantly.

**Cons:**

- Users note the **missing features** in Aikido Security, wishing for more integration and advanced configuration options.
- Users find the **pricing excessive** , particularly for startups, despite acknowledging the product&#39;s value.
- Users find Aikido Security has **limited features** , particularly in advanced customization and reporting for complex environments.
- Users find the **entry-level pricing** of Aikido Security too high for startups, limiting adoption and experimentation.
- Users are frustrated by the **lack of features** , especially with local scanning and branch handling limitations.

#### What Are Recent G2 Reviews of Aikido Security?

**"[Enterprise Security Without an Enterprise Security Team](https://www.g2.com/survey_responses/aikido-security-review-13108704)"**

**Rating:** 4.0/5.0 stars
*— Ian M.*

[Read full review](https://www.g2.com/survey_responses/aikido-security-review-13108704)

---

**"[Seamless GitHub Integration with Solid Security Findings and Smart False-Positive Analysis](https://www.g2.com/survey_responses/aikido-security-review-13109689)"**

**Rating:** 4.5/5.0 stars
*— Jordan B.*

[Read full review](https://www.g2.com/survey_responses/aikido-security-review-13109689)

---



### 3. [Orca Security](https://www.g2.com/products/orca-security/reviews)
The Orca Cloud Security Platform identifies, prioritizes, and remediates risks and compliance issues in workloads, configurations, and identities across your cloud estate spanning AWS, Azure, Google Cloud, Kubernetes, Alibaba Cloud, and Oracle Cloud. Orca offers the industry’s most comprehensive cloud security solution in a single platform — eliminating the need to deploy and maintain multiple point solutions. Orca is agentless-first, and connects to your environment in minutes using Orca’s patented SideScanning™ technology that provides deep and wide visibility into your cloud environment, without requiring agents. In addition, Orca can integrate with third-party agents for runtime visibility and protection for critical workloads. Orca is at the forefront of leveraging Generative AI for simplified investigations and accelerated remediation – reducing required skill levels and saving cloud security, DevOps, and development teams time and effort, while significantly improving security outcomes. As a Cloud Native Application Protection Platform (CNAPP), Orca consolidates many point solutions in one platform, including: CSPM, CWPP, CIEM, Vulnerability Management, Container and Kubernetes Security, DSPM, API Security, CDR, Multi-cloud Compliance, Shift Left Security, and AI-SPM.


**Average Rating:** 4.7/5.0
**Total Reviews:** 300
**How Do G2 Users Rate Orca Security?**

- **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.8/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.2/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.7/10 (Category avg: 8.4/10)

**Who Is the Company Behind Orca Security?**

- **Seller:** [Orca Security](https://www.g2.com/sellers/orca-security)
- **Company Website:** https://orca.security
- **Year Founded:** 2019
- **HQ Location:** Portland, Oregon
- **Twitter:** @orcasec (4,835 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/35573984/ (515 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Security Engineer, CISO
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 53% Enterprise, 38% Mid-Market


#### What Are Orca Security's Pros and Cons?

**Pros:**

- Ease of Use (13 reviews)
- Vulnerability Scanning (13 reviews)
- Features (11 reviews)
- Visibility (11 reviews)
- Comprehensive Security (9 reviews)

**Cons:**

- Security Vulnerabilities (6 reviews)
- Dashboard Issues (5 reviews)
- Delayed Detection (5 reviews)
- False Positives (5 reviews)
- Improvement Needed (5 reviews)


### What Do G2 Reviewers Say About Orca Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users praise the **ease of use** of Orca Security, appreciating its intuitive interface and quick setup process.
- Users value the **visibility and prioritization** of vulnerabilities provided by Orca Security, enhancing their cloud security posture.
- Users praise Orca Security for its **agentless features** , intuitive interface, and effective compliance and security modules.
- Users value the **exceptional visibility** provided by Orca Security, enhancing insight into their cloud environment effortlessly.
- Users value the **comprehensive security** features of Orca Security, enhancing visibility and ease of implementation across cloud environments.

**Cons:**

- Users note that Orca Security has **security vulnerabilities** , particularly regarding API security and vulnerable package detection.
- Users experience **dashboard issues** like cluttered information and slow performance, leading to navigation challenges and bugs.
- Users experience **delayed detection** with Orca Security due to slow scans and accumulated issues affecting troubleshooting efficiency.
- Users report frequent **false positives** in Orca Security, causing confusion over actual vulnerabilities in their systems.
- Users note that **improvement is needed** in reporting, automation, and granularity for a better Orca Security experience.

#### What Are Recent G2 Reviews of Orca Security?

**"[Orca Makes Shadow AI Agents Visible and Governable Across Our Cloud](https://www.g2.com/survey_responses/orca-security-review-13119948)"**

**Rating:** 5.0/5.0 stars
*— Bilal J.*

[Read full review](https://www.g2.com/survey_responses/orca-security-review-13119948)

---

**"[Orca Unifies AppSec, Cloud, and Agent Context in One Clear View](https://www.g2.com/survey_responses/orca-security-review-13096711)"**

**Rating:** 5.0/5.0 stars
*— Samuel J.*

[Read full review](https://www.g2.com/survey_responses/orca-security-review-13096711)

---


#### What Are G2 Users Discussing About Orca Security?

- [Where is Orca security based?](https://www.g2.com/discussions/where-is-orca-security-based) - 2 comments
- [How much does Orca security cost?](https://www.g2.com/discussions/how-much-does-orca-security-cost) - 1 comment
- [What is ORCA platform?](https://www.g2.com/discussions/what-is-orca-platform) - 1 comment
- [What does Orca Security do?](https://www.g2.com/discussions/what-does-orca-security-do) - 1 comment

### 4. [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews)
Built for security practitioners, by security professionals, Nessus products by Tenable are the de-facto industry standard for vulnerability assessment. Nessus performs point-in-time assessments to help security professionals quickly and easily identify and fix vulnerabilities, including software flaws, missing patches, malware, and misconfigurations - across a variety of operating systems, devices, and applications. With features such as pre-built policies and templates, customizable reporting, group “snooze” functionality, and real-time updates, Nessus is designed to make vulnerability assessment simple, easy, and intuitive. The result: less time and effort to assess, prioritize, and remediate issues.


**Average Rating:** 4.5/5.0
**Total Reviews:** 289
**How Do G2 Users Rate Tenable Nessus?**

- **Has the product been a good partner in doing business?:** 8.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.9/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.0/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.4/10 (Category avg: 8.4/10)

**Who Is the Company Behind Tenable Nessus?**

- **Seller:** [Tenable](https://www.g2.com/sellers/tenable)
- **Company Website:** https://www.tenable.com/
- **HQ Location:** Columbia, MD
- **Twitter:** @TenableSecurity (87,752 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®)
- **Ownership:** NASDAQ: TENB

**Who Uses This Product?**
- **Who Uses This:** Security Engineer, Network Engineer
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 40% Mid-Market, 34% Enterprise


#### What Are Tenable Nessus's Pros and Cons?

**Pros:**

- Vulnerability Identification (20 reviews)
- Vulnerability Detection (18 reviews)
- Ease of Use (16 reviews)
- Automated Scanning (15 reviews)
- Features (13 reviews)

**Cons:**

- Slow Scanning (7 reviews)
- Expensive (6 reviews)
- Limited Features (6 reviews)
- Complexity (5 reviews)
- False Positives (5 reviews)


### What Do G2 Reviewers Say About Tenable Nessus?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **vulnerability identification** capabilities of Tenable Nessus, highlighting its accuracy and comprehensive coverage for security management.
- Users value the **advanced vulnerability detection** capabilities of Tenable Nessus, enhancing their security risk management effectively.
- Users value the **ease of use** of Tenable Nessus, appreciating its simple setup and user-friendly interface.
- Users value the **automated scanning** capabilities of Tenable Nessus, benefiting from its comprehensive and up-to-date vulnerability checks.
- Users commend the **comprehensive scanning capabilities** of Tenable Nessus, alongside its robust reporting and automation features.

**Cons:**

- Users note the **slow scanning** process, especially in large environments, significantly impacting resource usage and production times.
- Users find the **cost of running and maintaining Tenable Nessus** to be extensively high and burdensome.
- Users find **limited features** in Tenable Nessus, including restrictions on hosts, scans, and mobile application testing.
- Users find the **complexity** of Tenable Nessus challenging, especially with advanced features requiring significant technical knowledge.
- Users report that Nessus generates **false positives** , resulting in extra workload and hindering effective security management.

#### What Are Recent G2 Reviews of Tenable Nessus?

**"[Self-Contained Nessus Scanning with Full Control in Offline Environments](https://www.g2.com/survey_responses/tenable-nessus-review-12937668)"**

**Rating:** 4.0/5.0 stars
*— Verified User in Higher Education*

[Read full review](https://www.g2.com/survey_responses/tenable-nessus-review-12937668)

---

**"[Reliable and Efficient Vulnerability Management Tool](https://www.g2.com/survey_responses/tenable-nessus-review-12989192)"**

**Rating:** 5.0/5.0 stars
*— Mohsin H.*

[Read full review](https://www.g2.com/survey_responses/tenable-nessus-review-12989192)

---


#### What Are G2 Users Discussing About Tenable Nessus?

- [What is Nessus used for?](https://www.g2.com/discussions/what-is-nessus-used-for) - 1 comment
- [What types of vulnerabilities are scanned by Nessus?](https://www.g2.com/discussions/what-types-of-vulnerabilities-are-scanned-by-nessus)
- [Is there a free version of Nessus?](https://www.g2.com/discussions/is-there-a-free-version-of-nessus) - 2 comments
- [What is an advantage of using Nessus?](https://www.g2.com/discussions/what-is-an-advantage-of-using-nessus)
- [What does Nessus scan for?](https://www.g2.com/discussions/what-does-nessus-scan-for) - 1 comment

### 5. [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews)
Astra Security is a leading continuous penetration testing platform that combines AI-powered autonomous pentesting with certified expert-led assessments. Powered by Attack AI, trained on 6.8M+ security findings and insights from 5,000+ real-world pentests. Astra deploys intelligent agents that continuously discover, validate, prioritize, and help remediate vulnerabilities at scale. While AI handles speed and scale, Astra’s certified security experts focus on what automation alone cannot: complex business logic flaws, multi-step attack chains, advanced exploit paths, and emerging AI/LLM-specific threats. Built for modern engineering teams, Astra integrates directly into CI/CD workflows, enabling continuous security validation between releases instead of relying on outdated annual pentests. The platform delivers comprehensive Autonomous Pentest powered by AI agents, DAST vulnerability scanner and human-driven pentests across web apps, AI/LLMs, mobile apps, APIs, cloud infrastructure. Astra is CREST-accredited, CERT-IN empaneled, and a PCI ASV-certified vendor. Our team also led the development of the OWASP APTS framework, helping shape the industry standard for continuous security testing. Today, 1,500+ organizations across 70+ countries trust Astra Security, including Ford, Loom, CompTIA, Hitachi, HackerRank, and OLX.


**Average Rating:** 4.6/5.0
**Total Reviews:** 212
**How Do G2 Users Rate Astra Pentest?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.8/10 (Category avg: 8.9/10)
- **Automated Scans:** 8.9/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.7/10 (Category avg: 8.4/10)

**Who Is the Company Behind Astra Pentest?**

- **Seller:** [ASTRA IT, Inc.](https://www.g2.com/sellers/astra-it-inc)
- **Company Website:** https://www.getastra.com/
- **Year Founded:** 2018
- **HQ Location:** New Delhi, IN
- **Twitter:** @getastra (694 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/getastra/ (130 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** CTO, CEO
- **Top Industries:** Computer Software, Information Technology and Services
- **Company Size:** 66% Small-Business, 29% Mid-Market


#### What Are Astra Pentest's Pros and Cons?

**Pros:**

- Customer Support (63 reviews)
- Vulnerability Detection (51 reviews)
- Ease of Use (50 reviews)
- Pentesting Efficiency (42 reviews)
- Vulnerability Identification (37 reviews)

**Cons:**

- Poor Customer Support (12 reviews)
- Poor Interface Design (10 reviews)
- Slow Performance (8 reviews)
- UX Improvement (7 reviews)
- Lack of Information (6 reviews)


### What Do G2 Reviewers Say About Astra Pentest?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **responsive customer support** of Astra Pentest, enhancing their experience and ensuring smooth collaboration.
- Users value the **comprehensive vulnerability management features** of Astra Pentest, enhancing their ability to address security issues effectively.
- Users love the **ease of use** of Astra Pentest, appreciating its intuitive design and accessible features.
- Users commend Astra Pentest for its **efficient penetration testing** , enabling swift execution and effective communication throughout the process.
- Users value the **thorough vulnerability identification** of Astra Pentest, enhancing confidence and security in their development processes.

**Cons:**

- Users experience **poor customer support** , citing slow responses and difficulties with account setup and vulnerability inquiries.
- Users find the **poor interface design** of Astra Pentest to be clunky and not user-friendly, affecting usability.
- Users experience **slow performance** with Astra Pentest, affecting testing speed and response times for results.
- Users feel that the **UX could be improved** for a smoother experience, as navigation can sometimes be confusing.
- Users face a **lack of information** with Astra Pentest, as documentation and updates are often insufficient or slow to arrive.

#### What Are Recent G2 Reviews of Astra Pentest?

**"[Exceptional VAPT Solution with Prompt Support](https://www.g2.com/survey_responses/astra-pentest-review-9603864)"**

**Rating:** 5.0/5.0 stars
*— Nikhil Ajit S.*

[Read full review](https://www.g2.com/survey_responses/astra-pentest-review-9603864)

---

**"[Smooth Onboarding, Responsive Support, and Strong Pentest Lifecycle Controls](https://www.g2.com/survey_responses/astra-pentest-review-13001206)"**

**Rating:** 5.0/5.0 stars
*— Sivakumar S.*

[Read full review](https://www.g2.com/survey_responses/astra-pentest-review-13001206)

---


#### What Are G2 Users Discussing About Astra Pentest?

- [What is Astra Pentest used for?](https://www.g2.com/discussions/what-is-astra-pentest-used-for) - 2 comments

### 6. [Intruder](https://www.g2.com/products/intruder/reviews)
Intruder&#39;s continuous exposure management platform helps security, IT, and engineering teams stop breaches before they start. By unifying AI penetration testing, attack surface monitoring, cloud security, and vulnerability management in one intuitive platform, Intruder gives stretched teams an always-on security source of truth. Our approach focuses on continuous automated scanning using expertise and agentic solutions to ensure that the findings we deliver are accurate, prioritized by real-world risk, and ready to act on. Founded in 2015 by Chris Wallis, a former ethical hacker turned corporate blue teamer, Intruder is now protecting over 3,000 companies worldwide. Intruder has been awarded multiple accolades, was selected for GCHQ’s Cyber Accelerator, included on Deloitte’s Tech Fast 50 2023 list as the fastest-growing cybersecurity company in the UK and was named in G2’s 2026 Best Software Awards.


**Average Rating:** 4.8/5.0
**Total Reviews:** 207
**How Do G2 Users Rate Intruder?**

- **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.3/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.5/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 9.5/10 (Category avg: 8.4/10)

**Who Is the Company Behind Intruder?**

- **Seller:** [Intruder](https://www.g2.com/sellers/intruder)
- **Company Website:** https://www.intruder.io
- **Year Founded:** 2015
- **HQ Location:** London
- **Twitter:** @intruder_io (979 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/6443623/ (83 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** CTO, Director
- **Top Industries:** Computer Software, Information Technology and Services
- **Company Size:** 57% Small-Business, 36% Mid-Market


#### What Are Intruder's Pros and Cons?

**Pros:**

- Ease of Use (41 reviews)
- Vulnerability Detection (30 reviews)
- Customer Support (25 reviews)
- User Interface (24 reviews)
- Vulnerability Identification (24 reviews)

**Cons:**

- Expensive (9 reviews)
- Slow Scanning (8 reviews)
- Licensing Issues (7 reviews)
- False Positives (6 reviews)
- Limited Features (6 reviews)


### What Do G2 Reviewers Say About Intruder?
*AI-generated summary from verified user reviews*

**Pros:**

- Users find the **ease of use** of Intruder perfect for configuring and scanning cloud resources efficiently.
- Users appreciate the **easy configuration of vulnerability detection** , making it simple to secure cloud resources efficiently.
- Users value the **exceptional customer support** from Intruder, highlighting quick responses and friendliness during their experience.
- Users value Intruder&#39;s **easy-to-use interface** and seamless integration, enhancing their cybersecurity management experience significantly.
- Users value the **easy configuration** of Intruder, allowing timely identification of vulnerabilities across cloud resources.

**Cons:**

- Users find the service to be **expensive** , suggesting improvements in pricing models for better value.
- Users report **slow scanning** as Intruder misses some vulnerabilities and lacks integration with comprehensive testing tools.
- Users struggle with the **licensing model** of Intruder, finding it complex and not immediately intuitive.
- Users experience **false positives** from Intruder, leading to confusion between critical and lower-risk vulnerabilities.
- Users find the **limited features** of Intruder frustrating, especially regarding reporting flexibility and license understanding.

#### What Are Recent G2 Reviews of Intruder?

**"[Reliable Service with Flexible Plans and Strong Support](https://www.g2.com/survey_responses/intruder-review-13110046)"**

**Rating:** 4.0/5.0 stars
*— Ossama M.*

[Read full review](https://www.g2.com/survey_responses/intruder-review-13110046)

---

**"[Revolutionized Our Vulnerability Management with Real-Time Insights](https://www.g2.com/survey_responses/intruder-review-13100568)"**

**Rating:** 4.5/5.0 stars
*— Verified User*

[Read full review](https://www.g2.com/survey_responses/intruder-review-13100568)

---


#### What Are G2 Users Discussing About Intruder?

- [Who developed intruder?](https://www.g2.com/discussions/who-developed-intruder)
- [What is an intruder in cyber security?](https://www.g2.com/discussions/what-is-an-intruder-in-cyber-security)
- [Is intruder IO safe?](https://www.g2.com/discussions/is-intruder-io-safe) - 1 comment
- [What is intruder software?](https://www.g2.com/discussions/what-is-intruder-software) - 1 comment

### 7. [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews)
Sysdig Secure is the real-time cloud-native application protection platform (CNAPP) trusted by organizations of all sizes around the world.. Built by the creators of Falco and Wireshark, Sysdig uniquely delivers runtime-powered visibility and agentic AI to stop cloud attacks instantly, not after the damage is done. With Sysdig, you can: - Stop threats in 2 seconds and respond in minutes - Cut vulnerability noise by 95% with runtime prioritization - Detect real risk instantly across workloads, identities, and misconfigurations - Close permissions gaps in under 2 minutes Sysdig Secure consolidates CSPM, CWPP, CIEM, vulnerability management, and threat detection into a single open, real-time platform. Unlike other CNAPPs, Sysdig connects signals across runtime, identity, and posture to eliminate blind spots, reduce tool sprawl, and accelerate innovation without compromise. No guesswork. No black boxes. Just cloud security, the right way. Learn more at https://sysdig.com


**Average Rating:** 4.8/5.0
**Total Reviews:** 110
**How Do G2 Users Rate Sysdig Secure?**

- **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.5/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.5/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 9.5/10 (Category avg: 8.4/10)

**Who Is the Company Behind Sysdig Secure?**

- **Seller:** [Sysdig](https://www.g2.com/sellers/sysdig-715eaed9-9743-4f27-bd2b-d3730923ac3e)
- **Company Website:** https://www.sysdig.com
- **Year Founded:** 2013
- **HQ Location:** San Francisco, California
- **Twitter:** @Sysdig (10,284 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/3592486/ (609 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Security Engineer
- **Top Industries:** Financial Services, Information Technology and Services
- **Company Size:** 47% Enterprise, 40% Mid-Market


#### What Are Sysdig Secure's Pros and Cons?

**Pros:**

- Security (32 reviews)
- Vulnerability Detection (31 reviews)
- Threat Detection (30 reviews)
- Detection Efficiency (29 reviews)
- Visibility (23 reviews)

**Cons:**

- Feature Limitations (10 reviews)
- Complexity (9 reviews)
- Missing Features (8 reviews)
- Difficult Learning (7 reviews)
- Feature Complexity (7 reviews)


### What Do G2 Reviewers Say About Sysdig Secure?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend Sysdig Secure for its **runtime threat detection** and comprehensive scanning capabilities across diverse environments.
- Users value the **extensive vulnerability detection** of Sysdig Secure, enabling them to effectively manage cloud security risks.
- Users value the **real-time threat detection** and extensive scanning features of Sysdig Secure for enhanced security.
- Users value the **runtime threat detection and extensive scanning** capabilities of Sysdig Secure, enhancing their cloud security efforts.
- Users value the **comprehensive visibility** provided by Sysdig Secure, enhancing security and compliance across environments.

**Cons:**

- Users note **feature limitations** in Sysdig Secure, particularly with UI quirks and incomplete functionalities such as agentless scanning.
- Users find the **complexity during initial setup** of Sysdig Secure to be challenging for those lacking technical knowledge.
- Users note **missing features** like runtime detection and logging, which limit capabilities in Sysdig Secure.
- Users find the **difficult learning curve** of Sysdig Secure challenging, especially during initial setup and configuration.
- Users find Sysdig Secure&#39;s **feature complexity** overwhelming, hindering ease of use and quick threat response.

#### What Are Recent G2 Reviews of Sysdig Secure?

**"[Next-Level Threat Detection: Bridging Runtime Security with Compliance Excellence](https://www.g2.com/survey_responses/sysdig-secure-review-10601664)"**

**Rating:** 5.0/5.0 stars
*— Anil  Z.*

[Read full review](https://www.g2.com/survey_responses/sysdig-secure-review-10601664)

---

**"[Excellent Real-Time Kubernetes Security Visibility and Threat Detection](https://www.g2.com/survey_responses/sysdig-secure-review-12711991)"**

**Rating:** 5.0/5.0 stars
*— Syed Shahid A.*

[Read full review](https://www.g2.com/survey_responses/sysdig-secure-review-12711991)

---


#### What Are G2 Users Discussing About Sysdig Secure?

- [What does Sysdig Platform do?](https://www.g2.com/discussions/what-does-sysdig-platform-do)
- [What Sysdig secure?](https://www.g2.com/discussions/what-sysdig-secure)
- [Is Sysdig free?](https://www.g2.com/discussions/is-sysdig-free) - 1 comment
- [What is Sysdig used for?](https://www.g2.com/discussions/what-is-sysdig-used-for) - 1 comment

### 8. [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews)
Crowdstrike Falcon Cloud Security is the only CNAPP to stop breaches in the cloud Built for today’s hybrid and multi-cloud environments, Falcon Cloud Security protects the entire cloud attack surface - from code to runtime - by combining continuous agentless visibility with real-time detection and response. At runtime, Falcon Cloud Security delivers best-in-class cloud workload protection and real-time cloud detection and response (CDR) to stop active threats across hybrid environments. Integrated with the CrowdStrike Falcon platform, it correlates signals across endpoint, identity, and cloud to detect sophisticated cross-domain attacks that point solutions miss—enabling teams to respond faster and stop breaches in progress. To reduce risk before attacks occur, Falcon Cloud Security also delivers agentless-driven posture management that proactively shrinks the cloud attack surface. Unlike typical solutions, Crowdstrike enriches cloud risk detections with adversary intelligence and graph-based context, enabling security teams to prioritize exploitable exposures and prevent breaches before they happen. Customers using Falcon Cloud Security consistently see measurable results: 89% faster cloud detection and response 100x reduction in false positives by prioritizing exploitable, business-critical risk 83% reduction in cloud security licenses due to elimination of redundant tools


**Average Rating:** 4.6/5.0
**Total Reviews:** 116
**How Do G2 Users Rate CrowdStrike Falcon Cloud Security?**

- **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.3/10 (Category avg: 8.9/10)
- **Automated Scans:** 10.0/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.3/10 (Category avg: 8.4/10)

**Who Is the Company Behind CrowdStrike Falcon Cloud Security?**

- **Seller:** [CrowdStrike](https://www.g2.com/sellers/crowdstrike)
- **Company Website:** https://www.crowdstrike.com
- **Year Founded:** 2011
- **HQ Location:** Sunnyvale, CA
- **Twitter:** @CrowdStrike (110,809 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/2497653/ (11,343 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 51% Enterprise, 36% Mid-Market


#### What Are CrowdStrike Falcon Cloud Security's Pros and Cons?

**Pros:**

- Security (49 reviews)
- Cloud Security (37 reviews)
- Detection Efficiency (34 reviews)
- Vulnerability Detection (31 reviews)
- Ease of Use (29 reviews)

**Cons:**

- Expensive (17 reviews)
- Improvements Needed (14 reviews)
- Improvement Needed (13 reviews)
- Feature Complexity (8 reviews)
- Learning Curve (8 reviews)


### What Do G2 Reviewers Say About CrowdStrike Falcon Cloud Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend the **complete protection** from code to cloud offered by CrowdStrike Falcon Cloud Security, enhancing security efficiently.
- Users appreciate the **strong security and compliance features** of CrowdStrike Falcon Cloud Security, enhancing visibility and threat intelligence.
- Users commend the **detection efficiency** of CrowdStrike Falcon Cloud Security, ensuring robust protection with minimal false positives.
- Users value the **complete protection and efficient vulnerability detection** offered by CrowdStrike Falcon Cloud Security for all organization sizes.
- Users appreciate the **user-friendly interface** of CrowdStrike Falcon Cloud Security, making it easy to navigate and investigate alerts.

**Cons:**

- Users note that the pricing of CrowdStrike Falcon Cloud Security is **expensive** , making it hard for smaller organizations to afford.
- Users suggest that **improvements are needed** for better uptime and user experience in CrowdStrike Falcon Cloud Security.
- Users note that **improvement is needed** in uptime and user experience during enrollment for CrowdStrike Falcon Cloud Security.
- Users find the **feature complexity** of CrowdStrike Falcon Cloud Security overwhelming, requiring a significant learning curve to navigate.
- Users face a **steep learning curve** with CrowdStrike Falcon Cloud Security, complicating the onboarding process for new users.

#### What Are Recent G2 Reviews of CrowdStrike Falcon Cloud Security?

**"[Unified Cloud Posture Visibility with CrowdStrike Falcon Cloud Security](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13109056)"**

**Rating:** 4.5/5.0 stars
*— Naushad T.*

[Read full review](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13109056)

---

**"[Centralized Visibility and Real-Time Threat Detection That Simplifies Multi-Cloud Security](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13110517)"**

**Rating:** 4.5/5.0 stars
*— Akhil S.*

[Read full review](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13110517)

---



### 9. [Burp Suite](https://www.g2.com/products/burp-suite/reviews)
Burp Suite is a complete ecosystem for web application and API security testing, combining two products: Burp Suite DAST - a best-of-breed, precision DAST solution that automates runtime testing, and Burp Suite Professional - the industry-standard toolkit for manual penetration testing. Developed by PortSwigger, more than 85,000 security professionals rely on Burp Suite to find, verify, and understand vulnerabilities across complex modern web applications. Burp Suite DAST is PortSwigger’s enterprise dynamic application security testing (DAST) solution, purpose-built for continuous, automated scanning of web applications and APIs. Unlike many DAST solutions, which are part of a wider AST offering, Burp Suite DAST is not a bolt-on tool - instead it’s precision-built from over 20 years of dynamic testing experience. Burp Suite DAST reveals the runtime issues that static analysis tools miss, such as authentication flaws, configuration drift, and chained vulnerabilities. Built on the same proprietary scanning engine that powers Burp Suite Professional, it delivers precise, low-noise results that security teams trust. Key capabilities of Burp Suite DAST include: Continuous, automated scanning of web applications and APIs, integration with CI/CD pipelines and vulnerability management tools, flexible deployment across cloud, and on-premise environments, shared scanning logic and configurations between automated and manual testing, accurate, low-noise detection informed by PortSwigger Research. Burp Suite Professional complements DAST with deep manual testing capability. It’s the industry-standard toolkit for penetration testers, consultants, and AppSec engineers who need complete insight and flexibility when validating or exploring vulnerabilities. Findings discovered by DAST can be investigated and verified in Burp Suite Professional, ensuring every result is accurate, contextual, and actionable. Together, Burp Suite DAST and Burp Suite Professional create a unified ecosystem that delivers automation at breadth and manual depth where it counts. Burp Suite is built for AppSec teams who need scalable, trustworthy coverage across web and API environments, enabling a seamless handoff between automated and manual testing.


**Average Rating:** 4.8/5.0
**Total Reviews:** 126
**How Do G2 Users Rate Burp Suite?**

- **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.6/10 (Category avg: 8.9/10)
- **Automated Scans:** 8.6/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.0/10 (Category avg: 8.4/10)

**Who Is the Company Behind Burp Suite?**

- **Seller:** [PortSwigger](https://www.g2.com/sellers/portswigger)
- **Company Website:** https://www.portswigger.net
- **Year Founded:** 2008
- **HQ Location:** Knutsford, GB
- **Twitter:** @Burp_Suite (138,186 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/portswigger-web-security/ (345 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Cyber Security Analyst
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 41% Mid-Market, 31% Small-Business


#### What Are Burp Suite's Pros and Cons?

**Pros:**

- Ease of Use (12 reviews)
- User Interface (8 reviews)
- Testing Services (7 reviews)
- Features (5 reviews)
- Clear Interface (4 reviews)

**Cons:**

- Expensive (5 reviews)
- Slow Performance (5 reviews)
- High Learning Curve (2 reviews)
- Learning Curve (2 reviews)
- Limited Customization (2 reviews)


### What Do G2 Reviewers Say About Burp Suite?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **ease of use** of Burp Suite, enabling quick setup for both beginners and advanced professionals.
- Users appreciate the **user-friendly interface** of Burp Suite, making penetration testing straightforward and accessible for all levels.
- Users value the **deep automation and manual testing capabilities** of Burp Suite for effective web and Android security testing.
- Users admire the **user-friendly interface** and seamless integration of Burp Suite, enhancing both navigation and testing efficiency.
- Users love the **clear interface** of Burp Suite, enabling effortless traffic interception and easy navigation.

**Cons:**

- Users find Burp Suite **expensive** , especially students, limiting accessibility to its powerful features and community support.
- Users report **slow performance** with Burp Suite, particularly on low-spec systems and during resource-intensive scans.
- Users find the **steep learning curve** of Burp Suite challenging, especially for beginners navigating its complex features.
- Users struggle with the **steep learning curve** of Burp Suite, finding it challenging, especially for beginners.
- Users find the **limited customization options** in Burp Suite restrict their ability to tailor the tool to their needs.

#### What Are Recent G2 Reviews of Burp Suite?

**"[Burp Suite Pro: A Powerful, All-in-One Platform for Web App Pen Testing](https://www.g2.com/survey_responses/burp-suite-review-12818180)"**

**Rating:** 4.5/5.0 stars
*— Aryan S.*

[Read full review](https://www.g2.com/survey_responses/burp-suite-review-12818180)

---

**"[Complete Control Over Web Requests with Burp Suite](https://www.g2.com/survey_responses/burp-suite-review-12677559)"**

**Rating:** 5.0/5.0 stars
*— Arish B.*

[Read full review](https://www.g2.com/survey_responses/burp-suite-review-12677559)

---


#### What Are G2 Users Discussing About Burp Suite?

- [What are the benefits and challenges of using BurpSuite for web application security?](https://www.g2.com/discussions/what-are-the-benefits-and-challenges-of-using-burpsuite-for-web-application-security)
- [What is BurpSuite used for?](https://www.g2.com/discussions/burpsuite-what-is-burpsuite-used-for)
- [What types of vulnerabilities can Burp Suite detect?](https://www.g2.com/discussions/what-types-of-vulnerabilities-can-burp-suite-detect)
- [What is Burp Suite Professional?](https://www.g2.com/discussions/what-is-burp-suite-professional) - 1 comment
- [Is BurpSuite free?](https://www.g2.com/discussions/is-burpsuite-free) - 2 comments

### 10. [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews)
Tenable Vulnerability Management provides a risk-based approach to identifying, prioritizing, and remediating vulnerabilities across your entire attack surface. Powered by Nessus technology and AI-driven analytics, it goes beyond CVSS scores to assess exploitability, asset criticality, and business impact—so you can focus on what matters most. With continuous visibility, automated scanning, and real-time risk insights, security teams can quickly expose and close critical vulnerabilities before they’re exploited. Advanced asset identification ensures accurate tracking in dynamic environments, while intuitive dashboards, comprehensive reporting, and seamless third-party integrations help streamline workflows. As a cloud-based solution, Tenable Vulnerability Management scales with your organization, empowering security teams to maximize efficiency, reduce risk, and improve resilience against evolving threats.


**Average Rating:** 4.5/5.0
**Total Reviews:** 113
**How Do G2 Users Rate Tenable Vulnerability Management?**

- **Has the product been a good partner in doing business?:** 8.6/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.0/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.3/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.7/10 (Category avg: 8.4/10)

**Who Is the Company Behind Tenable Vulnerability Management?**

- **Seller:** [Tenable](https://www.g2.com/sellers/tenable)
- **Company Website:** https://www.tenable.com/
- **HQ Location:** Columbia, MD
- **Twitter:** @TenableSecurity (87,752 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®)
- **Ownership:** NASDAQ: TENB

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Financial Services
- **Company Size:** 56% Enterprise, 33% Mid-Market


#### What Are Tenable Vulnerability Management's Pros and Cons?

**Pros:**

- Ease of Use (8 reviews)
- Scanning Efficiency (8 reviews)
- Features (6 reviews)
- Automated Scanning (5 reviews)
- Vulnerability Identification (5 reviews)

**Cons:**

- Expensive (4 reviews)
- Inadequate Reporting (4 reviews)
- Limited Reporting (4 reviews)
- Pricing Issues (4 reviews)
- Complexity (3 reviews)


### What Do G2 Reviewers Say About Tenable Vulnerability Management?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **user-friendly interface** of Tenable Vulnerability Management, making prioritization and action on vulnerabilities seamless.
- Users praise the **scanning efficiency** of Tenable Vulnerability Management, highlighting its speed and comprehensive capabilities.
- Users value the **powerful scanning and reporting features** of Tenable Vulnerability Management for enhanced asset management.
- Users appreciate the **fast and efficient automated scanning** of Tenable Vulnerability Management, enhancing resource management and reporting.
- Users value the **effective vulnerability identification** that helps prioritize remediation efforts efficiently within their environments.

**Cons:**

- Users find the **cost of Tenable Vulnerability Management** to be prohibitive, especially for organizations with tight budgets.
- Users find the **reporting capabilities inadequate** , often needing external tools for refined and personalized analysis.
- Users find the **reporting capabilities to be limited** , often needing external tools for better data insights.
- Users find the **pricing issues** of Tenable Vulnerability Management to be a barrier, especially for smaller organizations.
- Users find the platform&#39;s **complexity** to manage licensing and reporting options challenging, especially under budget constraints.

#### What Are Recent G2 Reviews of Tenable Vulnerability Management?

**"[TVM Does What You Need](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561)"**

**Rating:** 4.5/5.0 stars
*— Verified User in Higher Education*

[Read full review](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-12937561)

---

**"[Intuitive, Easy to Deploy, and Packed with Comprehensive Reporting](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-13067235)"**

**Rating:** 4.5/5.0 stars
*— Grace Y.*

[Read full review](https://www.g2.com/survey_responses/tenable-vulnerability-management-review-13067235)

---


#### What Are G2 Users Discussing About Tenable Vulnerability Management?

- [What is your primary use case for Tenable Vulnerability Management, and how has it impacted your security posture?](https://www.g2.com/discussions/what-is-your-primary-use-case-for-tenable-vulnerability-management-and-how-has-it-impacted-your-security-posture) - 1 comment
- [What is Tenable.io used for?](https://www.g2.com/discussions/what-is-tenable-io-used-for) - 1 comment
- [How much is tenable io?](https://www.g2.com/discussions/how-much-is-tenable-io)
- [How do I link Nessus to tenable io?](https://www.g2.com/discussions/how-do-i-link-nessus-to-tenable-io)
- [What is the difference between Nessus and tenable io?](https://www.g2.com/discussions/what-is-the-difference-between-nessus-and-tenable-io)

### 11. [SentinelOne Singularity Cloud Security](https://www.g2.com/products/sentinelone-singularity-cloud-security/reviews)
Singularity Cloud Security is SentinelOne’s comprehensive, cloud-native application protection platform (CNAPP). It combines the best of agentless insights with AI-powered threat protection, to secure and protect your multi-cloud infrastructure, services, and containers from build time to runtime. SentinelOne’s CNAPP applies an attacker’s mindset to help security practitioners better prioritize their remediation tasks with evidence-backed Verified Exploit Paths™. The efficient and scalable runtime protection, proven over 5 years and trusted by many of the world’s leading cloud enterprises, harnesses local, autonomous AI engines to detect and thwart runtime threats in real-time. CNAPP data and workload telemetry is recorded to SentinelOne’s unified security lake, for easy access and investigation.


**Average Rating:** 4.9/5.0
**Total Reviews:** 117
**How Do G2 Users Rate SentinelOne Singularity Cloud Security?**

- **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.8/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.8/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 9.9/10 (Category avg: 8.4/10)

**Who Is the Company Behind SentinelOne Singularity Cloud Security?**

- **Seller:** [SentinelOne](https://www.g2.com/sellers/sentinelone)
- **Company Website:** https://www.sentinelone.com
- **Year Founded:** 2013
- **HQ Location:** Mountain View, CA
- **Twitter:** @SentinelOne (57,863 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/2886771/ (3,174 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Financial Services
- **Company Size:** 59% Mid-Market, 31% Enterprise


#### What Are SentinelOne Singularity Cloud Security's Pros and Cons?

**Pros:**

- Security (27 reviews)
- Ease of Use (20 reviews)
- Vulnerability Detection (19 reviews)
- Cloud Management (16 reviews)
- Cloud Security (15 reviews)

**Cons:**

- Complexity (5 reviews)
- Ineffective Alerts (5 reviews)
- Complex Setup (4 reviews)
- Difficult Configuration (4 reviews)
- Poor UI (4 reviews)


### What Do G2 Reviewers Say About SentinelOne Singularity Cloud Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **real-time alert system** of SentinelOne Singularity, enhancing proactive threat management and security.
- Users find the **user-friendly interface** of SentinelOne Singularity Cloud Security makes managing security straightforward for everyone.
- Users value the **automated vulnerability detection** in PingSafe, enhancing proactive cloud security management effortlessly.
- Users appreciate the **real-time alert system** of PingSafe, enhancing proactive cloud security management effectively.
- Users commend SentinelOne Singularity Cloud Security for its **ease of use and strong visibility** across cloud environments.

**Cons:**

- Users feel that SentinelOne Singularity Cloud Security has a **complex setup** that can be challenging for less technical users.
- Users experience **ineffective alerts** that require tuning, leading to confusion and potential oversight in security management.
- Users find the **complex setup** of SentinelOne Singularity Cloud Security challenging, requiring time for effective configuration and tuning.
- Users find **difficult configuration** of SentinelOne Singularity Cloud Security requires time and experience for optimal setup and tuning.
- Users find the **UI to be clunky** , making the platform&#39;s complexity and learning curve more challenging.

#### What Are Recent G2 Reviews of SentinelOne Singularity Cloud Security?

**"[Unified Cloud Security Visibility Across Workloads, Containers and Infrastructure.](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-13101465)"**

**Rating:** 5.0/5.0 stars
*— Ansh B.*

[Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-13101465)

---

**"[Unified Multi-Cloud Security with AI-Driven Automation and Real-Time Threat Detection](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-13002699)"**

**Rating:** 4.0/5.0 stars
*— Sanjo J.*

[Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-cloud-security-review-13002699)

---



### 12. [Pentera](https://www.g2.com/products/pentera/reviews)
Pentera is the category leader for Automated Security Validation, allowing every organization to test with ease the integrity of all cybersecurity layers, unfolding true, current security exposures at any moment, at any scale. Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. Its customers include Casey&#39;s General Stores, Emeria, LuLu International Exchange, IP Telecom PT, BrewDog, City National Bank, Schmitz Cargobull, and MBC Group. Pentera is backed by leading investors such as K1 Investment Management, Insight Partners, Blackstone, Evolution Equity Partners, and AWZ. Visit https://pentera.io for more information.


**Average Rating:** 4.5/5.0
**Total Reviews:** 171
**How Do G2 Users Rate Pentera?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.4/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.1/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 7.8/10 (Category avg: 8.4/10)

**Who Is the Company Behind Pentera?**

- **Seller:** [Pentera](https://www.g2.com/sellers/pentera)
- **Company Website:** https://pentera.io/
- **Year Founded:** 2015
- **HQ Location:** Boston, MA
- **Twitter:** @penterasec (3,291 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/penterasecurity/ (483 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Banking, Government Administration
- **Company Size:** 52% Enterprise, 36% Mid-Market


#### What Are Pentera's Pros and Cons?

**Pros:**

- Automation (7 reviews)
- Vulnerability Detection (5 reviews)
- Vulnerability Identification (5 reviews)
- Customer Support (4 reviews)
- Efficiency (4 reviews)

**Cons:**

- Inadequate Reporting (2 reviews)
- Missing Features (2 reviews)
- Poor Reporting (2 reviews)
- Resource Intensive (2 reviews)
- Technical Issues (2 reviews)


### What Do G2 Reviewers Say About Pentera?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **automation features** of Pentera, enhancing ease of use and enabling efficient continuous operation.
- Users recognize the **powerful automation and detailed remediation suggestions** of Pentera for effective vulnerability detection.
- Users value Pentera&#39;s **effective vulnerability scanning and remediation suggestions** , enhancing their overall security posture and testing efficacy.
- Users value the **responsive customer support** of Pentera, enhancing their overall vulnerability scanning experience.
- Users appreciate the **efficiency** of Pentera, notably for its quick implementation and time-saving automation.

**Cons:**

- Users find the **reporting inadequate** , particularly for enterprise-level assessments, necessitating significant improvements.
- Users experience a **lack of essential features** , including limited TTP updates and inadequate user permissions management.
- Users find the **reporting in Pentera lacking** , especially for enterprise-level needs and multilingual support.
- Users find Pentera demands a **high amount of system resources** , which can hinder overall performance and efficiency.
- Users report **technical issues** , particularly with module compatibility and unexpected upgrade failures, though support is responsive.

#### What Are Recent G2 Reviews of Pentera?

**"[Reliable Tool for Vulnerability Detection but Script Issues](https://www.g2.com/survey_responses/pentera-review-12864934)"**

**Rating:** 4.0/5.0 stars
*— Avitzur Y.*

[Read full review](https://www.g2.com/survey_responses/pentera-review-12864934)

---

**"[Cutting-Edge Security with a Real Attacker Approach](https://www.g2.com/survey_responses/pentera-review-12864952)"**

**Rating:** 4.5/5.0 stars
*— Yaron C.*

[Read full review](https://www.g2.com/survey_responses/pentera-review-12864952)

---



### 13. [SentinelOne Singularity Endpoint](https://www.g2.com/products/sentinelone-singularity-endpoint/reviews)
SentinelOne Singularity Endpoint is a software designed to protect endpoints by autonomously detecting, preventing, and responding to threats across devices within an organization. The software leverages machine learning and behavioral AI to identify and mitigate a wide range of cyber threats, including malware, ransomware, and fileless attacks. It provides continuous monitoring and automated remediation capabilities to help reduce manual intervention and response time during security incidents. SentinelOne Singularity Endpoint integrates with existing IT security and management workflows, offering visibility into endpoint activities and assisting organizations in maintaining compliance by ensuring devices meet security standards. The software is engineered to address business challenges related to endpoint protection, threat management, and operational efficiency in cybersecurity environments.


**Average Rating:** 4.7/5.0
**Total Reviews:** 195
**How Do G2 Users Rate SentinelOne Singularity Endpoint?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.5/10 (Category avg: 8.9/10)
- **Automated Scans:** 8.7/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 7.6/10 (Category avg: 8.4/10)

**Who Is the Company Behind SentinelOne Singularity Endpoint?**

- **Seller:** [SentinelOne](https://www.g2.com/sellers/sentinelone)
- **Company Website:** https://www.sentinelone.com
- **Year Founded:** 2013
- **HQ Location:** Mountain View, CA
- **Twitter:** @SentinelOne (57,863 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/2886771/ (3,174 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 46% Mid-Market, 36% Enterprise


#### What Are SentinelOne Singularity Endpoint's Pros and Cons?

**Pros:**

- Ease of Use (61 reviews)
- Tool Efficiency (18 reviews)
- Setup Ease (17 reviews)
- Malware Protection (13 reviews)
- Useful (13 reviews)

**Cons:**

- Update Issues (13 reviews)
- Difficult Learning (8 reviews)
- Frequent Updates (7 reviews)
- Agent Removal Issues (6 reviews)
- Ineffective Alerts (6 reviews)


### What Do G2 Reviewers Say About SentinelOne Singularity Endpoint?
*AI-generated summary from verified user reviews*

**Pros:**

- Users find SentinelOne Singularity Endpoint to be **easy to deploy and manage** , enhancing overall security efficiency.
- Users value the **tool efficiency** of SentinelOne, noting its user-friendly interface and effective threat detection capabilities.
- Users value the **setup ease** of SentinelOne Singularity, appreciating its simple deployment and swift implementation process.
- Users commend SentinelOne for its **exceptional malware protection** , effectively defending against various threats and attacks.
- Users find the **incident notification system** of SentinelOne very effective, enhancing their ability to respond quickly.

**Cons:**

- Users face **update issues** with SentinelOne, including frequent login problems and difficulties with self-updating agents.
- Users find the **difficult learning curve** challenging, especially for beginners navigating the complex interface.
- Users face challenges with **frequent updates** that complicate login processes and require constant adjustments to policies.
- Users experience frequent **agent removal issues** that disrupt functionality and complicate application performance.
- Users report **ineffective alerts** that complicate troubleshooting and hinder application compatibility during migration between EDR providers.

#### What Are Recent G2 Reviews of SentinelOne Singularity Endpoint?

**"[Autonomous Protection, Robust Security for Energy-Critical Systems](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-12707750)"**

**Rating:** 5.0/5.0 stars
*— Viral S.*

[Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-12707750)

---

**"[The Endpoint Security Platform That Actually Responds, Not Just Alerts.](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-13094863)"**

**Rating:** 5.0/5.0 stars
*— Ansh B.*

[Read full review](https://www.g2.com/survey_responses/sentinelone-singularity-endpoint-review-13094863)

---


#### What Are G2 Users Discussing About SentinelOne Singularity Endpoint?

- [How does Sentinel one work?](https://www.g2.com/discussions/sentinelone-singularity-how-does-sentinel-one-work)
- [How does Sentinel one work?](https://www.g2.com/discussions/how-does-sentinel-one-work)
- [Is SentinelOne an antivirus?](https://www.g2.com/discussions/sentinelone-singularity-is-sentinelone-an-antivirus)
- [Is SentinelOne an antivirus?](https://www.g2.com/discussions/is-sentinelone-an-antivirus) - 2 comments
- [What is SentinelOne used for?](https://www.g2.com/discussions/sentinelone-singularity-what-is-sentinelone-used-for)

### 14. [Edgescan](https://www.g2.com/products/edgescan/reviews)
What Is Edgescan? Edgescan is a cybersecurity company that helps organizations proactively identify, validate, and prioritize vulnerabilities across their applications, API’s and digital landscape. The company specializes in continuous vulnerability assessment, automated penetration testing, Attack Surface Management and Penetration Testing as a Service (PTaaS). Edgescan combines advanced automation with certified security experts, including professionals holding credentials such as CREST and OSCP, to deliver highly accurate and actionable security testing. This hybrid approach allows organizations to move beyond traditional point-in-time penetration tests and operate a continuous proactive cybersecurity program. The Edgescan platform is designed primarily for web application and API security, enabling organizations to continuously assess their attack surface and identify vulnerabilities throughout the development lifecycle but also delivers “full stack” coverage to detect host layer CVE’s. With a client retention rate of over 90%, Edgescan has built long-term partnerships by delivering measurable improvements in security efficiency, risk visibility, and vulnerability management. Key Features and Capabilities of Edgescan Automated Penetration Testing Edgescan uses intelligent automation to continuously assess applications, APIs, hosts, and cloud environments for vulnerabilities. This enables frequent, scalable security testing across modern and distributed architectures. Human‑Validated Testing Findings are reviewed and manually validated by certified security experts to eliminate false positives and provide deeper insight into real‑world exploitability. Each result is accurate, contextual, and actionable. Penetration Testing as a Service (PTaaS) Edgescan’s PTaaS model extends beyond automated testing by allowing expert testers to focus on vulnerabilities that require human analysis, including: • Business logic flaws • Authentication and authorization weaknesses • Context-dependent exposures • Complex attack chains and privilege escalation paths Cyber Analytics and AI‑Assisted Validation AI-driven analysis enhances detection, verifies exploitability, and increases accuracy. This reduces noise and gives security teams a clearer picture of genuine threats. Integrated Threat Intelligence Edgescan correlates vulnerabilities with real-world threat intelligence, including known exploits and ransomware activity to help organizations prioritize the most dangerous exposures first. Risk‑Based Prioritization Findings are prioritized based on exploitability, severity, threat context, and business impact, ensuring teams focus on the issues that matter most. Primary Value: What Edgescan Solves for Clients Edgescan enables organizations to shift from reactive vulnerability management to a continuous, proactive security model. Traditional scanners and periodic penetration tests frequently produce large volumes of unvalidated findings. This creates noise and forces security teams to spend hours determining which issues are real and critical. Edgescan solves this by combining: Automation for continuous testing Human expertise for validation and complex analysis Cyber analytics and AI for accuracy and prioritization Key Benefits Significant efficiency gains: reducing thousands of hours spent on manual validation. Higher accuracy, thanks to expert‑validated findings and reduced false positives. Clear prioritization, using threat intelligence and ransomware insights to highlight the highest‑risk exposures. Continuous security improvement, enabling rapid detection, faster remediation, and scalable vulnerability management. By unifying automation, human expertise, AI, and threat intelligence, Edgescan empowers organizations to maintain a continuous cybersecurity program that strengthens overall security posture while dramatically reducing operational burden.


**Average Rating:** 4.7/5.0
**Total Reviews:** 53
**How Do G2 Users Rate Edgescan?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.3/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.6/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.3/10 (Category avg: 8.4/10)

**Who Is the Company Behind Edgescan?**

- **Seller:** [Edgescan](https://www.g2.com/sellers/edgescan)
- **Company Website:** https://www.edgescan.com
- **Year Founded:** 2017
- **HQ Location:** Dublin, Dublin
- **Twitter:** @edgescan (2,256 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/2928425/ (89 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 31% Enterprise, 31% Mid-Market


#### What Are Edgescan's Pros and Cons?

**Pros:**

- Ease of Use (25 reviews)
- Vulnerability Detection (24 reviews)
- Customer Support (19 reviews)
- Vulnerability Identification (19 reviews)
- Features (18 reviews)

**Cons:**

- Complex UI (5 reviews)
- Limited Customization (5 reviews)
- Poor Interface Design (5 reviews)
- Slow Performance (5 reviews)
- UX Improvement (5 reviews)


### What Do G2 Reviewers Say About Edgescan?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate Edgescan&#39;s **ease of use** , enjoying its intuitive interface and streamlined navigation for effective vulnerability management.
- Users value the **automated vulnerability detection** with intuitive reports, timely alerts, and effective risk management features.
- Users value the **excellent customer support** from Edgescan, praising the team&#39;s responsiveness and proactive assistance.
- Users value the **thorough vulnerability identification** features of Edgescan, enhancing risk management and resolution efficiency.
- Users value the **robust features** of Edgescan, which streamline security assessments and enhance ease of use.

**Cons:**

- Users find the **complex UI** challenging initially, with navigation issues and a need for improved dashboard functionality.
- Users highlight **limited customization** options in Edgescan, particularly regarding filtering and admin functionalities.
- Users find the **poor interface design** of Edgescan challenging, affecting usability and data accessibility.
- Users report experiencing **slow performance** as scans can take longer due to manual review processes.
- Users find the **UI not user friendly** , lacking intuitiveness and advanced features for better navigation and data accessibility.

#### What Are Recent G2 Reviews of Edgescan?

**"[Edgescan: Easy Setup, Clear Insights, and Expert Security Support](https://www.g2.com/survey_responses/edgescan-review-12224347)"**

**Rating:** 5.0/5.0 stars
*— Matt W.*

[Read full review](https://www.g2.com/survey_responses/edgescan-review-12224347)

---

**"[Exceptional Security Scanning with Top-Notch Support](https://www.g2.com/survey_responses/edgescan-review-9636105)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Entertainment*

[Read full review](https://www.g2.com/survey_responses/edgescan-review-9636105)

---


#### What Are G2 Users Discussing About Edgescan?

- [What is edgescan used for?](https://www.g2.com/discussions/what-is-edgescan-used-for) - 1 comment

### 15. [CyberSmart](https://www.g2.com/products/cybersmart/reviews)
CyberSmart is the UK’s leading cybersecurity platform for small and medium-sized businesses and the organisations that support them. As the UK’s largest provider of Cyber Essentials certification and a National Ambassador to the Cyber Resilience Centres network, CyberSmart plays a central role in raising cyber maturity across the UK economy. We work closely with businesses, managed service providers, and government-backed initiatives to deliver practical, scalable cybersecurity that aligns with real-world commercial pressures. A recognised market leader in delivering Cyber Essentials and Cyber Essentials Plus at scale, CyberSmart helps organisations achieve trusted certification quickly and maintain continuous compliance long after the audit is complete. As regulatory requirements, supply chain scrutiny, and insurance expectations continue to increase, businesses need more than a point-in-time assessment - they need ongoing assurance. The CyberSmart platform brings together people, process and technology in one integrated solution. It combines always-on device monitoring, vulnerability management, automated patch management, security awareness training, certification, privacy management and streamlined access to cyber insurance. By unifying protection and compliance within a single platform, CyberSmart reduces tool sprawl, simplifies security operations, and provides clear, prioritised visibility into risk. CyberSmart also supports larger organisations and supply-chain assurance programmes by enabling certification at scale across supplier tiers, providing executive-level visibility of supplier risk, and leveraging a network of over 1,000 MSP partners to drive adoption without disrupting commercial relationships. Trusted by over 7,000 businesses and partners worldwide, CyberSmart delivers Complete Cyber Confidence - helping organisations stay secure, demonstrate compliance, and build measurable resilience over time.


**Average Rating:** 4.4/5.0
**Total Reviews:** 50
**How Do G2 Users Rate CyberSmart?**

- **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.8/10 (Category avg: 8.9/10)
- **Automated Scans:** 10.0/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 10.0/10 (Category avg: 8.4/10)

**Who Is the Company Behind CyberSmart?**

- **Seller:** [CyberSmart](https://www.g2.com/sellers/cybersmart)
- **Year Founded:** 2016
- **HQ Location:** London, GB
- **Twitter:** @CyberSmartUK (1,928 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/be-cybersmart (74 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 63% Small-Business, 21% Mid-Market


#### What Are CyberSmart's Pros and Cons?

**Pros:**

- Ease of Use (34 reviews)
- Customer Support (20 reviews)
- Helpful (16 reviews)
- Implementation Ease (14 reviews)
- Setup Ease (12 reviews)

**Cons:**

- Technical Issues (8 reviews)
- False Positives (7 reviews)
- Expensive (6 reviews)
- Pricing Issues (6 reviews)
- Improvement Needed (5 reviews)


### What Do G2 Reviewers Say About CyberSmart?
*AI-generated summary from verified user reviews*

**Pros:**

- Users find CyberSmart&#39;s **ease of use** exceptional, appreciating effortless setup and clear organization of device management.
- Users value the **exceptional customer support** from CyberSmart, ensuring prompt assistance and guidance for account management.
- Users appreciate the **simplicity of deployment** with CyberSmart, enhancing efficiency in managing CyberEssentials for themselves and customers.
- Users appreciate the **implementation ease** of CyberSmart, enjoying minimal friction and effortless setup for enhanced security.
- Users commend the **effortless setup** of CyberSmart, ensuring a seamless experience for both them and their customers.

**Cons:**

- Users report encountering **technical issues** with the CyberSmart app, such as bugs and installation challenges that hinder functionality.
- Users report experiencing **false positives** with CyberSmart, leading to unnecessary manual reviews and confusion in device status.
- Users find the **pricing of CyberSmart excessive** , particularly considering the time required for CE+ audits.
- Users express concern about **pricing issues** , citing high costs and unexpected charges during the audit process.
- Users face **improvement needed** with CyberSmart due to installation admin rights and inconsistent assessment feedback.

#### What Are Recent G2 Reviews of CyberSmart?

**"[Streamlines Certification with Minimal Setup](https://www.g2.com/survey_responses/cybersmart-review-12396205)"**

**Rating:** 4.0/5.0 stars
*— Scott H.*

[Read full review](https://www.g2.com/survey_responses/cybersmart-review-12396205)

---

**"[CyberSmart Makes Security Compliance Simple with Clear, Actionable Guidance](https://www.g2.com/survey_responses/cybersmart-review-12381456)"**

**Rating:** 5.0/5.0 stars
*— Connor S.*

[Read full review](https://www.g2.com/survey_responses/cybersmart-review-12381456)

---


#### What Are G2 Users Discussing About CyberSmart?

- [What is CyberSmart used for?](https://www.g2.com/discussions/what-is-cybersmart-used-for)

### 16. [Qualys WAS](https://www.g2.com/products/qualys-was/reviews)
Qualys WAS is Qualys&#39;s platform for end-to-end web application scanning.


**Average Rating:** 4.5/5.0
**Total Reviews:** 19
**How Do G2 Users Rate Qualys WAS?**

- **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.1/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.6/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.2/10 (Category avg: 8.4/10)

**Who Is the Company Behind Qualys WAS?**

- **Seller:** [Qualys](https://www.g2.com/sellers/qualys)
- **Year Founded:** 1999
- **HQ Location:** Foster City, CA
- **Twitter:** @qualys (34,248 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/8561/ (3,627 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 45% Mid-Market, 35% Enterprise



#### What Are Recent G2 Reviews of Qualys WAS?

**"[Best Software for Vulnerability Management](https://www.g2.com/survey_responses/qualys-was-review-8158576)"**

**Rating:** 5.0/5.0 stars
*— Victor Hugo M.*

[Read full review](https://www.g2.com/survey_responses/qualys-was-review-8158576)

---

**"[The best web application scanning system](https://www.g2.com/survey_responses/qualys-was-review-8325914)"**

**Rating:** 5.0/5.0 stars
*— Muhammed S.*

[Read full review](https://www.g2.com/survey_responses/qualys-was-review-8325914)

---


#### What Are G2 Users Discussing About Qualys WAS?

- [What is the 6 step lifecycle of Qualys vulnerability management?](https://www.g2.com/discussions/what-is-the-6-step-lifecycle-of-qualys-vulnerability-management)
- [What are the advantages of the global asset inventory application?](https://www.g2.com/discussions/what-are-the-advantages-of-the-global-asset-inventory-application)
- [What are the typical features offered by vulnerability scanner?](https://www.g2.com/discussions/what-are-the-typical-features-offered-by-vulnerability-scanner) - 1 comment

### 17. [Amazon Inspector](https://www.g2.com/products/amazon-inspector/reviews)
Amazon Inspector is an automated vulnerability management service that continuously scans AWS workloads—including Amazon EC2 instances, container images in Amazon ECR, AWS Lambda functions, and code repositories—for software vulnerabilities and unintended network exposure. By integrating seamlessly with AWS environments, it provides real-time detection and prioritization of security issues, enabling organizations to enhance their security posture efficiently. Key Features and Functionality: - Automated Discovery and Continuous Scanning: Automatically identifies and assesses AWS resources for vulnerabilities and network exposures, ensuring comprehensive coverage without manual intervention. - Contextualized Risk Scoring: Generates risk scores by correlating vulnerability data with environmental factors such as network accessibility and exploitability, aiding in the prioritization of remediation efforts. - Integration with AWS Services: Seamlessly integrates with AWS Security Hub and Amazon EventBridge, facilitating automated workflows and centralized management of security findings. - Support for Multiple Resource Types: Extends vulnerability management to various AWS services, including EC2 instances, container images, Lambda functions, and code repositories, providing a unified security assessment across the cloud environment. - Agentless Scanning for EC2 Instances: Offers continuous monitoring of EC2 instances for software vulnerabilities without the need for installing additional agents, simplifying deployment and maintenance. Primary Value and Problem Solved: Amazon Inspector addresses the critical need for continuous and automated vulnerability management within AWS environments. By providing real-time detection and prioritization of security issues, it enables organizations to proactively identify and remediate vulnerabilities, reducing the risk of security breaches and ensuring compliance with industry standards. Its integration with existing AWS services and support for various resource types streamline security operations, allowing teams to focus on strategic initiatives while maintaining a robust security posture.


**Average Rating:** 4.4/5.0
**Total Reviews:** 24
**How Do G2 Users Rate Amazon Inspector?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.2/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.2/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 7.8/10 (Category avg: 8.4/10)

**Who Is the Company Behind Amazon Inspector?**

- **Seller:** [Amazon Web Services (AWS)](https://www.g2.com/sellers/amazon-web-services-aws-3e93cc28-2e9b-4961-b258-c6ce0feec7dd)
- **Year Founded:** 2006
- **HQ Location:** Seattle, WA
- **Twitter:** @awscloud (2,232,483 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/amazon-web-services/ (147,094 employees on LinkedIn®)
- **Ownership:** NASDAQ: AMZN

**Who Uses This Product?**
- **Top Industries:** Computer Software
- **Company Size:** 42% Small-Business, 35% Mid-Market


#### What Are Amazon Inspector's Pros and Cons?

**Pros:**

- Security Protection (3 reviews)
- Customer Support (2 reviews)
- Centralization Management (1 reviews)
- Collaboration (1 reviews)
- Security (1 reviews)

**Cons:**

- Complexity (1 reviews)
- Complexity Issues (1 reviews)
- Learning Curve (1 reviews)
- Limited Features (1 reviews)
- Not User-Friendly (1 reviews)


### What Do G2 Reviewers Say About Amazon Inspector?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **robust security features** of Amazon Inspector, enhancing their cloud environment&#39;s safety and compliance.
- Users commend the **excellent customer support** from AWS, which enhances their experience with Amazon Inspector.
- Users value the **centralized management** of Amazon Inspector, enhancing visibility and compliance while simplifying security monitoring.
- Users value the **collaborative tools** of Amazon Inspector, enhancing monitoring and compliance through integrated resources and support.
- Users appreciate the **automated security issue detection** of Amazon Inspector, making setup and maintenance effortless.

**Cons:**

- Users find the **complexity** of AWS&#39;s security features requires a well-trained admin for proper configuration and effectiveness.
- Users find **complexity issues** in configuring Amazon Inspector, requiring well-trained admins to optimize its advanced security features.
- Users note a **steep learning curve** for effectively configuring advanced security features in Amazon Inspector.
- Users find **limited features** in Amazon Inspector, which restricts their ability to effectively manage sensitive information.
- Users find Amazon Inspector **not user-friendly** , as it requires advanced knowledge for proper configuration and effective security.

#### What Are Recent G2 Reviews of Amazon Inspector?

**"[Easy AWS Integration with Clear Vulnerability Reporting](https://www.g2.com/survey_responses/amazon-inspector-review-12534377)"**

**Rating:** 4.0/5.0 stars
*— Verified User in Information Technology and Services*

[Read full review](https://www.g2.com/survey_responses/amazon-inspector-review-12534377)

---

**"[Amazon Inspector - user review](https://www.g2.com/survey_responses/amazon-inspector-review-11821851)"**

**Rating:** 4.5/5.0 stars
*— Roshan R.*

[Read full review](https://www.g2.com/survey_responses/amazon-inspector-review-11821851)

---



### 18. [Snyk](https://www.g2.com/products/snyk/reviews)
Snyk (pronounced sneak) is a developer security platform for securing custom code, open source dependencies, containers, and cloud infrastructure all from a single platform. Snyk’s developer security solutions enable modern applications to be built securely, empowering developers to own and build security for the whole application, from code &amp; open source to containers &amp; cloud infrastructure. Secure while you code in your IDE: find issues quickly using the scanner, fix issues easily with remediation advice, verify the updated code. Integrate your source code repositories to secure applications: integrate a repository to find issues, prioritize with context, fix &amp; merge. Secure your containers as you build, throughout the SDLC: start fixing containers as soon as your write a Dockerfile, continuously monitor container images throughout their lifecycle, and prioritize with context. Secure build and deployment pipelines: Integrate natively with your CI/CD tool, configure your rules, find &amp; fix issues in your application, and monitor your applications. Secure your apps quickly with Snyk’s vulnerability scanning and automated fixes - Try for Free!


**Average Rating:** 4.5/5.0
**Total Reviews:** 135
**How Do G2 Users Rate Snyk?**

- **Has the product been a good partner in doing business?:** 8.7/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.5/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.1/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.2/10 (Category avg: 8.4/10)

**Who Is the Company Behind Snyk?**

- **Seller:** [Snyk](https://www.g2.com/sellers/snyk)
- **HQ Location:** Boston, Massachusetts
- **Twitter:** @snyksec (21,057 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/10043614/ (1,370 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Software Engineer
- **Top Industries:** Computer Software, Information Technology and Services
- **Company Size:** 44% Mid-Market, 35% Small-Business


#### What Are Snyk's Pros and Cons?

**Pros:**

- Vulnerability Detection (3 reviews)
- Vulnerability Identification (3 reviews)
- Easy Integrations (2 reviews)
- Easy Setup (2 reviews)
- Features (2 reviews)

**Cons:**

- False Positives (2 reviews)
- Poor Interface Design (2 reviews)
- Pricing Issues (2 reviews)
- Scanning Issues (2 reviews)
- Software Bugs (2 reviews)


### What Do G2 Reviewers Say About Snyk?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value Snyk&#39;s **rapid vulnerability detection** , enabling efficient identification and remediation in development environments.
- Users appreciate Snyk&#39;s **rapid vulnerability identification** , enhancing security through quick updates and effective integration.
- Users value the **easy integrations** of Snyk, enhancing workflow efficiency in CI/CD pipelines and GitHub.
- Users appreciate the **easy setup** of Snyk, enabling seamless integration with GitHub and efficient codebase scanning.
- Users commend Snyk for its **intuitive GUI and customizable organization structure** , enhancing vulnerability management and reporting efficiency.

**Cons:**

- Users experience **false positives** from Snyk, leading to confusion and slowing down the scanning process.
- Users feel the **poor interface design** of Snyk hinders usability, especially with the separate DAST interface.
- Users face **pricing issues** with Snyk, as the cost can be high for accessing all features.
- Users often face **scanning issues** such as false positives and slow scans, affecting overall efficiency and workflow.
- Users report **false positives** and slow scans in Snyk, affecting efficiency and integration with other tools.

#### What Are Recent G2 Reviews of Snyk?

**"[Seamless Dev-First Security with Fast Scans and Actionable Fixes](https://www.g2.com/survey_responses/snyk-review-12676270)"**

**Rating:** 4.5/5.0 stars
*— Prateek J.*

[Read full review](https://www.g2.com/survey_responses/snyk-review-12676270)

---

**"[Developer-Friendly Security with Clear, Automated Fixes](https://www.g2.com/survey_responses/snyk-review-12974957)"**

**Rating:** 4.5/5.0 stars
*— Hemanth K.*

[Read full review](https://www.g2.com/survey_responses/snyk-review-12974957)

---


#### What Are G2 Users Discussing About Snyk?

- [What is Snyk scanning?](https://www.g2.com/discussions/what-is-snyk-scanning) - 2 comments, 2 upvotes
- [Is Snyk a SaaS?](https://www.g2.com/discussions/is-snyk-a-saas) - 2 comments
- [How good is Snyk?](https://www.g2.com/discussions/how-good-is-snyk) - 2 comments
- [What is Snyk used for?](https://www.g2.com/discussions/what-is-snyk-used-for)

### 19. [Tenable Security Center](https://www.g2.com/products/tenable-security-center/reviews)
Tenable Security Center (formerly Tenable.sc) is the industry&#39;s most comprehensive risk-based vulnerability management (RBVM) solution, enabling you to: • See all your vulnerabilities and continuously assess all assets the moment they join the network -- including transient devices that aren’t regularly connected • Predict what matters by understanding vulnerabilities in the context of business risk, as well as the criticality of affected assets • Act on each high priority vulnerability to effectively manage risk, and measure KPIs to effectively communicate effectiveness Legacy vulnerability management tools weren&#39;t designed to handle the modern attack surface and the growing number of threats that come with them. Instead, they’re limited to a theoretical view of risk, leading security teams to waste the majority of their time chasing after the wrong issues while missing many of the most critical vulnerabilities that pose the greatest risk to the business. By taking a risk-based approach to vulnerability management, Tenable.sc enables security teams to focus on the vulnerabilities and assets that matter most, so they can address the organization’s true business risk instead of wasting their valuable time on vulnerabilities that have a low likelihood of being exploited. Tenable delivers the most comprehensive risk-based vulnerability management solution available to help you prioritize your remediation efforts, so you can take decisive action to reduce the greatest amount of business risk with the least amount of effort.


**Average Rating:** 4.6/5.0
**Total Reviews:** 73
**How Do G2 Users Rate Tenable Security Center?**

- **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.8/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.1/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.9/10 (Category avg: 8.4/10)

**Who Is the Company Behind Tenable Security Center?**

- **Seller:** [Tenable](https://www.g2.com/sellers/tenable)
- **HQ Location:** Columbia, MD
- **Twitter:** @TenableSecurity (87,752 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®)
- **Ownership:** NASDAQ: TENB

**Who Uses This Product?**
- **Top Industries:** Computer &amp; Network Security, Banking
- **Company Size:** 59% Enterprise, 24% Mid-Market


#### What Are Tenable Security Center's Pros and Cons?

**Pros:**

- Compliance Management (1 reviews)
- Customer Support (1 reviews)
- Cybersecurity (1 reviews)
- Dashboard Design (1 reviews)
- Dashboard Usability (1 reviews)

**Cons:**

- Complexity (1 reviews)
- Complex Queries (1 reviews)
- Complex Setup (1 reviews)
- Difficult Setup (1 reviews)
- Integration Issues (1 reviews)


### What Do G2 Reviewers Say About Tenable Security Center?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **compliance management** features of Tenable Security Center, ensuring adherence to ISO 27001 and audit standards.
- Users value the **responsive customer support** of Tenable Security Center, effectively addressing queries and licensing concerns.
- Users value the **comprehensive compliance scanning** capabilities of Tenable Security Center, aiding in ISO 27001 adherence.
- Users value the **informative dashboard** of Tenable Security Center, appreciating its clear overview of crucial data.
- Users value the **informative dashboard** of Tenable Security Center, which offers crucial insights and effective management tools.

**Cons:**

- Users report that the **complexity of installation and documentation** makes setup and troubleshooting quite challenging.
- Users find the **complex queries** of Tenable Security Center challenging, as documentation is hard to understand.
- Users find the **complex setup** of Tenable Security Center challenging, requiring significant time and effort to resolve installation issues.
- Users often struggle with the **difficult setup** of Tenable Security Center, requiring significant time and support to resolve issues.
- Users experience **integration issues** with Tenable Security Center, complicating installation and reliance on complex documentation.

#### What Are Recent G2 Reviews of Tenable Security Center?

**"[Comprehensive Review of Tenable Security Center: Features, Benefits, and Insights](https://www.g2.com/survey_responses/tenable-security-center-review-10789575)"**

**Rating:** 4.5/5.0 stars
*— Kiran R.*

[Read full review](https://www.g2.com/survey_responses/tenable-security-center-review-10789575)

---

**"[Unified Vulnerability Dashboard with Clear, Standardized Reporting](https://www.g2.com/survey_responses/tenable-security-center-review-12601930)"**

**Rating:** 4.5/5.0 stars
*— Kenneth W.*

[Read full review](https://www.g2.com/survey_responses/tenable-security-center-review-12601930)

---


#### What Are G2 Users Discussing About Tenable Security Center?

- [What is Tenable.sc used for?](https://www.g2.com/discussions/tenable-security-center-what-is-tenable-sc-used-for) - 1 comment
- [What are tenable plugins?](https://www.g2.com/discussions/what-are-tenable-plugins)
- [What is the difference between Nessus and tenable io?](https://www.g2.com/discussions/tenable-sc-what-is-the-difference-between-nessus-and-tenable-io)
- [What database does tenable SC use?](https://www.g2.com/discussions/what-database-does-tenable-sc-use)
- [What is tenable SC used for?](https://www.g2.com/discussions/what-is-tenable-sc-used-for)

### 20. [Qualys VM](https://www.g2.com/products/qualys-vm/reviews)
Qualys Vulnerability Management (VM) is a cloud-based service that provides organizations with immediate, global visibility into potential vulnerabilities within their IT systems. By continuously detecting and assessing threats, Qualys VM helps prevent security breaches and ensures compliance with internal policies and external regulations. Its cloud-native architecture eliminates the need for on-premises hardware, facilitating rapid deployment and scalability. Key Features and Functionality: - Comprehensive Asset Discovery: Automatically identifies and inventories all IT assets across on-premises, cloud, and hybrid environments. - Continuous Vulnerability Assessment: Performs ongoing scans to detect vulnerabilities with high accuracy, minimizing false positives. - Prioritization with Threat Intelligence: Utilizes real-time threat intelligence to prioritize vulnerabilities based on risk, focusing remediation efforts on the most critical issues. - Integrated Remediation: Offers actionable remediation steps and integrates with patch management workflows to streamline the vulnerability management process. - Scalability and Flexibility: Supports a wide range of operating systems and integrates with various cloud platforms, including AWS, Azure, GCP, and OCI, ensuring comprehensive coverage. Primary Value and Problem Solved: Qualys VM addresses the challenge of managing and mitigating vulnerabilities in complex IT environments. By providing continuous, automated vulnerability assessments and prioritizing threats based on real-time intelligence, it enables organizations to proactively protect their systems against potential attacks. The cloud-based nature of Qualys VM reduces the need for substantial resource deployment, offering a cost-effective solution for maintaining robust security postures.


**Average Rating:** 4.2/5.0
**Total Reviews:** 22
**How Do G2 Users Rate Qualys VM?**

- **Has the product been a good partner in doing business?:** 8.5/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.2/10 (Category avg: 8.9/10)
- **Automated Scans:** 8.5/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.1/10 (Category avg: 8.4/10)

**Who Is the Company Behind Qualys VM?**

- **Seller:** [Qualys](https://www.g2.com/sellers/qualys)
- **Year Founded:** 1999
- **HQ Location:** Foster City, CA
- **Twitter:** @qualys (34,248 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/8561/ (3,627 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 57% Enterprise, 35% Mid-Market


#### What Are Qualys VM's Pros and Cons?

**Pros:**

- Ease of Use (2 reviews)
- Vulnerability Identification (2 reviews)
- Automated Scanning (1 reviews)
- Dashboard Usability (1 reviews)
- Features (1 reviews)

**Cons:**

- Access Restrictions (1 reviews)
- Expensive (1 reviews)
- Inefficient Filtering (1 reviews)
- Limited Customization (1 reviews)
- Poor Customer Support (1 reviews)


### What Do G2 Reviewers Say About Qualys VM?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **ease of use** of Qualys VM, highlighting its intuitive interface and real-time vulnerability insights.
- Users appreciate the **continuous vulnerability scanning** of Qualys VM, enabling swift identification and remediation of security issues.
- Users appreciate the **continuous vulnerability scanning** of Qualys VM, enabling quick identification and remediation of critical security issues.
- Users appreciate the **interactive dashboard** of Qualys VM, enhancing usability and making vulnerability management enjoyable.
- Users appreciate the **real-time vulnerability insights** and the engaging interactive dashboard of Qualys VM.

**Cons:**

- Users find the **access restrictions** of Qualys VM too limiting for their team&#39;s efficiency and collaboration.
- Users find the **high cost** of Qualys VM to be a significant drawback compared to competing solutions.
- Users find the **inefficient filtering** in Qualys VM makes it challenging to prioritize actionable vulnerabilities effectively.
- Users find the **limited customization** in Qualys VM hinders their ability to focus on key actionable vulnerabilities efficiently.
- Users criticize the **poor customer support** , noting long response times and lack of technical assistance.

#### What Are Recent G2 Reviews of Qualys VM?

**"[Improved UI and Fast Scan Insights with Solid SNOW Integration](https://www.g2.com/survey_responses/qualys-vm-review-12679027)"**

**Rating:** 4.5/5.0 stars
*— Daniel S.*

[Read full review](https://www.g2.com/survey_responses/qualys-vm-review-12679027)

---

**"[One Stop for Endpoint Security](https://www.g2.com/survey_responses/qualys-vm-review-10919831)"**

**Rating:** 4.5/5.0 stars
*— Mukesh K.*

[Read full review](https://www.g2.com/survey_responses/qualys-vm-review-10919831)

---


#### What Are G2 Users Discussing About Qualys VM?

- [Which of the following sensors are presently used by Qualys VM to collect the data needed to perform host vulnerability assessments?](https://www.g2.com/discussions/which-of-the-following-sensors-are-presently-used-by-qualys-vm-to-collect-the-data-needed-to-perform-host-vulnerability-assessments)
- [What are the advantages of the global asset inventory application?](https://www.g2.com/discussions/qualys-vm-what-are-the-advantages-of-the-global-asset-inventory-application)
- [What is Qualys tool used for?](https://www.g2.com/discussions/qualys-vm-what-is-qualys-tool-used-for)
- [What is Qualys VM?](https://www.g2.com/discussions/what-is-qualys-vm)

### 21. [Bitsight](https://www.g2.com/products/bitsight/reviews)
Bitsight is the global leader in cyber risk intelligence, leveraging advanced AI to empower organizations with precise insights derived from the industry’s most extensive external cybersecurity dataset. With more than 3,500 customers and over 68,000 organizations active on its platform, Bitsight delivers real-time visibility into cyber risk and threat exposure, enabling teams to rapidly identify vulnerabilities, detect emerging threats, prioritize remediation, and mitigate risks across their extended attack surface. Bitsight proactively uncovers security gaps across infrastructure, cloud environments, digital identities, and third- and fourth-party ecosystems. From security operations and governance teams to executive boardrooms, Bitsight provides the unified intelligence backbone required to confidently manage cyber risk and address exposures before they impact performance.


**Average Rating:** 4.5/5.0
**Total Reviews:** 76
**How Do G2 Users Rate Bitsight?**

- **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.2/10)

**Who Is the Company Behind Bitsight?**

- **Seller:** [Bitsight](https://www.g2.com/sellers/bitsight)
- **Company Website:** https://www.bitsight.com/
- **Year Founded:** 2011
- **HQ Location:** Boston, MA
- **Twitter:** @BitSight (4,503 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/bitsight/ (741 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Hospital &amp; Health Care
- **Company Size:** 71% Enterprise, 24% Mid-Market


#### What Are Bitsight's Pros and Cons?

**Pros:**

- Security (15 reviews)
- Risk Management (14 reviews)
- Ease of Use (13 reviews)
- Features (11 reviews)
- Customer Support (9 reviews)

**Cons:**

- Missing Features (6 reviews)
- Lack of Clarity (5 reviews)
- Poor Customer Support (4 reviews)
- Poor Notifications (4 reviews)
- Slow Loading (4 reviews)


### What Do G2 Reviewers Say About Bitsight?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **comprehensive security posture** provided by Bitsight, enhancing protection for their organization and suppliers.
- Users value the **comprehensive security posture** provided by Bitsight, enhancing management of cyber risk and third-party suppliers.
- Users find Bitsight&#39;s **ease of use** remarkable, enjoying its intuitive interface and seamless integration with various platforms.
- Users appreciate the **detailed insights** and **collaboration features** of Bitsight, enhancing vendor risk management effectively.
- Users praise the **fantastic customer support** of Bitsight, highlighting their knowledge and eagerness to assist effectively.

**Cons:**

- Users find **missing features** in Bitsight, such as lack of transparency and inadequate questionnaire management, frustrating overall.
- Users criticize the **lack of clarity** in BitSight&#39;s scoring mechanism and experience occasional inaccuracies in domain reporting.
- Users experience **poor customer support** and inadequate documentation, hindering effective use of the Bitsight platform.
- Users experience **poor notifications** with delayed alerts and irrelevant historical breaches, impacting timely critical monitoring.
- Users experience **slow loading** times and timeouts that hinder workflow and overall satisfaction with Bitsight.

#### What Are Recent G2 Reviews of Bitsight?

**"[Effortless Cyber Risk Scoring for Proactive Security](https://www.g2.com/survey_responses/bitsight-review-12098656)"**

**Rating:** 4.0/5.0 stars
*— Matthew P.*

[Read full review](https://www.g2.com/survey_responses/bitsight-review-12098656)

---

**"[Finds Public-Facing Security Flaws and Clearly Shows How to Fix Them](https://www.g2.com/survey_responses/bitsight-review-12760320)"**

**Rating:** 4.5/5.0 stars
*— Verified User in Computer Software*

[Read full review](https://www.g2.com/survey_responses/bitsight-review-12760320)

---


#### What Are G2 Users Discussing About Bitsight?

- [What does Bitsight Security Ratings do?](https://www.g2.com/discussions/what-does-bitsight-security-ratings-do)
- [How is BitSight calculated?](https://www.g2.com/discussions/how-is-bitsight-calculated)
- [What is a BitSight security rating?](https://www.g2.com/discussions/what-is-a-bitsight-security-rating)

### 22. [TrendAI Vision One - Cloud Security](https://www.g2.com/products/trendai-vision-one-cloud-security/reviews)
In today&#39;s complex digital landscape, securing your cloud environment is paramount. The management and security of your hybrid and multi-cloud setup pose increasing challenges. TrendAI&#39;s Cloud Security provides essential visibility, allowing you and your teams to secure every aspect of your transformation and eliminate disruptive security silos. Automate security policies, deployments, monitoring, and compliance audits seamlessly from a single console, ensuring the automatic protection of all workloads from both known and unknown threats. With Cloud-Native Application Protection and robust platform capabilities, TrendAI empowers you to proactively address vulnerabilities and defend against threats. Gain centralized visibility, continuous asset discovery, and contextualized risk assessments, equipping your team with everything necessary to stay ahead of potential cloud security risks.


**Average Rating:** 4.5/5.0
**Total Reviews:** 181
**How Do G2 Users Rate TrendAI Vision One - Cloud Security?**

- **Has the product been a good partner in doing business?:** 9.1/10 (Category avg: 9.2/10)
- **Detection Rate:** 8.9/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.0/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.5/10 (Category avg: 8.4/10)

**Who Is the Company Behind TrendAI Vision One - Cloud Security?**

- **Seller:** [TrendAI](https://www.g2.com/sellers/trendai)
- **Year Founded:** 1988
- **HQ Location:** Tokyo
- **LinkedIn® Page:** https://www.linkedin.com/company/4312/ (8,040 employees on LinkedIn®)
- **Ownership:** OTCMKTS:TMICY
- **Total Revenue (USD mm):** $1,515

**Who Uses This Product?**
- **Who Uses This:** Cyber Security Engineer, Cyber Security Associate
- **Top Industries:** Computer &amp; Network Security, Information Technology and Services
- **Company Size:** 43% Mid-Market, 34% Enterprise


#### What Are TrendAI Vision One - Cloud Security's Pros and Cons?

**Pros:**

- Security (9 reviews)
- Security Protection (7 reviews)
- Compliance (6 reviews)
- Cloud Security (4 reviews)
- Comprehensive Security (4 reviews)

**Cons:**

- Complexity (6 reviews)
- Complex Setup (4 reviews)
- Feature Complexity (4 reviews)
- Learning Curve (4 reviews)
- Difficult Learning (3 reviews)


### What Do G2 Reviewers Say About TrendAI Vision One - Cloud Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **centralized management system** of TrendAI Vision One, which simplifies security configuration and monitoring.
- Users value the **robust multi-layered security** of TrendAI Vision One, effectively protecting diverse cloud workloads.
- Users value the **unified visibility** of TrendAI Vision One, streamlining compliance and security management across hybrid environments.
- Users value the **comprehensive coverage of both on-premise and cloud security** with TrendAI Vision One.
- Users appreciate the **comprehensive security** of TrendAI Vision One for effective monitoring and threat management across environments.

**Cons:**

- Users find the product&#39;s **complexity** challenging, often requiring expert knowledge for effective security management.
- Users find the **complex setup** of TrendAI Vision One challenging, requiring significant technical expertise for proper configuration.
- Users find **feature complexity** in TrendAI Vision One challenging, requiring expert knowledge for effective setup and management.
- Users find the **learning curve steep** , making it challenging for beginners to navigate the initial setup and configuration.
- Users find **difficult learning** curves with TrendAI Vision One, requiring expert knowledge for effective setup and management.

#### What Are Recent G2 Reviews of TrendAI Vision One - Cloud Security?

**"[Solid choice for teams juggling cloud and](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11405274)"**

**Rating:** 4.0/5.0 stars
*— Kaushal K.*

[Read full review](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11405274)

---

**"[Hybrid Cloud Security :Unified Protection with Powerful Feature.](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11834984)"**

**Rating:** 5.0/5.0 stars
*— ADITYA T.*

[Read full review](https://www.g2.com/survey_responses/trendai-vision-one-cloud-security-review-11834984)

---


#### What Are G2 Users Discussing About TrendAI Vision One - Cloud Security?

- [What is deep security software?](https://www.g2.com/discussions/trend-micro-hybrid-cloud-security-what-is-deep-security-software) - 1 upvote
- [What is Trend Micro in information security?](https://www.g2.com/discussions/what-is-trend-micro-in-information-security) - 1 upvote
- [Is Trend Micro cloud based?](https://www.g2.com/discussions/is-trend-micro-cloud-based)
- [What is deep security software?](https://www.g2.com/discussions/what-is-deep-security-software)
- [What does Trend Micro Deep Security do?](https://www.g2.com/discussions/trend-micro-hybrid-cloud-security-solution-what-does-trend-micro-deep-security-do)

### 23. [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews)
Invicti (formerly known as Netsparker) is an enterprise application and API security testing platform that helps organizations secure thousands of web applications and APIs at scale while dramatically reducing the risk of attack. Combining advanced DAST and IAST capabilities in a single platform, Invicti enables security teams to continuously identify, prioritize, and remediate vulnerabilities across complex modern environments with confidence and automation. With Invicti, security teams can: - Automate application security testing workflows and save hundreds of hours every month - Discover and secure all web applications and APIs, including forgotten, unmanaged, and shadow assets - Deliver actionable, developer-friendly feedback that helps teams remediate vulnerabilities faster and build more secure code over time - Reduce false positives with proof-based scanning technology that validates exploitable vulnerabilities - Scale application security programs across large enterprises without slowing development teams - Integrate security seamlessly into existing DevSecOps and CI/CD workflows Built for organizations with the most demanding security requirements, Invicti empowers teams to confidently secure their entire attack surface with accuracy, scalability, and automation.


**Average Rating:** 4.5/5.0
**Total Reviews:** 68
**How Do G2 Users Rate Invicti (formerly Netsparker)?**

- **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.0/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.1/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.3/10 (Category avg: 8.4/10)

**Who Is the Company Behind Invicti (formerly Netsparker)?**

- **Seller:** [Invicti Security](https://www.g2.com/sellers/invicti-security-04cb0d3d-fd96-45b2-83dc-2038fc9dac92)
- **Company Website:** https://www.invicti.com/
- **Year Founded:** 2018
- **HQ Location:** Austin, Texas
- **Twitter:** @InvictiSecurity (2,557 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/invicti-security/people/ (335 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 46% Enterprise, 28% Mid-Market


#### What Are Invicti (formerly Netsparker)'s Pros and Cons?

**Pros:**

- Ease of Use (9 reviews)
- Scanning Technology (7 reviews)
- Features (6 reviews)
- Reporting Quality (6 reviews)
- Vulnerability Detection (6 reviews)

**Cons:**

- Poor Customer Support (3 reviews)
- Slow Performance (3 reviews)
- Slow Scanning (3 reviews)
- API Issues (2 reviews)
- Complex Setup (2 reviews)


### What Do G2 Reviewers Say About Invicti (formerly Netsparker)?
*AI-generated summary from verified user reviews*

**Pros:**

- Users highlight the **ease of use** of Invicti, appreciating its user-friendly setup and quick installation process.
- Users value the **efficient scanning technology** of Invicti, enhancing workflow with hassle-free monthly website tests.
- Users commend Invicti&#39;s **accurate vulnerability detection and excellent integration with DevOps tools** , enhancing their security testing efficiency.
- Users value the **high-quality reporting** of Invicti, making it ideal for certifications and simplifying compliance processes.
- Users value the **effective vulnerability detection** of Invicti, appreciating its ease of use and accurate reporting.

**Cons:**

- Users find the **customer support lacking** , with slow responses and inadequate solutions for technical issues.
- Users experience **slow performance** during scans, setup, and upgrades, impacting the overall efficiency of Invicti.
- Users find that **slow scanning** can hinder efficiency, especially when setup is tricky and API scanning is limited.
- Users face **API issues** with Invicti, making it unsuitable for scanning purposes despite good support.
- Users find the **complex setup** challenging initially, impacting their experience before they can effectively utilize the product.

#### What Are Recent G2 Reviews of Invicti (formerly Netsparker)?

**"[Scalable Enterprise Security: Deep Endpoint Coverage via Invicti](https://www.g2.com/survey_responses/invicti-formerly-netsparker-review-12742667)"**

**Rating:** 4.5/5.0 stars
*— Verified User in Information Technology and Services*

[Read full review](https://www.g2.com/survey_responses/invicti-formerly-netsparker-review-12742667)

---

**"[Accurate, Actionable Scans with Minimal Noise](https://www.g2.com/survey_responses/invicti-formerly-netsparker-review-13079965)"**

**Rating:** 4.5/5.0 stars
*— Verified User in Retail*

[Read full review](https://www.g2.com/survey_responses/invicti-formerly-netsparker-review-13079965)

---


#### What Are G2 Users Discussing About Invicti (formerly Netsparker)?

- [What is Invicti (formerly Netsparker) used for?](https://www.g2.com/discussions/what-is-invicti-formerly-netsparker-used-for) - 1 comment
- [What type of vulnerabilities Netsparker can automatically confirm?](https://www.g2.com/discussions/invicti-formerly-netsparker-what-type-of-vulnerabilities-netsparker-can-automatically-confirm)
- [What type of vulnerabilities Netsparker can automatically confirm?](https://www.g2.com/discussions/what-type-of-vulnerabilities-netsparker-can-automatically-confirm)
- [How much does Netsparker cost?](https://www.g2.com/discussions/invicti-formerly-netsparker-how-much-does-netsparker-cost-a1ecffa4-a216-4bcc-affd-40dc140f3e27)
- [How much does Netsparker cost?](https://www.g2.com/discussions/invicti-formerly-netsparker-how-much-does-netsparker-cost)

### 24. [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews)
Red Hat® Ansible® Automation Platform is Red Hat&#39;s primary enterprise automation product offering., it includes all of the tooling needed for building, deploying, and managing end-to-end automation at scale. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless technical implementation. IT managers can provide guidelines on how automation is applied to individual teams. Meanwhile, automation creators retain the freedom to write tasks that use existing knowledge, without the operational overhead of conforming to complex tools and frameworks. It is a more secure and stable foundation for deploying end-to-end automation solutions, from hybrid cloud to the edge. Ansible Automation Platform uses an open source development model of the Ansible project to create an experience tailored to enterprise automation. This open development model connects the engineers behind Ansible Automation Platform to more than a dozen open source Ansible projects in the community. As members work together to identify and elevate the best ideas, Red Hat supports them by contributing to the code and creating products from upstream projects. View more at https://www.ansible.com/compare Ansible Automation Platform simplifies packaging and distribution while providing tested and trusted interoperability between all the components. Combined with an 18-month support life cycle, Ansible Automation Platform takes the complexity, uncertainty, and guesswork out of using upstream open source tools. With a Red Hat subscription, you get certified and validated automation content from our robust partner ecosystem; added security, reporting, and analytics; and life cycle technical support from Red Hat and Red Hat’s technology partners to scale automation across your organization. And you’ll get expert knowledge gained from our success with thousands of customers.


**Average Rating:** 4.6/5.0
**Total Reviews:** 369
**How Do G2 Users Rate Red Hat Ansible Automation Platform?**

- **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.2/10)
- **Detection Rate:** 7.9/10 (Category avg: 8.9/10)
- **Automated Scans:** 8.8/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 9.2/10 (Category avg: 8.4/10)

**Who Is the Company Behind Red Hat Ansible Automation Platform?**

- **Seller:** [Red Hat](https://www.g2.com/sellers/red-hat)
- **Year Founded:** 1993
- **HQ Location:** Raleigh, NC
- **Twitter:** @RedHat (300,769 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/3545/ (19,413 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** DevOps Engineer, Software Engineer
- **Top Industries:** Information Technology and Services, Financial Services
- **Company Size:** 48% Enterprise, 36% Mid-Market


#### What Are Red Hat Ansible Automation Platform's Pros and Cons?

**Pros:**

- Automation (46 reviews)
- Automation Efficiency (40 reviews)
- Easy Integrations (32 reviews)
- Task Automation (32 reviews)
- Ease of Use (30 reviews)

**Cons:**

- Learning Curve (13 reviews)
- Learning Difficulty (13 reviews)
- Complexity (11 reviews)
- Complex Setup (11 reviews)
- Automation Issues (9 reviews)


### What Do G2 Reviewers Say About Red Hat Ansible Automation Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **automation efficiency** of Red Hat Ansible Automation Platform, simplifying task execution without human intervention.
- Users value the **automation efficiency** of Red Hat Ansible Automation Platform, streamlining tasks without human intervention.
- Users value the **easy integrations** of Red Hat Ansible Automation Platform, streamlining their automation processes efficiently.
- Users value the **task automation** capabilities of Red Hat Ansible, enabling efficient, hands-free operations for repeatable tasks.
- Users appreciate the **ease of use** of Red Hat Ansible Automation Platform, enabling efficient multitasking and streamlined operations.

**Cons:**

- Users face a **steep learning curve** with Ansible, requiring a shift from traditional methods and challenging installations.
- Users find the **learning difficulty** of the Red Hat Ansible Automation Platform due to its complexity and daunting environment.
- Users find the **complexity of the environment** and licensing challenging, making management and scaling difficult.
- Users find the **complex setup** of Red Hat Ansible Automation Platform challenging, particularly when managing dependencies in isolated environments.
- Users find **automation issues** with Ansible Automation Platform, citing bugs and limited export functionality as concerns.

#### What Are Recent G2 Reviews of Red Hat Ansible Automation Platform?

**"[Consistent, Scalable Automation That Boosts Stability and Efficiency](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12121846)"**

**Rating:** 5.0/5.0 stars
*— Prasanth K.*

[Read full review](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12121846)

---

**"[Efficient Automation with Some Learning Curves](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12646247)"**

**Rating:** 4.0/5.0 stars
*— Jairo R.*

[Read full review](https://www.g2.com/survey_responses/red-hat-ansible-automation-platform-review-12646247)

---


#### What Are G2 Users Discussing About Red Hat Ansible Automation Platform?

- [What is Red Hat Ansible Automation Platform used for?](https://www.g2.com/discussions/what-is-red-hat-ansible-automation-platform-used-for) - 1 comment
- [Is Red Hat Ansible free?](https://www.g2.com/discussions/is-red-hat-ansible-free)
- [What should I automate with Ansible?](https://www.g2.com/discussions/what-should-i-automate-with-ansible)
- [What are the three main components in Red Hat Ansible automation platform?](https://www.g2.com/discussions/what-are-the-three-main-components-in-red-hat-ansible-automation-platform)
- [What is Red Hat Ansible automation platform?](https://www.g2.com/discussions/what-is-red-hat-ansible-automation-platform)

### 25. [Indusface WAS](https://www.g2.com/products/indusface-was/reviews)
Indusface WAS (Web Application Scanner) provides comprehensive managed dynamic application security testing (DAST) solution. It is a zero-touch, non-intrusive cloud-based solution that provides daily monitoring for web applications, checking for systems and application vulnerabilities, and malware. Indusface WAS with its automated scans &amp; manual pentesting done by certified security experts ensures none of the OWASP Top10, business logic vulnerabilities, and malware go unnoticed. With zero false-positive guarantee and comprehensive reporting with remediation guidance, Indusface web app scanning ensures developers to quickly fix vulnerabilities seamlessly.


**Average Rating:** 4.6/5.0
**Total Reviews:** 63
**How Do G2 Users Rate Indusface WAS?**

- **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.2/10)
- **Detection Rate:** 9.2/10 (Category avg: 8.9/10)
- **Automated Scans:** 9.3/10 (Category avg: 9.0/10)
- **Configuration Monitoring:** 8.8/10 (Category avg: 8.4/10)

**Who Is the Company Behind Indusface WAS?**

- **Seller:** [Indusface](https://www.g2.com/sellers/indusface)
- **Year Founded:** 2012
- **HQ Location:** Vadodara
- **Twitter:** @Indusface (3,472 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/indusface/ (180 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Computer Software, Information Technology and Services
- **Company Size:** 52% Small-Business, 37% Mid-Market


#### What Are Indusface WAS's Pros and Cons?

**Pros:**

- Vulnerability Detection (19 reviews)
- Vulnerability Identification (16 reviews)
- Customer Support (6 reviews)
- Scanning Efficiency (6 reviews)
- Security (6 reviews)

**Cons:**

- Expensive (2 reviews)
- Confusing Interface (1 reviews)
- Lacking Features (1 reviews)
- Limited Scope (1 reviews)
- Poor Interface Design (1 reviews)


### What Do G2 Reviewers Say About Indusface WAS?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **effective vulnerability detection** of Indusface WAS, ensuring rapid prioritization and reliable remediation support.
- Users value the **consistent and reliable vulnerability detection** of Indusface WAS, ensuring secure deployments with ease.
- Users commend the **excellent customer support** of Indusface WAS, ensuring timely responses and effective issue resolution.
- Users value the **scanning efficiency** of Indusface WAS for detailed vulnerability reports and timely updates after deployments.
- Users value the **thorough security scans** from Indusface WAS, enhancing their vulnerability identification and accreditation processes.

**Cons:**

- Users feel that the pricing for Indusface WAS is **expensive** , especially regarding staging and development environment scans.
- Users find the **confusing interface** of Indusface WAS somewhat dated and in need of improvements for better usability.
- Users find the **lack of features** for staging and development environments limits their testing in Indusface WAS.
- Users find the **limited scope of pricing for staging environments** restricts functionality and increases testing challenges.
- Users find the **interface design outdated and unintuitive** , often wishing for a more user-friendly experience.

#### What Are Recent G2 Reviews of Indusface WAS?

**"[Vulnerability and malware scanner in one](https://www.g2.com/survey_responses/indusface-was-review-11323529)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Insurance*

[Read full review](https://www.g2.com/survey_responses/indusface-was-review-11323529)

---

**"[Great support Given by shivani](https://www.g2.com/survey_responses/indusface-was-review-11074325)"**

**Rating:** 5.0/5.0 stars
*— Sai N.*

[Read full review](https://www.g2.com/survey_responses/indusface-was-review-11074325)

---


#### What Are G2 Users Discussing About Indusface WAS?

- [What is Indusface WAS used for?](https://www.g2.com/discussions/what-is-indusface-was-used-for)


## What Is Vulnerability Scanner Software?

[DevSecOps Software](https://www.g2.com/categories/devsecops)

## What Software Categories Are Similar to Vulnerability Scanner Software?

- [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools)
- [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast)
- [Risk-Based Vulnerability Management Software](https://www.g2.com/categories/risk-based-vulnerability-management)


---

## How Do You Choose the Right Vulnerability Scanner Software?

### What You Should Know About Vulnerability Scanner Software

### What is Vulnerability Scanner Software?

Vulnerability scanners are used to examine applications, networks, and environments for security flaws and misconfigurations. These tools run a variety of dynamic security tests to identify security threats along an application or network’s attack surface. Scans can be used for anything from an application penetration test to a compliance scan. Depending on the specific objectives a user has, they can customize the vulnerability scanner to test for specific issues or requirements.

Companies can configure these tests to their unique environment. Companies that handle lots of personal or financial data may scan to ensure every transaction or datastore is encrypted from the public. They could also test their web applications against specific threats like SQL injection or cross-site scripting (XSS) attacks. The highly-customizable nature of vulnerability scanners provides users with tailor-made solutions for application and network security examination.

Many of these tools offer continuous scanning and testing for nonstop protection and monitoring. Whatever administrators set as a priority will be tested periodically and inform employees of issues or incidents. Continuous monitoring makes it much easier to discover vulnerabilities before they become an issue and drastically reduce the amount of time a vulnerability takes to remediate.

Top vulnerability scanner software with CVE remediation guidance typically combines automated scanning with prioritized fix recommendations that map findings to severity scores, exposure paths, and patch availability. Based on G2 reviews, security teams evaluate vulnerability scanner software by comparing CVE remediation depth, false positive rates, and how quickly the platform integrates into existing CI/CD pipelines and cloud environments.

Key Benefits of Vulnerability Scanner Software

- Scan networks and applications for security flaws
- Diagnose, track, and remediate vulnerabilities
- Identify and resolve misconfigurations
- Perform ad hoc security tests

### Why Use Vulnerability Scanner Software?

Applications and networks are only beneficial to a business if they operate smoothly and securely. Vulnerability scanners are a useful tool to view internal systems and applications from the perspective of the attacker. These tools allow for dynamic testing while applications operate. This helps security teams take a step beyond patches and code analysis to evaluate security posture while the application, network, or instance actually runs.

**Application security—** Cloud, web, and desktop applications all require security, but operate differently. While many vulnerability scanners support testing for all kinds of applications, vulnerability scanners often support a few application types, but not others. Still, they will all examine the application itself, as well as the paths a user needs to access it. For example, if a vulnerability scanner is used on a web application, the tool will take into account the various attack vectors a hacker might take. This includes a site’s navigation, regional access, privileges, and other factors decided by the user. From there, the scanner will output reports on specific vulnerabilities, compliance issues, and other operational flaws.

**Networks —** While software applications are often the most obvious use cases for vulnerability scanners, network vulnerability scanners are also quite common. These tools take into account the network itself, as well as computers, servers, mobile devices and any other asset accessing a network. This helps businesses identify vulnerable devices and abnormal behaviors within a network to identify and remediate issues as well as improve their network&#39;s security posture. Many even provide visual tools for mapping networks and their associated assets to simplify the management and prioritization of vulnerabilities requiring remediation.

**Cloud environments —** Not to be confused with cloud-based solutions delivered in a SaaS model, cloud vulnerability scanners examine cloud services, cloud computing environments, and integrated connections. Like network vulnerability scanners, cloud environments require an examination on a few levels. Cloud assets come in many forms including devices, domains, and instances; but all must be accounted for and scanned. In a properly secured cloud computing environment, integrations and API connections, assets, and environments must all be mapped, configurations must be monitored, and requirements must be enforced.

Based on G2 reviews, vulnerability scanner platforms generating VLAN audit reports are evaluated primarily by security teams running segmented enterprise networks where compliance frameworks (PCI, HIPAA, SOC 2, ISO 27001) require documented scans across each network zone. Reviewers point to audit-ready compliance reporting, granular scan scope by IP range and network segment, and exportable evidence formats as the features that determine whether the platform shortens the audit prep cycle or adds another step to it.

### What are the Common Features of Vulnerability Scanner Software?

Vulnerability scanners can provide a wide range of features, but here are a few of the most common found in the market.

**Network mapping —** Network mapping features provide a visual representation of network assets including endpoints, servers, and mobile devices to intuitively demonstrate an entire network’s components.

**Web inspection —** Web inspection features are used to assess the security of a web application in the context of its availability. This includes site navigation, taxonomies, scripts, and other web-based operations that may impact a hacker’s abilities.

[**Defect tracking**](https://www.g2.com/categories/vulnerability-scanner/f/issue-tracking) **—** Defect and issue tracking functionality helps users discover and document vulnerabilities and track them to their source through the resolution process.

**Interactive scanning —** Interactive scanning or interactive application security testing features allow a user to be directly involved in the scanning process, watch tests in real time, and perform ad hoc tests.

[**Perimeter scanning**](https://www.g2.com/categories/vulnerability-scanner/f/perimeter-scanning) **—** Perimeter scanning will analyze assets connected to a network or cloud environment for vulnerabilities.

[**Black box testing**](https://www.g2.com/categories/vulnerability-scanner/f/black-box-testing) **—** Black box scanning refers to tests conducted from the hacker’s perspective. Black box scanning examines functional applications externally for vulnerabilities like SQL injection or XSS.

**Continuous monitoring —** Continuous monitoring allows users to set it and forget it. They enable scanners to run all the time as they alert users of new vulnerabilities.

[**Compliance monitoring**](https://www.g2.com/categories/vulnerability-scanner/f/compliance-testing) **—** Compliance-related monitoring features are used to monitor data quality and send alerts based on violations or misuse.

**Asset discovery —** Asset discovery features unveil applications in use and trends associated with asset traffic, access, and usage.

**Logging and reporting —** Log documentation and reporting provides required reports to manage operations. It provides adequate logging to troubleshoot and support auditing.

**Threat intelligence —** Threat intelligence features integrate with or store information related to common threats and how to resolve them once incidents occur.

**Risk analysis —** Risk scoring and risk analysis features identify, score, and prioritize security risks, vulnerabilities, and compliance impacts of attacks and breaches.

**Extensibility —** Extensibility and integration features provide the ability to extend the platform or product to include additional features and functionalities.

Based on G2 reviews, the most trusted vulnerability scanner platforms in 2026 for security teams lead on CVE remediation guidance and easy setup onboarding, with reviewers describing time-to-first-scan in hours rather than weeks. SOC and AppSec teams point to clear remediation steps, severity scoring, and actionable findings as the features that distinguish platforms they actively use from ones that produce noise. Vulnerability scanner solutions with easy setup onboarding are highlighted in recent reviews for delivering full environment visibility on day one through agentless, API-driven architectures, with documentation that reduces the engineering lift typically associated with rolling out vulnerability scanning.

Many vulnerability scanner tools will also offer the following features:&amp;nbsp;

- [Configuration monitoring capabilities](https://www.g2.com/categories/vulnerability-scanner/f/configuration-monitoring)
- [Automated scan capabilities](https://www.g2.com/categories/vulnerability-scanner/f/automated-scans)
- [Manual application testing capabilities](https://www.g2.com/categories/vulnerability-scanner/f/manual-application-testing)
- [Static code analysis capabilities](https://www.g2.com/categories/vulnerability-scanner/f/static-code-analysis)

### Potential Issues with Vulnerability Scanner Software

**False positives —** False positives are one of the most common issues with security tools. They indicate a tool is not running efficiently and introduce lots of unnecessary labor. Users should examine figures related to specific products and their accuracy before purchasing a solution.

**Integrations —** Integrations can make an application or product do virtually anything, but only if the integration is supported. If a specific solution must be integrated or a specific data source is highly relevant, be sure it’s compatible with the vulnerability scanner before making that decision.

**Scalability —** Scalability is always important, especially for growing teams. Cloud and SaaS-based solutions are traditionally the most scalable, but desktop and open source tools may be as well. Scalability will be important for teams considering collaborative use, concurrent use, and multi-application and environment scanning.

### Software and Services Related to Vulnerability Scanner Software

These technology families are either closely related to vulnerability scanners or there is frequent overlap between products.

[**Risk-based vulnerability management software**](https://www.g2.com/categories/risk-based-vulnerability-management) **—** Risk-based vulnerability management software is used to analyze security posture based on a wide array of risk factors. From there, companies prioritize vulnerabilities based on their risk score. These tools often have some overlapping features, but they’re more geared towards prioritizing risks in large organizations rather than identifying vulnerabilities to individual applications or environments.

[**Dynamic application security testing (DAST) software**](https://www.g2.com/categories/dynamic-application-security-testing-dast) **—** DAST software is very closely related to vulnerability scanners and are sometimes used interchangeably. The differentiating factor here, though, is the ability to scan networks, cloud services, and IT assets in addition to applications. While they do scan for vulnerabilities, they won’t allow users to map networks, visualize environments, or examine vulnerabilities beyond the scope of the application.

[**Static application security testing (SAST) software**](https://www.g2.com/categories/static-application-security-testing-sast) **—** SAST software is not that similar to vulnerability scanners, unlike DAST tools. SAST tools allow for the examination of source code and non-operational application components. They also can’t simulate attacks or perform functional security tests. Still, these can be useful for defect and bug tracking if the vulnerability is rooted in an application’s source code.

[**Penetration testing software**](https://www.g2.com/categories/penetration-testing) **—** Penetration testing software is one aspect of vulnerability scanning, but a penetration test will not provide a wide variety of security tests. They are useful for testing common attack types, but they won’t be very effective in identifying and remediating the root cause of a vulnerability.

Based on G2 reviews, Software Composition Analysis tools Jenkins GitLab integration continuous vulnerability scanning is the workflow pattern reviewers describe as the standard for developer-led security programs running checks inside the build pipeline rather than as a separate stage. Reviewers point to agentless, API-driven scanners integrating into CI/CD pipelines to catch secrets, misconfigurations, and open-source dependency vulnerabilities pre-deployment as the setup that scales with engineering velocity. Reviewers note that consolidated platforms unifying SCA, SAST, and exposure-management scanning under one interface are the preferred consolidation pattern over stitching together standalone tools.



