Top Rated Bright Security Alternatives
It is a solution that consistently introduces new features ahead of other DAST solutions. It has recently announced integrations with two SAST solutions (correlates SAST and DAST) and one API security solution.
It offers the possibility of integration in various phases of the SDLC, including the early stages.
I know that some new features were implemented because Bright listens to its customers' needs. Review collected by and hosted on G2.com.
Some configurations settings are not so easy to find, especially when you are just starting to use Bright. Review collected by and hosted on G2.com.
24 out of 25 Total Reviews for Bright Security
Overall Review Sentiment for Bright Security
Log in to view review sentiment.
Bright Security offers an intuitive and user-friendly interface, making it easy to navigate and manage security tasks efficiently, also Bright has good security checks for scanning web applications is the most important in the DAST.
Bright stands out with its continuous improvement and timely updates, ensuring it stays ahead of competitors in the ever-evolving cybersecurity landscape. Review collected by and hosted on G2.com.
We thought it would be great if Bright had better tools to make a map of the application's API and to scan single-page apps more effectively. Bright should get better at working together with other security tools from different companies and let users customize things the way they like. Review collected by and hosted on G2.com.
Scanning and testing capabilities for frontend of your application are next level
Flexibility in reports generation
Constant meaningful improvements in Ease of Use in last year, for example Incremental app that analyzes entrypoints and triggers scans without having to set up the parameters relevant to each.
Customer Support is very helpful even when I am not from the security field. Support also are crucial for Ease of implementation, and follow up on a weekly basis on progress. Review collected by and hosted on G2.com.
More challenging for products that require frequent reinstall
Could use better integration with API scanning, like entrypoint discovery with target's swagger page
Need to improve flexibility in entrypoint management for a given project (mass edit, mass delete etc)
I would also suggest diversifying the licensing options:
I need to run multiple scans in short amount of time once every 2 months to test all products. Currently the license is for one engine, which means I can use it 24/7 but am limited to one running scan. Having an option for several engines that are time limited with frequency required would be useful, even a pay-as-you-go format would work well for these use cases. Review collected by and hosted on G2.com.
Bright Security is really simple to use. The cloud interface consents to perform high quality scan e to receive detailed reports. The repeater integration complete the features.
The scan engine consents to perform high frequency of use scan without loss of performance.
In Bright security i can appreciate the customer support quality. Review collected by and hosted on G2.com.
The online guide, pheraps is too long, with few examples to perform an ease to implementation in some features (for example the repeater) Review collected by and hosted on G2.com.
Ease of use, Product efficiency, Support team on-ground Review collected by and hosted on G2.com.
As it is a DAST tool, sometimes the tool's necessity gets diluted because engineering team's consider it as a overhead. Review collected by and hosted on G2.com.
Ease of use, easy to understand and very user friendly. Review collected by and hosted on G2.com.
Due to configuration changes or such from the Brightside often times the scan fails with no apparent reason. Review collected by and hosted on G2.com.
Near real-time vulnerability detection as well as automated security testing. Review collected by and hosted on G2.com.
Complexity in setting up the tool where the appsec team is lean it gets difficult to scale. Review collected by and hosted on G2.com.
I have been collaborating with Bright Security since the early days of the company. The vision was always aligned to solve a major AppSec problem - creating a tool that can perform active security to tests in order to detect vulnerabilities as early as possible before shipped to production, decreasing penetration testing scope which has a significant cause, and embeding these capabilities in to high scale security environments.
After a long journey I can now say they achieved all these goals. No other DAST integrates smoother than Bright on high scale development environments. Review collected by and hosted on G2.com.
Some UI Changes are required to make configuration more coherent. Review collected by and hosted on G2.com.
Bright allows teams with little-to-none AppSec training to conduct thourough scans and track issues and fixes in apps lifecycle. Review collected by and hosted on G2.com.
Sometimes error in the scanned app or in bright engine are not always fully understandable, sometimes requiring support assistance. Review collected by and hosted on G2.com.
I find that the best thing is the support, always attentive to our requests and supporting in finding solutions. I would also like to mention the features available, which let us cover efficiently our needs. Review collected by and hosted on G2.com.
I am completely satisfied with Bright Security: no issues. Review collected by and hosted on G2.com.
