External reviews are not included in the AWS star rating for the product.
My main use case for The NodeZero Platform by Horizon3.ai is performing quarterly pen tests on our enterprise and OT networks.
For those quarterly pen tests, we usually run them in the actual web UI interface, selecting what subnets we want to hit for pen tests, what vulnerabilities we want to use, and the whitelists that we have in place. We don't step on any sensitive devices, and then afterwards, we review the findings and remedy the problems.
The best features that The NodeZero Platform by Horizon3.ai offers include its set it and forget it type pen testing. You configure it once and then set it to automatically run during certain days, which is particularly useful, especially when you're a thin IT department.
That set-it-and-forget-it feature helps my team day-to-day by saving a lot of time, as we can set the pen test and then divert our attention to other things while the pen test is ongoing.
The NodeZero Platform by Horizon3.ai has positively impacted my organization by catching vulnerabilities and exploits that we wouldn't otherwise be able to find as easily or as quickly, so I'd say it helps better our cybersecurity posture.
The NodeZero Platform by Horizon3.ai can be improved in some ways, particularly regarding the test scan sometimes.
When the test scan doesn't work as expected, the runner sometimes acts up, and we usually have to run a command on it to fix it or sometimes reboot it. Other than that, the product works great.
I have been using The NodeZero Platform by Horizon3.ai for about a year and a half.
The NodeZero Platform by Horizon3.ai is stable.
The scalability of The NodeZero Platform by Horizon3.ai is pretty good, as you can throw in any number of subnets in the pen test, so I'd say it's very scalable.
We have had no issues with their customer support; it seemed pretty solid.
I would rate the customer support of The NodeZero Platform by Horizon3.ai as an eight.
We did not have a different solution before using The NodeZero Platform by Horizon3.ai.
I wasn't involved in the pricing, setup cost, and licensing, but I've heard that it's pretty simple and easy.
We did not evaluate any other options before choosing The NodeZero Platform by Horizon3.ai.
My impression of the solution's feature that allows security teams to fix and retest vulnerabilities instantly is that it's a very useful feature, and I highly appreciate that feature.
The platform's real attack capabilities have helped in identifying vulnerabilities in my on-prem systems by giving us a real-world example of what we should be prioritizing, which helps during the vulnerability management process, so it's helped us significantly.
We don't necessarily use the endpoint security effectiveness feature; we don't really pay attention to it.
The NodeZero Platform by Horizon3.ai has reduced our pen testing costs, but I don't have a specific number.
My advice to others looking into using The NodeZero Platform by Horizon3.ai is to utilize the one-click vulnerability or rescan feature for NodeZero.
I think they're also the reseller for the product.
I would rate this solution an eight overall.
I have been using The NodeZero Platform by Horizon3.ai for about three years now.
I use The NodeZero Platform by Horizon3.ai to run scheduled penetration tests against my internal and external network resources.
I recently changed my hosting service and web hosting service, and along with that change, I decided to run another penetration test against it to ensure everything was functioning properly. I did find a vulnerability which I was able to quickly address and resolve.
I run this once a month in general, although I will run it whenever something new is introduced into my infrastructure. My monthly run reports provide me with data that I can review, and if I find anything in there that I did not see before, I can address it.
One of my favorite features of The NodeZero Platform by Horizon3.ai is the scheduling feature, which means I do not have to remember to run the penetration tests. Another feature I really appreciate is the remediation tasks that it provides. When it offers remediation guidance, it gives me steps to resolve the issue, which saves me time in determining what I need to do to remediate a certain vulnerability.
The remediation steps provided by The NodeZero Platform by Horizon3.ai are usually quite detailed and helpful. Occasionally, I will get one that does not offer a lot in the way of specific steps because the device on which it found the vulnerability is not a standard device that it recognizes. However, if it is a Windows box or Linux box, it is very good about giving me accurate information.
I believe that The NodeZero Platform by Horizon3.ai has kept me safer in a cybersecurity sense. It is one of a couple of different products I use for that purpose, but because I have cybersecurity insurance, I am required to run pen tests at least once a year. This product allows me the opportunity to run it as many times as I want, which is very beneficial because when new things are introduced into my network, I may not be able to identify these vulnerabilities until I run my next penetration test, which could be up to eleven months later.
Because I stay on top of these things, I am not usually caught off guard with a security issue that suddenly appears. I see them monthly and I do not have to generally perform any sort of emergency response that I would have had to do in the past when I had nothing in place.
I would love it if I could whitelist certain vulnerabilities that I consider not especially significant with The NodeZero Platform by Horizon3.ai. The NodeZero Platform by Horizon3.ai classifies them based on severity, and the severity for a lot of these things, such as threes, ones, and 0.01s, are generally things that I do not care too much about. I want to see them in a report when they appear the first time, but I would love it if I could simply check that one and indicate that I do not want to see a report about this one again because I am not going to take action on it.
I have been working in this field for around thirty years.
The NodeZero Platform by Horizon3.ai is quite stable.
It is kind of difficult for me to comment on The NodeZero Platform by Horizon3.ai's scalability because I have not had to change the scale. It certainly works fine in my rather small environment, but since I have not run it in a very large network environment, I cannot really say much more than that.
Customer support for The NodeZero Platform by Horizon3.ai is awesome. I love the chat person I work with on chat. She is always super responsive and very patient and is able to get to the bottom of my problems, which are fairly infrequent. At the beginning, there were a few little hiccups that I was causing through some misunderstanding on my part, but she was very good.
I previously used Fortelist, an annual service that they provided to run penetration tests on my network. The reason I switched is because I wanted to be able to run penetration tests more frequently, and it simply would not have been cost-effective to do it more often than one time a year. That is the main reason for the change.
Interestingly enough, I have used that quite a bit in the past. The last time I ran my pen test, I for whatever reason was not able to quickly retest as conveniently as before. I am not really sure why that is, and I probably should just talk with Horizon3.ai about that.
Certainly, time has been saved with The NodeZero Platform by Horizon3.ai, and I would imagine money has been saved from the previous way of doing my pen tests, which were a yearly pen test that were quite expensive to do. There has been no change in employment or employees, but as far as the licensing costs, I think that was a big win for me.
I did not have involvement in the evaluation process. I was not the one who evaluated it; I was the one who implemented it.
I believe The NodeZero Platform by Horizon3.ai has helped reduce my pen testing costs, but I cannot tell you exactly how much as I am not the person who paid for those services. However, I believe it was a significant reduction.
I cannot really speak to the pricing as I was not involved in the purchase of it or any of the costs. I was the one that implemented it, and for that, I give it a thumbs up—it was awesome.
I think everything else is fine.
The first time you run a test with The NodeZero Platform by Horizon3.ai, be prepared to triage because you are going to find things you had no idea you had.
It is because I have not had any serious problems for a long time. I would say that the very first time I ran The NodeZero Platform by Horizon3.ai, I did find many things such as open SFTP ports, open FTP ports, and open database ports that I was able to quickly address. I would say quickly, but it took a while because the platform found so many. However, it was super helpful because I did not have a single way to find those things before.
I give this review a rating of nine.
My main use case for The NodeZero Platform by Horizon3.ai includes pen testing and vulnerability management. I use The NodeZero Platform by Horizon3.ai to run weekly external and internal scans to identify configuration issues, software vulnerabilities, or misconfigurations.
The NodeZero Platform by Horizon3.ai has positively impacted my organization by allowing my security team to be more efficient and focus on the most valuable work at the highest criticality. My team's efficiency has improved by identifying what is truly a cybersecurity risk, allowing us to filter out vulnerabilities that are not exploitable and not worth the time and effort to remediate.
The best features The NodeZero Platform by Horizon3.ai offers include addressing security threats introduced by misconfigurations, identity, and vulnerability.
The NodeZero Platform by Horizon3.ai helps me identify security threats from misconfigurations or identity issues by conducting weekly scans of my entire environment to identify issues as an attacker would perceive them, starting from a patient zero.
The NodeZero Platform by Horizon3.ai could be improved by reducing the elapsed time from identifying a zero-day vulnerability from their QA environment to their production environment.
I have been using The NodeZero Platform by Horizon3.ai for four years.
The NodeZero Platform by Horizon3.ai is stable.
The NodeZero Platform by Horizon3.ai is very scalable.
The customer support is excellent.
I did not previously use a different solution.
I had a very good experience with pricing, setup cost, and licensing.
I evaluated other options before choosing The NodeZero Platform by Horizon3.ai, specifically Pantera.
My advice to others looking into using The NodeZero Platform by Horizon3.ai is to do yourself a favor and see what the product will find. The platform's real attack capabilities have helped in identifying vulnerabilities in my on-premises systems by allowing us to find even systems that made it off inventory; there is nowhere to hide from The NodeZero Platform by Horizon3.ai.
The NodeZero Platform by Horizon3.ai's endpoint security effectiveness feature impacts my understanding of potential security threats by allowing me to assess the efficacy of the EDR solution. The NodeZero Platform by Horizon3.ai has improved my remediation times in a meaningful way and has helped reduce my pen testing costs by approximately 25 percent. I would rate this product 8 out of 10.