We just raised a $30M Series A: Read our story

ImmuniWeb Alternatives and Competitors

Get our free report covering Tenable Network Security, Acunetix, OWASP, and other competitors of ImmuniWeb. Updated: October 2021.
542,267 professionals have used our research since 2012.

Read reviews of ImmuniWeb alternatives and competitors

Roger Brecht
Director of Operations at Stega
Real User
Top 10
Increases network visibility and vulnerability awareness with zero false positives

Pros and Cons

  • "The most valuable features are the SLA of Zero false-positives, less time of service development, validation of unlimited patched vulnerabilities, and several others."
  • "A great idea would be to support using Discovery on the internal network, allowing delivery of all the features of the current Discovery to internal network resources."

What is our primary use case?

The product of ImmuniWeb that I have used the most, for me and for my clients, is On-Demand. The WAPT and MAPT On-Demand delivers in less time, with greater detail and multiple values added, a lot more versus locally-sourced first-level Ethical Hacking.

For my clients, Discovery is useful. This allows you to quickly and effectively inventory the whole external surface, with a score of risks and continuous monitoring. The Discovery Corporate Pro delivers what is known as brand monitoring, which is of great value for companies that usually need to mitigate data leaks, impersonation of domains and other techniques of attacks, and issues related to the reputation of the company.

How has it helped my organization?

I have managed to deliver to my clients the services of Ethical Hacking in less time, with better deliverables, and other key differentiators that make my company more competitive in the local market.

With regard to the surface of external attack, the Discovery of ImmuniWeb has enabled our clients to move from a state in which they did not know its surface, to having knowledge of inventory, risks, and new vulnerabilities to their external assets as these are emerging or changing in time.

What is most valuable?

The most valuable features are the SLA of Zero false-positives, less time of service development, validation of unlimited patched vulnerabilities, and several others.

Frictionless customer service is something I appreciate very much. The ability to deliver customer access to the dashboard of the service and make it an active part of the project is a great contribution. The customer is not limited to receive an initial report of service and another report at the end of the service, but a complete view of the evolution of the service. This gives them more peace of mind on the development of the project.

What needs improvement?

A great idea would be to support using Discovery on the internal network, allowing delivery of all the features of the current Discovery to internal network resources. That would be a great contribution to large companies that don´t have an inventoried and effective risk score of the assets internally. In the same way that it can deliver On-Demand WAPT or MAPT for internal network applications through a virtual machine provided by ImmuniWeb, this could be done for the Discovery of the internal network.

For how long have I used the solution?

I have used the products of ImmuniWeb for almost two years.

What do I think about the stability of the solution?

The stability is unbeatable.

What do I think about the scalability of the solution?

This solution has excellent scalability.

How are customer service and technical support?

The customer support is quite fast and effective.

Which solution did I use previously and why did I switch?

For WAPT and MAPT, we have used for years the consultancies of our Ethical Hackers, who clearly do not compete with ImmuniWeb with regard to times, validation of patching of vulnerabilities, or the Zero False-Positives SLA.

How was the initial setup?

The initial setup is very simple. The project is created and everything progresses from there.

What's my experience with pricing, setup cost, and licensing?

The values of ImmuniWeb are currently significantly below what is valued in the Chilean market for these services and solutions.

Which other solutions did I evaluate?

We evaluated Nessus, Acunetix, and Rational AppScan, but all of these are tests of web vulnerabilities. ImmuniWeb initially performed the analysis of vulnerabilities, followed by ethical hacking on the part of its human team, with evidence of business logic from the application and state of the art tests.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Paul Young Okkamy
IT Department Manager at Okkamy
Real User
Top 10
AI-driven, easily customizable, and has a zero false-positive SLA

Pros and Cons

  • "After the assessment, you clearly know which assets require penetration testing."
  • "A great idea would be to make a mobile application for the ImmuniWeb portal so that all information would be available on the go and from a mobile phone as well. It would be much more convenient."

What is our primary use case?

I should say that we've already used ImminiWeb services before. But it was a traditional penetration test of a website. We were absolutely satisfied with their work and selected ImmuniWeb to test our new project for bugs and vulnerabilities.

ImmuniWeb has grown dramatically in these last 4 years. Now, it's a large platform that handles the discovery of your IT assets and launches an AI automated penetration test to fix bugs found.

The first discovery revealed some critical bugs in our assets. ImmuniWeb's team responded very quickly and soon provided a detailed report and guidelines for remediation.

How has it helped my organization?

The ImmuniWeb Platform is the best and easiest way to secure a business online. It's a really great experience. We got reports with zero false-positives and detailed instructions regarding how to solve problems and remove any vulnerabilities found with ImmuniWeb Discovery. We didn't have to purchase any complicated software. Everything is online in the cloud.

We are sure that ImmuniWeb is definitely the best alternative to traditional penetration testing. They really reduced our security costs and made our business compliant with GDPR and other European and international laws and regulations.

What is most valuable?

I like that ImmuniWeb finds all your assets literally anywhere, including on your website, clouds, repositories, network infrastructure, et cetera. Moreover, it scans the Dark Web for assets. Dark Web Monitoring is the most valuable tool. It quickly scans the dark web and you see it all in the dashboard. In our case, we found a password leak.

After the assessment, you clearly know which assets require penetration testing.

The penetration test itself is AI-driven, easily customizable, and provided with a zero false-positive SLA.

What needs improvement?

You may find the dashboard a bit complicated. That's because of a large number of features. If ImmuniWeb will make a kind of presentation on how to work with a platform when you log in for the first time, that would be ideal.

On the other hand, ImmuniWeb holds monthly webinars where they explain how to use the platform. I took part in one of them and found out a lot of new options I didn't know about before.

A great idea would be to make a mobile application for the ImmuniWeb portal so that all information would be available on the go and from a mobile phone as well. It would be much more convenient.

For how long have I used the solution?

We have been using ImmuniWeb for 6 months already.

How are customer service and technical support?

The product offers fast 24/7 support. 

Which solution did I use previously and why did I switch?

I used the vulnerability scanner from Acunetix and some Qualys products. The scanner is nice but very expensive. It also didn't give the full view of the problems within the website.

What's my experience with pricing, setup cost, and licensing?

I would advise users to start with a small package. Other packages may look costly for an SMB. That said, the price/value ratio is perfect.

Which other solutions did I evaluate?

We did look at Qualys.

Which deployment model are you using for this solution?

Private Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Other
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Get our free report covering Tenable Network Security, Acunetix, OWASP, and other competitors of ImmuniWeb. Updated: October 2021.
542,267 professionals have used our research since 2012.