The Picus Security Validation Platform
Picus SecurityReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
223 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Uncovering Security Gaps in Real Time with Picus
What do you like best about the product?
Picus Security provides an incredibly realistic and comprehensive approach to continuous security validation. I particularly appreciate its ability to simulate real-world attack techniques mapped to the MITRE ATT&CK framework, allowing us to proactively identify and remediate gaps before they can be exploited. The platform’s automation and clear, actionable reporting save significant time for our security team, enabling us to strengthen defenses without disrupting operations.
What do you dislike about the product?
While Picus Security is highly effective, some of the advanced configuration options have a learning curve for first-time users. Additionally, the breadth of data and reports can feel overwhelming without clear prioritization, especially for smaller teams. However, these are outweighed by the platform’s overall value, and regular updates have been steadily improving usability.
What problems is the product solving and how is that benefiting you?
Picus Security helps us continuously validate our security controls against the latest real-world threats, ensuring that our defenses are not just in place but effective. By simulating attack techniques mapped to MITRE ATT&CK, it identifies gaps that traditional tools might miss. This proactive approach reduces our exposure to emerging threats, streamlines our incident response efforts, and gives us clear, actionable remediation guidance — ultimately saving time and strengthening our overall security posture
Detection Validation and Attack Path Validation are game changing each run
What do you like best about the product?
Modular nature and being able to define and run specific campaigns during specific time frames. Has helped overhaul our entire detection rules validation process and QA.
What do you dislike about the product?
MSSP licensing closes off access to data after a specific job runs, causing some extra work to be done to finalize a report.
What problems is the product solving and how is that benefiting you?
Detection Rule validation is the biggest problem being solved. Verifying where in the security landscape detections are working and how they funnel to an analyst for review and remediation is enlightening and helps drive efficient changes to data handling.
About the Picus POC experience
What do you like best about the product?
It measures the effectiveness of security controls by simulating real attack scenarios and reveals weak points. It can instantly see security vulnerabilities and apply immediate improvements to strengthen the system.
What do you dislike about the product?
It's particularly costly for small and medium-sized businesses. The licensing model's more flexible nature is a downside.
What problems is the product solving and how is that benefiting you?
It allowed us to measure the true effectiveness of products like IPS and EDR. Picus ensures that the security posture remains up-to-date through continuous and automated testing.
Cyber security manager
What do you like best about the product?
User friendly interface and quickly adapt new attacks
What do you dislike about the product?
Changing license types so often and it confusing
What problems is the product solving and how is that benefiting you?
It helps to see security gaps easily and helping to close these gaps with mitigations
About Picus
What do you like best about the product?
Testing security controls by continuously simulating real-world attacks with the MITRE ATT&CK framework
What do you dislike about the product?
not distinguishing in detail which security layer (FW, IPS, EDR, etc.) prevented this attack
What problems is the product solving and how is that benefiting you?
Picus enables us to continuously test and improve our security controls with real-world attack simulations, helping us quickly identify gaps and apply fixes to reduce risk.
fast and safe
What do you like best about the product?
real-time reporting and continuous testing
What do you dislike about the product?
Occasional problems with reporting and simulation
What problems is the product solving and how is that benefiting you?
We use it for simulation and security checks for the customers we support.
Good security tool with minor drawbacks
What do you like best about the product?
Helps identify and patch security gaps quickly with easy-to-read reports.
What do you dislike about the product?
Occasionally slow performance during large-scale scans and limited customization options.
What problems is the product solving and how is that benefiting you?
IIt helps identify vulnerabilities before they can be exploited, reducing security risks and improving overall protection
A Smart Tool for Staying Ahead of Cyber Threats
What do you like best about the product?
It's easy to deploy and quick support. Picus Security is how it makes cybersecurity more clear and manageable. It simulates real attacks to show where my defenses are weak. I get specific, easy-to-follow suggestions to fix issues. The updates are fast and keep up with new threats. It helps me feel more confident that my systems are protected. There number of features we are frequently use for red team and purple team exercises.
What do you dislike about the product?
platform could offer more flexibility in customizing reports and dashboards.
What problems is the product solving and how is that benefiting you?
Picus Security helps me solve the problem of proving whether my clients’ security controls are actually working. It lets me run real-world attack simulations and quickly see which defenses are effective and which need improvement. This is especially useful when analyzing environments for different clients, as I can tailor my recommendations based on their exact security posture. The platform also gives clear, actionable insights that I can share directly with clients, making my reports more impactful and easier to understand. As a partner, it helps me deliver faster, smarter, and more value-driven security assessments.
What was the purpose of choosing Picus?
What do you like best about the product?
Picus is a global cybersecurity company that continually innovates, integrating industry-driven advancements into its product portfolio and consistently proving its reliability to customers. We leverage real-world attack scenarios to test your security devices and deliver high-level solutions that help safeguard your systems.
What do you dislike about the product?
There’s nothing I dislike. All solutions offered by Picus cover everything that institutions need.
What problems is the product solving and how is that benefiting you?
It is highly effective at verifying whether our security devices are configured correctly, and at showing how secure we are against threats as well as identifying our attack surface.
Validate your Security Control with Picus
What do you like best about the product?
Seamless Integration with majority of Security controls easy deployment and implementation.
Vast Threat Library and regular updation of new threats.
Ready Templates for quick simulation as per domain / guidelines helps to use it frequently.
Support from OEM and MSSP is good.
Vast Threat Library and regular updation of new threats.
Ready Templates for quick simulation as per domain / guidelines helps to use it frequently.
Support from OEM and MSSP is good.
What do you dislike about the product?
Some time report understanding is challenge because of many parameters.
What problems is the product solving and how is that benefiting you?
In an organization there are too many security controls present, but there is no mechanism to check the efficacy .
Also they never validated what there security control claims for and Picus BAS identifies such gaps and with thier Vendor Specific Mitigation helps to solve this problem and increases the efficacy of the existing security control.
Also they never validated what there security control claims for and Picus BAS identifies such gaps and with thier Vendor Specific Mitigation helps to solve this problem and increases the efficacy of the existing security control.
showing 21 - 30