App comparison

Add up to 4 apps below to see how they compare. You can also use the "Compare" buttons while browsing.

GetApp offers objective, independent research and verified user reviews. We may earn a referral fee when you visit a vendor through our links. 

Vulnerability Management Software - Page 5

Last updated: February 2025

228 software options

UpGuard logo

Cloud-based cybersecurity tool for vendor risk management.

learn more
UpGuard is a cloud-based risk and attack surface management platform that provides organizations visibility and control over their cyber risk. The solution provides a suite of features that enable security teams to identify, assess, and remediate risks across their entire vendor ecosystem and external attack surface.

Read more about UpGuard

Users also considered
CloudWize logo

Cloud security and compliance management solution

learn more
Get 360° cloud protection from architecture design to runtime. This agentless, drag-and-drop, no-code solution enables you to detect and fix cloud issues in minutes. Over 1000 rules running continuously on your cloud within minutes of onboarding.

Read more about CloudWize

Users also considered
Threatspy logo

Reinventing Application Security

learn more
Developer-first Application & API Security Management Platform

Read more about Threatspy

Users also considered
OX Security logo

Cloud-security solution for administrators.

learn more
OX Security is a cloud security platform that helps small to large businesses in technology, banking, financial services, and other sectors protect their organization from advanced cyber threats. The platform provides real-time threat detection and response capabilities, giving administrators the ability to gain insights into their network so they can identify and address threats before those threats cause damage.

Read more about OX Security

Users also considered
Crashtest Security logo

Cloud-based vulnerability scanning & testing software

learn more
Crashtest Security is a vulnerability testing software that helps businesses perform automated scans to detect cybersecurity threats across applications. Managers can conduct single-page, multi-page, and documentation-based scans to identify attack vectors across several web applications.

Read more about Crashtest Security

Users also considered
Enzoic for Active Directory Lite logo

Free Password Auditing Tool

learn more
Identify weak, breached, and reused passwords in Active Directory within minutes. Backed by Enzoic’s threat intelligence, it provides a detailed report with actionable insights to improve security and reduce risks. It is fast, simple, and free to use.

Read more about Enzoic for Active Directory Lite

Users also considered
Lightspin logo

Web-based cybersecurity and vulnerability management system

learn more
Lightspin is a cloud-based cybersecurity software that helps companies eliminate risks to cloud assets. It targets firms in the travel, financial technology, e-commerce, travel, and gaming industries. Key features include threat intelligence, encryption, risk assessment, and patch management.

Read more about Lightspin

Users also considered
Security Manager by FireMon logo

Manage Policy, Ensure Compliance, Gain Visibility & Control

learn more
FireMon is a network security management solution for hybrid cloud that ?delivers continuous security for multi-cloud enterprise environments through a powerful fusion of vulnerability management, compliance and orchestration.

Read more about Security Manager by FireMon

Users also considered
Red Sentry logo

Expose Exploits, Automatically

learn more
You deserve true peace of mind with continuous pentesting across your company’s cloud and external assets. Red Sentry is an automated, continuous pentesting platform that can help keep you secure 24/7/365. Red Sentry’s attack surface analysis is easy, fast, and surprisingly affordable.

Read more about Red Sentry

Users also considered
Ermetic logo

Holistic security for AWS, Azure and GCP

learn more
Holistic cloud infrastructure security

Read more about Ermetic

Users also considered
Detectify logo

Vulnerability management solution for security teams

learn more
Detectify is a cybersecurity solution designed to help security teams monitor assets and identify threats across web applications. Administrators can add domains or IP addresses, verify asset ownership, and scan profiles to track vulnerabilities including DNS misconfigurations and SQL injections.

Read more about Detectify

Users also considered
Pentera logo

Emulating real-life attacks on all cybersecurity layers

learn more
Pentera is the category leader for Automated Security Validation, allowing organizations to stress-test with ease the integrity of all cybersecurity layers - including ransomware readiness - unfolding true, current security exposures at any moment, at any scale.

Read more about Pentera

Users also considered
Strobes RBVM logo

Scalable and Faster Vulnerability Management

learn more
Strobes VM365 is the frontier that gives you the consolidated view of all the findings from various security sources, empowering your teams to focus on resolving the right set of findings.

Read more about Strobes RBVM

Users also considered
Intruder logo

Vulnerability scanner that prevents security & data breaches

learn more
Intruder is a cloud-based vulnerability scanner which scans digital assets, identifies threats and generates reports. Designed for small to medium businesses, it assists users with automated assessments, bug tracking, patch management, network security, data encryption & hybrid penetration testing.

Read more about Intruder

Users also considered
Fortify logo

Application security, data security, and threat detection.

learn more
Fortify enables businesses of all sizes to protect their applications, data and the rest of their assets from cyber criminals. With strategic outcomes ranging from DevSecOps to secure data analytics, Fortify helps enterprises gain visibility into their applications, detect threats quickly and defend against them effectively with automated incident response capabilities.

Read more about Fortify

Users also considered
Nexus Lifecycle logo

Application security and dependency management solution

learn more
Nexus Lifecycle by Sonatype is an application security and dependency management solution designed to help organizations manage open-source governance and automatically find and fix vulnerabilities across the entire software development lifecycle (SDLC). The platform enables developers to monitor security standards in the development process and access a centralized vulnerabilities database to implement best practices and detect and avoid online attacks or hack attempts.

Read more about Nexus Lifecycle

Users also considered
AWS Shield logo

DDoS and vulnerability management software

learn more
AWS Shield is a DDoS and vulnerability management software that helps businesses detect attacks and automate inline mitigations to minimize application latency and downtime. It allows staff members to detect attacks at lower traffic thresholds to optimize application DDoS resiliency and minimize false-positive notifications.

Read more about AWS Shield

Users also considered
ISS logo

Cloud-based compliance management solution

learn more
INSSIDE Security Suite is a leading cloud-based platform in regulatory compliance solutions, designed by collaborators, allowing companies to manage risks, and facilitating the creation of reports, analysis, and monitoring of compliance processes.

Read more about ISS

Users also considered
Apiiro logo

AppSec management tool to secure cloud software development.

learn more
Apiiro is re-inventing the secure development lifecycle for agile and cloud-native development. It helps businesses transform application security into multidimensional application risk.

Read more about Apiiro

Users also considered
SAINT Security Suite logo

Cybersecurity and vulnerability assessment solution

learn more
SAINT Security Suite is a cybersecurity solution that helps businesses uncover, assess, and mitigate security risks across the entire security infrastructure. The platform provides granular, tailored reports that facilitate informed decision-making.

Read more about SAINT Security Suite

Users also considered
CySight logo

Network Intelligence

learn more
CySight enables organizations to tackle the increasing density, complexity, and expanse of modern physical and cloud networking. Deploying cyber network intelligence, CySight allows network and security teams to substantially accelerate incident response by eliminating blindspots, analyzing network telemetry to discover anomalies, uncover cyber-threats, and quantifying asset usage and performance.

Read more about CySight

Users also considered
Versio.io logo

CMDB, IT Asset Management, Governance, Security

learn more
Versio.io continuously and automatically detects and documents changes in businesses and IT landscapes. Data from third-party applications that companies use to run business processes, monitor the IT landscape and control IT service management can be seamlessly integrated.

Read more about Versio.io

Users also considered
CloudFabrix logo

Data-centric AIOps platform

learn more
CloudFabrix is the inventor of robotic data automation fabric and a leader in the AIOps market. Its flagship AIOps platform is an enterprise-grade platform that is purpose-built to enable IT transformation and to address comprehensive digital IT planning and operations needs. This platform uses the power of advanced analytics, artificial intelligence, machine learning, and automation to build, plan, operate, and optimize hybrid IT assets, applications, and services.

Read more about CloudFabrix

Users also considered
Cobalt logo

(previously CrowdCurity) Pen Testing as a Service

learn more
Cobalt - previously CrowdCurity - is a modern application security platform that supports a complete find-to-fix workflow for all penetration testing and vulnerability assessments throughout an organization

Read more about Cobalt

Users also considered
DeepSurface logo

Risk-based predictive vulnerability management platform

learn more
DeepSurface is a risk-based predictive vulnerability management platform for cybersecurity, delivering critical insights and actionable recommendations to the most vulnerable assets. It uses machine learning to detect vulnerabilities, provide prioritization, and manage critical patching—without causing disruption.

Read more about DeepSurface

Users also considered