Tripwire IP360 Review

It can schedule and run vulnerability scans as needed.


What is most valuable?

It’s most valuable feature is the ability to schedule and run vulnerability scans as needed.

How has it helped my organization?

It has enhanced the security program by ensuring that all external-facing systems are scanned on a routine basis.

What needs improvement?

There are inconsistencies in some of the vulnerability findings when compared to similar tools. For example, a recent scan didn’t turn up any vulnerabilities related to SSL but when I used another tool, it found those vulnerabilities, which after some investigating were valid.

For how long have I used the solution?

I have used it for 2.5 years.

What do I think about the stability of the solution?

I have not encountered any stability issues.

What do I think about the scalability of the solution?

I have not encountered any scalability issues.

How are customer service and technical support?

Tripwire’s technical support has always been excellent.

Which solution did I use previously and why did I switch?

I did not previously use a different solution, but next year I will be switching to a different cloud-based, security-as-a-service solution.

How was the initial setup?

It is a cloud-based tool, so there wasn’t anything to configure.

What's my experience with pricing, setup cost, and licensing?

The pricing is definitely the most affordable in the market.

Which other solutions did I evaluate?

I evaluated similar products from BeyondTrust and Qualys.

What other advice do I have?

If you are looking for affordability, this is a great deal. If you are looking for better reporting capabilities and vulnerability tracking over time for remediation purposes, then this is not the best solution.

My rating reflects the product being used purely for PCI ASV scans. If used for perimeter-only scanning, I would rate this tool lower.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest