My main use case for Prowler is identifying the vulnerabilities in an infrastructure hosted on AWS.
A quick specific example of how I used Prowler to identify vulnerabilities is that in our code build hosted on AWS, we had secrets in plain text that should have been in secrets manager, so it helped us identify the vulnerability that could have caused major problems.
The best features Prowler offers include its ability to help us identify vulnerabilities first, which in turn helps us fix them frequently.
When it comes to identifying vulnerabilities, the specific scanning capabilities and reporting features in Prowler that stand out for me are that the findings are presented in a well-documented report.
Prowler has positively impacted my organization by helping us on the security front by improving compliance.
Some of the findings in Prowler are not that critical but come in the critical category, so that could be improved. The categorization of vulnerabilities could be improved.
I have used Prowler for an extended period.
Prowler is stable.
Prowler's scalability is good.
Prowler's customer support is good.
I have seen a return on investment as compliance has been improved.
My experience with pricing, setup cost, and licensing is positive.
Prowler is a good software; I recommend it. It helps reduce vulnerabilities. On a scale of one to ten, I would rate Prowler an eight because of the features and limitations mentioned above. I give it this rating because it is a good software that helps reduce vulnerabilities.
