Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Excellent product
What do you like best about the product?
It helps to improve API security and provides good vulnerability assessment
What do you dislike about the product?
hard for the dev team lo learn hot to use
What problems is the product solving and how is that benefiting you?
API securety
- Leave a Comment |
- Mark review as helpful
This company provides DAST scanning solution no other company can in a direct focused way
What do you like best about the product?
Scanning and testing capabilities for frontend of your application are next level
Flexibility in reports generation
Constant meaningful improvements in Ease of Use in last year, for example Incremental app that analyzes entrypoints and triggers scans without having to set up the parameters relevant to each.
Customer Support is very helpful even when I am not from the security field. Support also are crucial for Ease of implementation, and follow up on a weekly basis on progress.
Flexibility in reports generation
Constant meaningful improvements in Ease of Use in last year, for example Incremental app that analyzes entrypoints and triggers scans without having to set up the parameters relevant to each.
Customer Support is very helpful even when I am not from the security field. Support also are crucial for Ease of implementation, and follow up on a weekly basis on progress.
What do you dislike about the product?
More challenging for products that require frequent reinstall
Could use better integration with API scanning, like entrypoint discovery with target's swagger page
Need to improve flexibility in entrypoint management for a given project (mass edit, mass delete etc)
I would also suggest diversifying the licensing options:
I need to run multiple scans in short amount of time once every 2 months to test all products. Currently the license is for one engine, which means I can use it 24/7 but am limited to one running scan. Having an option for several engines that are time limited with frequency required would be useful, even a pay-as-you-go format would work well for these use cases.
Could use better integration with API scanning, like entrypoint discovery with target's swagger page
Need to improve flexibility in entrypoint management for a given project (mass edit, mass delete etc)
I would also suggest diversifying the licensing options:
I need to run multiple scans in short amount of time once every 2 months to test all products. Currently the license is for one engine, which means I can use it 24/7 but am limited to one running scan. Having an option for several engines that are time limited with frequency required would be useful, even a pay-as-you-go format would work well for these use cases.
What problems is the product solving and how is that benefiting you?
Bright helps me meet my company's security requirements for the product my group develops.
Professional Support , High Level Performance
What do you like best about the product?
Very good PS and support , high quality team and product in the DAST
What do you dislike about the product?
High learning curve, mode documentation.
What problems is the product solving and how is that benefiting you?
DAST scans for API security and Dev Applications
Straightforward but flexible DAST
What do you like best about the product?
Bright allows teams with little-to-none AppSec training to conduct thourough scans and track issues and fixes in apps lifecycle.
What do you dislike about the product?
Sometimes error in the scanned app or in bright engine are not always fully understandable, sometimes requiring support assistance.
What problems is the product solving and how is that benefiting you?
Lack of highly skilled, on-demand AppSec professionals for every mission or app.
Streamline appsec tests with ci/cd integration.
This allows more flexibility and availability of security scans
Streamline appsec tests with ci/cd integration.
This allows more flexibility and availability of security scans
Bright Security Review
What do you like best about the product?
I find that the best thing is the support, always attentive to our requests and supporting in finding solutions. I would also like to mention the features available, which let us cover efficiently our needs.
What do you dislike about the product?
I am completely satisfied with Bright Security: no issues.
What problems is the product solving and how is that benefiting you?
Bright Security helps us having a good grasp on the security posture of the internet-facing infrastructure.
Bright DAST for scanning web applications
What do you like best about the product?
Were able to find vulnerabilities which other DASTs couldn't
Different authentication methods are supported and can be configured in a convenient way
Good support, very helpful and make sure every issue is being solved
Different authentication methods are supported and can be configured in a convenient way
Good support, very helpful and make sure every issue is being solved
What do you dislike about the product?
Crawling and scans can sometimes take long time.
What problems is the product solving and how is that benefiting you?
Automate security vulnerabilities identification
Best DAST Tool
What do you like best about the product?
Ease of use, easy to understand and very user friendly.
What do you dislike about the product?
Due to configuration changes or such from the Brightside often times the scan fails with no apparent reason.
What problems is the product solving and how is that benefiting you?
DAST is often looked down upon many organisations but with Brightsec it is easier to justify the importance of having a DAST scan for every release. Its preciseness in identifying vulnerabilities helps in confirming the True Positive.
A great experience
What do you like best about the product?
Bright Security is really simple to use. The cloud interface consents to perform high quality scan e to receive detailed reports. The repeater integration complete the features.
The scan engine consents to perform high frequency of use scan without loss of performance.
In Bright security i can appreciate the customer support quality.
The scan engine consents to perform high frequency of use scan without loss of performance.
In Bright security i can appreciate the customer support quality.
What do you dislike about the product?
The online guide, pheraps is too long, with few examples to perform an ease to implementation in some features (for example the repeater)
What problems is the product solving and how is that benefiting you?
Bright security helps me to assure a formerly correct security governance activity
DAST in the hands of Programmers
What do you like best about the product?
It is a general wisdom that DAST works starting at the Build phase, no later. Yet Bright Secuirty enables DAST as early as at Unit/Programming phase. It is a Shift-Left implementation for DAST in its best. Bright enables developers to run DAST at the earliest phase, when remediation is the least expensive and the easiest. DevOps personnel can use Bright’s DAST as often as necessary until it is ensured that the application if vulnerability-free.
What do you dislike about the product?
Bright has a complete set of DAST capabilities, including – we should underscore it – an API Secuirty Testing. We would only wish only that Bright, as vendor, added to its portfolio some sister-technologies, such as SCA and SAST
What problems is the product solving and how is that benefiting you?
Detecting vulnearbilities earkly in the software lifecycle
DAST that actually works and built for modern development and security teams
What do you like best about the product?
I have been collaborating with Bright Security since the early days of the company. The vision was always aligned to solve a major AppSec problem - creating a tool that can perform active security to tests in order to detect vulnerabilities as early as possible before shipped to production, decreasing penetration testing scope which has a significant cause, and embeding these capabilities in to high scale security environments.
After a long journey I can now say they achieved all these goals. No other DAST integrates smoother than Bright on high scale development environments.
After a long journey I can now say they achieved all these goals. No other DAST integrates smoother than Bright on high scale development environments.
What do you dislike about the product?
Some UI Changes are required to make configuration more coherent.
What problems is the product solving and how is that benefiting you?
Instead of spending enormous amounts of budgets on penetration tests - some of our customers have been able to reduce the necessity of full blown PT's by providing most detection for the same vulnerabilities using Bright's solution. Providing beneficial and easy-to-use capabilities for developers on their common platform is a game changer.
showing 1 - 10