# Cymulate Reviews **Vendor:** Cymulate **Category:** [Breach and Attack Simulation (BAS) Software](https://www.g2.com/categories/breach-and-attack-simulation-bas) **Average Rating:** 4.9/5.0 **Total Reviews:** 175 ## About Cymulate Cymulate is a leading on-prem and cloud-based Security Validation and Exposure Management Platform leveraging the industry's most comprehensive and user-friendly Breach and Attack Simulation technology. We empower security teams to prioritize remediation by continuously testing and harden defenses against immediate threats from the attacker's point of view. Cymulate deploys within an hour, integrating with a vast tech alliance of security controls, from EDR, to email gateways, web gateways, SIEM, WAF and more across hybrid, on-premise, cloud and Kubernetes environments. Customers see increased prevention, detection and improvement to overall security posture from optimizing their existing defense investments end-to-end across the MITRE ATT&CK® framework. The platform provides out-of-the-box, expert, and threat intelligence-led risk assessments that are simple to deploy and use for all maturity levels, and are constantly updated. It also provides an open framework to create and automate red and purple teaming by generating penetration scenarios and advanced attack campaigns tailored to their unique environments and security policies. ## Cymulate Pros & Cons **What users like:** - Users find Cymulate to be **intuitive and user-friendly** , facilitating easy deployment and management for all organizations. (73 reviews) - Users appreciate the **effective continuous security validation** provided by Cymulate, enhancing their overall security posture. (41 reviews) - Users appreciate Cymulate's **continuous attack simulations** , transforming insights into actionable fixes for enhanced security posture. (41 reviews) - Users appreciate the **extensive customization options** and **dynamic dashboards** of Cymulate, enhancing assessment and operations. (39 reviews) - Users value the **excellent customer support** from Cymulate, enhancing their overall experience and security assessments. (33 reviews) - Users value the **detailed reporting** of Cymulate, benefiting from customizable options and comprehensive exposure assessments. (30 reviews) - Reporting Features (28 reviews) - Setup Ease (28 reviews) - Dashboard Usability (27 reviews) - Easy Integrations (26 reviews) **What users dislike:** - Users feel that **improvement is needed** in dynamic reporting and integration stability on the Cymulate platform. (12 reviews) - Users find that **integration issues** hinder functionality, highlighting the need for more stable and feasible options. (10 reviews) - Users find the **reporting issues** challenging, citing complexity and time-consuming processes that hinder efficiency. (8 reviews) - Users find the **complex configuration** of advanced features and overwhelming reports to be challenging for beginners. (6 reviews) - Users find the **inefficient alert system** challenging, as notifications lack real-time updates and can be difficult to manage. (6 reviews) - Users experience significant **integration challenges** with Cymulate, affecting cohesion with other security solutions like SIEMs. (6 reviews) - Learning Curve (6 reviews) - Difficulty (5 reviews) - Limited Customization (5 reviews) - Limited Features (5 reviews) ## Cymulate Reviews ### 1. Realistic, Continuous Security Validation Without Disrupting Production **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Enterprise (> 1000 emp.) **Reviewed Date:** April 13, 2026 **What do you like best about Cymulate?** What I value most is its ability to provide realistic, continuous validation of our security posture without disrupting production systems. It’s efficient and intuitive to use, which makes it easy for us to run tests regularly and incorporate them into our ongoing continuous security validation process. **What do you dislike about Cymulate?** Sometimes it’s difficult to get Cymulate working smoothly because of our company’s internal policies and restrictions. **What problems is Cymulate solving and how is that benefiting you?** Cymulate helps us tackle the challenge of understanding our true security posture by continuously validating how well our defenses perform against realistic attack scenarios. Rather than relying only on theoretical risk ratings or vulnerability scores, it highlights what is actually exploitable in our environment, which has significantly improved how we prioritize remediation. It also supports a more proactive security approach by enabling ongoing testing and iterative improvement, instead of depending solely on periodic assessments. **Official Response from Aviva Spotts:** > Thank you for the thoughtful review. We’re glad to hear Cymulate is helping you move toward a more continuous and proactive approach to security validation. Shifting from theoretical risk to what’s actually exploitable is a meaningful step, and it’s great to see that impact reflected in how you prioritize remediation. We also appreciate your calling out the challenges posed by internal policies and restrictions. That’s a reality for many organizations, and your feedback is valuable. Thanks again for sharing your experience and being part of Cymulate. ### 2. Customizable, Scenario-Based Attacks with Clear Mitigation Guidance **Rating:** 4.5/5.0 stars **Reviewed by:** Faik U. | InfoSec Manager, Enterprise (> 1000 emp.) **Reviewed Date:** April 10, 2026 **What do you like best about Cymulate?** Email and endpoint attacks are customizable—scenario-based. There are lots of types of attacks in the attack database. The attack scenarios occur on a fast-paced SaaS platform. Mitigation strategies are also described in great detail and are easy to understand. **What do you dislike about Cymulate?** Not too much - reporting system is a bit awkward. Not so much detailed. Lots of modules that needs to be considered before buying. Good integration options but needs to be bought seperately. **What problems is Cymulate solving and how is that benefiting you?** For the web attack scenarios, mitigation strategies for web application firewalls are clear to understand. It's not necessary to install a separate application server/agent or reverse proxy etc. Just type your website that needs to be attacked and watch until it's complete. It's easy to verify if the attack is completed or not from the dashboards as well. **Official Response from Aviva Spotts:** > Hi Faik, Thanks for your thoughtful review—we’re glad Cymulate is helping you validate security gaps and take action quickly. We appreciate the candid feedback on reporting and platform structure, and will be sure to pass it along to our team. Great to hear the ease of testing without additional deployment is making your workflow simpler. Thanks again for sharing your experience! ### 3. Continuous Security activity on actionable item **Rating:** 4.5/5.0 stars **Reviewed by:** Akshay Z. | Lead Information Security Analyst, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** November 15, 2025 **What do you like best about Cymulate?** We use the Cymulate BAS platform tool on a daily basis to perform multiple assessments, including Web Gateway, Data Exfiltration, WAF, Lateral Movement, Advanced Scenario, Full kill chain assessment with the help of BAS, BAS 2.0 and ASM. With the Cymulate tool, we are able to check for any vulnerabilities and ensure patches are applied according to our observations within our organization. we install the agent on endpoint in our company on different location and perform the activities which is observed any gap and real time scenario observation to monitor and closely the gaps as we observed which is provided Cymulate platform. this is the best observation and assessment we like in Cymulate platform. for the assessment point of view we run the multiple assessment with the all scenarios with creating the template and observed the gap in our organization trying to mitigate ASAP. **What do you dislike about Cymulate?** ASM finding should be proper validation required. Also Advance scenario and its configuration must be properly applicable so it is easily accessible for our users. **What problems is Cymulate solving and how is that benefiting you?** In our company we are use in the Daily basis we run the assessment on multiple scenarios with the observed the vulnerabilities gaps on WAF, Email gateway, Web gateway, Advance scenario, Data exfiltration, Full kill chain with different endpoint in our persistent domain on multiple location observed on vulnerabilities, risk, impact which is gives us better mitigation and with proper allocation. it provides automated breach and attack simulations mapped to MITRE framework ATT&CK. so when any vulnerabilities observed or any gap is observed we are mitigated that as per the observation so we can secure on persistent company environment with security posture. **Official Response from Aviva Spotts:** > Thank you for taking the time to share your experience. We’re glad Cymulate plays a meaningful role in supporting your security validation efforts and day-to-day decision making. We appreciate your constructive feedback and the perspective you’ve provided from hands-on usage. Input like this helps us better understand how teams engage with the platform in complex environments. Thanks for being a Cymulate customer and for sharing your insights on G2. ### 4. Continuous Validation: A True Blessing for Security Leaders **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Oil & Energy | Mid-Market (51-1000 emp.) **Reviewed Date:** April 10, 2026 **What do you like best about Cymulate?** Cymulate helped us fine-tune and optimize our SOC & SIEM, stay ahead of threats, and build resilient operations through its exceptional continuous validation. It also helps us easily detect configuration drifts in ever-changing infrastructure environments, which I find crucial and it is a true blessing for a security manager. With the advanced visibility and clear proof of ROI, it provides the exact justification we need to present to the board. **What do you dislike about Cymulate?** I had no problems or difficulties using the product. **What problems is Cymulate solving and how is that benefiting you?** It eliminates our security blind spots and mostly silent configuration drifts within our rapidly changing it environments. By continuously validating our environment, it directly benefits us by optimizing our existing SOC & SIEM operations and building solid resilience. **Official Response from Aviva Spotts:** > Thank you for taking the time to leave your review—we really appreciate it. It’s great to see Cymulate play a role not just in testing security controls, but also in helping you build more confidence in day-to-day operations and leadership discussions. When security teams can clearly demonstrate impact and stay aligned with a constantly changing environment, that’s where real value shows up. Thanks again for sharing your experience and for being part of Cymulate. ### 5. Powerful Assessment Tool for Security Loopholes **Rating:** 4.5/5.0 stars **Reviewed by:** Shubham A. | Small-Business (50 or fewer emp.) **Reviewed Date:** March 18, 2026 **What do you like best about Cymulate?** I like the vast kinds of assessments that Cymulate offers. It really helps in securing our environment with scenario-related assessments. The tool is great for purple teaming, and the various assessments like web assessment and application firewall assessment are incredibly beneficial. They give me insights into which payloads can bypass firewalls and which are prevented, allowing us to improve security measures. The initial setup is also a very easy process, making it simple to get started with installing the agent and initiating scenarios and assessments. **What do you dislike about Cymulate?** So there's some of the scenarios in the assessments that are not tested. That's the one thing they have to improve. **What problems is Cymulate solving and how is that benefiting you?** I use Cymulate to check and mitigate security loopholes in our web environment, ensuring vulnerabilities are addressed through assessments. **Official Response from Aviva Spotts:** > Thank you for your detailed feedback—we’re glad to hear you’re getting value from the wide range of assessments, especially for purple teaming and testing web and firewall defenses. It’s great to know the setup process was smooth and helped you get up and running quickly. We also appreciate you pointing out gaps in some assessment scenarios. That’s important feedback, and we’re sharing it internally. Thanks again for being part of the Cymulate community. ### 6. Real-Time Security Validation with Automated BAS 2.0 Scenarios **Rating:** 4.5/5.0 stars **Reviewed by:** Akanksha . | Security Executive, Enterprise (> 1000 emp.) **Reviewed Date:** April 07, 2026 **What do you like best about Cymulate?** It is great tool to assess our security tools, gives real-time view, we can automate the assessments, with BAS 2.0 now, we can run more scenarios to validate security of the tools **What do you dislike about Cymulate?** Overall, the product is great, but sometimes support team little slower in providing the resolution **What problems is Cymulate solving and how is that benefiting you?** Getting visibility of all security tools which we have in organization by assessing them, it reduces effort of manual testing. **Official Response from Aviva Spotts:** > Thank you for sharing your feedback—we’re glad to hear the platform is helping you gain real-time visibility, automate assessments, and get more value from the new capabilities. Stay tuned...there is more to come! We also appreciate your calling out your experience with support. That’s important feedback, and we’re sharing it with the right teams to help improve response times. Thanks again for being part of the Cymulate community. ### 7. Validating security with Cymulate **Rating:** 4.5/5.0 stars **Reviewed by:** Tony R. | Head of Cibersecurity Operations, Enterprise (> 1000 emp.) **Reviewed Date:** September 15, 2025 **What do you like best about Cymulate?** The simulations are very realistic and easy to execute, allowing for quick evaluation of different attack vectors. The platform offers clear reports with remediation priorities, facilitating decision-making. Its continuous approach helps improve security posture without disrupting operations. **What do you dislike about Cymulate?** The initial learning curve can be moderate if there is no prior experience with BAS. Some advanced simulations require technical adjustments or additional licenses. The reports in Spanish could be more comprehensive. It should be possible to create dashboards with more representative KPIs. **What problems is Cymulate solving and how is that benefiting you?** Cymulate is a Breach and Attack Simulation (BAS) platform that allows for continuous evaluation of the effectiveness of my organization's security controls. Through automated simulations of real attacks—such as phishing, lateral movements, data exfiltration, and vulnerability exploitation—it provides a clear view of the level of exposure and prioritizes corrective actions. Its approach, based on threat intelligence and continuous testing, helps validate policies, detect gaps, and improve the security posture proactively, without disrupting business operations. ### 8. Cymulate:Comprehensive Security posture testing Reviewed **Rating:** 4.0/5.0 stars **Reviewed by:** Prathamesh K. | Network Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** August 20, 2025 **What do you like best about Cymulate?** I like best about Cymulate is its intuitive and user-friendly interface, which makes it easy to set up and manage continuous security validation across our environment. The platform provides comprehensive attack simulations that help identify vulnerabilities before attackers can exploit them. I also appreciate the actionable insights and remediation guidance that allow our team to prioritize and address critical risks quickly. The real-time reporting and variety of testing modules—from phishing simulations to lateral movement—make Cymulate a valuable tool for strengthening our organization’s security posture. **What do you dislike about Cymulate?** I dislike about Cymulate is that some advanced features can be a bit complex to configure, and initial setup may take more time if you are new to the platform. Sometimes, reports can contain a lot of details, which may feel overwhelming for beginners. **What problems is Cymulate solving and how is that benefiting you?** Cymulate helps solve the problem of finding security weaknesses before attackers do. It runs real-time tests and simulations to check if our systems are safe from cyber threats. This helps us fix issues quickly and avoid security breaches, keeping our company and data more secure. **Official Response from Aviva Spotts:** > Thanks so much for the detailed review! We’re thrilled Cymulate is helping your team stay ahead of threats with real-time simulations, actionable insights, and a user-friendly experience. It’s great to hear the platform is making a real impact on your security posture. We appreciate your note on advanced feature complexity and report depth—we’re always working to improve usability while keeping the power under the hood. Thanks again for your trust! ### 9. Clear, Automated Security Validation with Actionable Remediation Steps **Rating:** 5.0/5.0 stars **Reviewed by:** Adesh R. | Security analyst, Enterprise (> 1000 emp.) **Reviewed Date:** March 25, 2026 **What do you like best about Cymulate?** It provides automated, continuous security validation that clearly shows real-world attack exposure and the steps needed for remediation. **What do you dislike about Cymulate?** Limited customization options and occasional false positives can make it challenging to fine-tune the results. **What problems is Cymulate solving and how is that benefiting you?** It helps identify real-world security gaps through continuous attack simulations, enabling faster remediation and a stronger overall security posture. **Official Response from Aviva Spotts:** > Thank you for your thoughtful review—we’re glad to hear Cymulate is helping you identify real-world exposure and accelerate remediation through continuous validation. We also appreciate you highlighting the challenges around customization and occasional false positives. That’s valuable feedback, and we’re sharing it with the right teams as we are always looking to improve. Thanks again for being part of the Cymulate community and sharing your experience. ### 10. Operationalizing Security Validation at Scale **Rating:** 5.0/5.0 stars **Reviewed by:** Elmar G. | Especialista en Seguridad de Aplicaciones, Enterprise (> 1000 emp.) **Reviewed Date:** September 30, 2025 **What do you like best about Cymulate?** I love how Cymulate turns continuous, safe attack simulations into actionable, MITRE-mapped fixes with one-click retesting. It centralizes App/Email/Web/EDR/WAF/ASM validation, integrates with our stack, and gives exec-ready reporting to prove risk reduction month over month. **What do you dislike about Cymulate?** Exec PDFs are clean but layout/branding and metric granularity (per control/subcontrol trends) feel constrained. **What problems is Cymulate solving and how is that benefiting you?** EDR/Email/Web/WAF changes were breaking controls without realizing it. Benefit: Continuous and secure validation that detects configuration drift and gives us MITRE-fixes. **Official Response from Aviva Spotts:** > Thank you for taking the time to share your feedback. We’re glad to hear Cymulate is helping you maintain continuous validation, identify configuration drift, and clearly demonstrate security posture changes across your environment. We appreciate you calling out your experience with executive reporting as well. We’ve shared your perspective with the appropriate internal teams to ensure it’s visible and considered as part of ongoing discussions. Thanks again for your thoughtful review and for being part of the Cymulate community. ### 11. Automated Purple Teaming simplified with Cymulate **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 14, 2025 **What do you like best about Cymulate?** 1) Variety of comprehensive security assessments and detailed reports that provide mitigation guidance across multiple security vectors. 2) excellent customer support 3) Easy deployment **What do you dislike about Cymulate?** 1) The dashboard customization and reporting system could be improved, as the overall score is calculated as an average of all assessments conducted since day one, potentially limiting more granular insights. 2) The customer support team should adopt a more proactive approach, as reported issues often take over a month to be resolved. **What problems is Cymulate solving and how is that benefiting you?** Cymulate enables organizations to detect vulnerabilities across their security infrastructure, ensuring that misconfigurations and weaknesses are addressed before attackers exploit them Its ability to simulate immediate threats, including zero-day attack scenarios, enhances security readiness by addressing emerging cyber risks proactively. Organizations can prioritize remediation efforts based on actual exposure risks, ensuring that security resources are allocated effectively **Official Response from Aviva Spotts:** > Thanks for the thoughtful review! We're glad Cymulate is helping you easily discover misconfigurations and security gaps and that our platform supports your detection engineering and evaluation efforts. We're sorry you experienced a delay with support. We strive to resolve tickets quickly and will make sure your feedback is shared with the team. Thanks again for your trust in Cymulate! ### 12. A new perspective of your security platform **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** September 02, 2025 **What do you like best about Cymulate?** Gives you a real insight of which attacks could breach your security platforms. It has a wide range of attack vectors and every flavor of attacks that can be tested. **What do you dislike about Cymulate?** If you want to get the most our of your products, you might have to contact your software providers so that you can stop some of the breach simulations that get through. Configuration fixes will not be tailor-made to the platform being tested. **What problems is Cymulate solving and how is that benefiting you?** It will assess from a third party perspective the real security posture of your security solution and how it will behave against a wide variety of attacks. **Official Response from Aviva Spotts:** > Thanks for the thoughtful review! We’re glad Cymulate is helping you gain a new perspective on your security posture with broad attack coverage and actionable insights. Your point on needing collaboration with software providers is well taken—security validation often sparks important conversations, and we’re here to help guide that process. Thanks for sharing your experience! ### 13. Cymulate is a Breach and Attack simulation partner which keeps us honest with security posture **Rating:** 5.0/5.0 stars **Reviewed by:** Ankit K. | Security Consultant, Mid-Market (51-1000 emp.) **Reviewed Date:** September 06, 2025 **What do you like best about Cymulate?** Cymulate is a strategic enabler of control and posture validation which helps highlight the exposures effectively. **What do you dislike about Cymulate?** Agent dependency should be removed for certain use cases. **What problems is Cymulate solving and how is that benefiting you?** Cymulate helped as strategies our security investments by validating the ROI of each investments. **Official Response from Aviva Spotts:** > Thank you for recognizing how Cymulate supports continuous posture validation and helps guide security investments. We’re thrilled it provides the insight you need to assess ROI and keep defenses strong. We also appreciate your feedback on agent dependency—it’s valuable input as we continue improving deployment flexibility. ### 14. Satisfied with cymulate **Rating:** 4.5/5.0 stars **Reviewed by:** Michael R. | Ingeniero Threat hunting, Enterprise (> 1000 emp.) **Reviewed Date:** September 17, 2025 **What do you like best about Cymulate?** The update of active campaigns, which help us mitigate these potential security breaches. **What do you dislike about Cymulate?** I think there are more campaigns needed focused on the financial sector like grandoreiro. **What problems is Cymulate solving and how is that benefiting you?** feed our security technologies with IoC. **Official Response from Aviva Spotts:** > Thank you for the review! We’re happy to hear Cymulate is supporting your team’s threat readiness and contributing to stronger security operations. Your input on industry-specific content is valuable, and we appreciate you taking the time to share it. We will pass along the request. ### 15. Very useful and easy to use **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** September 16, 2025 **What do you like best about Cymulate?** The interface is intuitive and easy to navigate, which allows you to start working quickly. Additionally, the automatic validations save a lot of time and provide clear visibility on security exposures. **What do you dislike about Cymulate?** In general, the experience is very good. Maybe they could improve the loading times a bit for some complex analyses, but it doesn't affect the overall performance. **What problems is Cymulate solving and how is that benefiting you?** One of the main problems was the lack of continuous visibility over our actual vulnerabilities. Cymulate allows us to simulate attacks safely and quickly detect gaps in our security controls. Thanks to this, we can prioritize actions and improve the overall posture without waiting for an external audit. **Official Response from Aviva Spotts:** > Thanks for sharing your experience! It’s great to hear Cymulate is helping you keep continuous visibility and quickly spot real security gaps. That’s exactly what we aim for. We also appreciate your note about load times on complex analyses. We’ve passed that along to our product team as we continue to optimize performance. ### 16. An excellent service **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** September 16, 2025 **What do you like best about Cymulate?** Mainly how user-friendly it is. Cymulate is valuable because it offers a continuous, automated, and realistic way to validate the organization's security. The platform allows simulating attacks based on MITRE ATT&CK to check if the defenses really work, and not just if they meet theoretical standards. Unlike simple vulnerability scans, it helps us prioritize exploitable risks, those that truly represent a threat in the business context. **What do you dislike about Cymulate?** For the moment, nothing bad to say or that I don't like. **What problems is Cymulate solving and how is that benefiting you?** Initially, we are obtaining data from malicious sites or domains to feed back into our endpoints. **Official Response from Aviva Spotts:** > Thanks so much for the great feedback. We’re glad to hear Cymulate is helping you move from theory to real, evidence-based validation. It’s great to know the platform makes it easier to see which risks actually matter and strengthen defenses where they count. We also love that you’re using the data to improve protection across endpoints — that’s exactly how we want Cymulate to fit into your day-to-day security work. ### 17. Automated Security Validation **Rating:** 5.0/5.0 stars **Reviewed by:** Ray C. | Director of Threat Research, Enterprise (> 1000 emp.) **Reviewed Date:** June 03, 2025 **What do you like best about Cymulate?** Three things: - It was very easy to integrate into our ongoing testing framework - It requires very little ongoing maintenance. - It is constantly kept up-to-date with the latest threats **What do you dislike about Cymulate?** There are some areas that we wish Cymulate provided better coverage, especially in testing whether our network defenses can intercept and block command and control traffic, and testing our AI infrastructure. **What problems is Cymulate solving and how is that benefiting you?** It helps provide us timely insights into any protection gaps we have against the latest threats. **Official Response from Aviva Spotts:** > Thanks for the great feedback. We’re glad Cymulate was easy to integrate, had low maintenance, and kept up with the latest threats. It’s great to hear it’s helping you spot protection gaps quickly. We’ve also passed your comments about C2 traffic and AI infrastructure testing to our product team. ### 18. Gaining confidence in posture with Cymulate **Rating:** 5.0/5.0 stars **Reviewed by:** Anurag D. | Information Security Analyst, Mid-Market (51-1000 emp.) **Reviewed Date:** September 04, 2025 **What do you like best about Cymulate?** Security validation of multiple controls, prioritisation of findings in context, feasibility to run assessments anytime **What do you dislike about Cymulate?** Need of flexible and customised reporting **What problems is Cymulate solving and how is that benefiting you?** Detection validation , cloud security posture validation are primary use case **Official Response from Aviva Spotts:** > Thanks for taking the time to provide feedback! It’s great to hear Cymulate is helping you validate controls and prioritize findings in context—giving you greater confidence in your security posture. We appreciate the note on flexible reporting and will keep pushing to make it easier to tailor insights to your needs. ### 19. Cymulate changed our approach from assumption to Evidence backed **Rating:** 5.0/5.0 stars **Reviewed by:** Abu H. | Security consultant, Mid-Market (51-1000 emp.) **Reviewed Date:** September 06, 2025 **What do you like best about Cymulate?** Cymulate validates your every control easily and effectively, be it , EDR, AV, DLP, Web, Firewall and many more **What do you dislike about Cymulate?** Advanced customisation needs expertise in red teaming **What problems is Cymulate solving and how is that benefiting you?** On top of validating the security posture cymulate helped our penetration tested save lot of time due to its automated assessment feature **Official Response from Aviva Spotts:** > Thanks for sharing your experience! We’re glad Cymulate helps you validate every control—from EDR and AV to DLP, web, and firewalls—and move from assumptions to evidence-backed security. We appreciate your note on advanced customization. Our team is always working to make deeper red–team–level options more approachable while maintaining the power and flexibility advanced users need. It’s great to hear the automated assessments are saving your penetration testers valuable time—that’s exactly what we aim for. ### 20. Discovering Security Weaknesses with Cymulate's Features **Rating:** 5.0/5.0 stars **Reviewed by:** Sagar V. | Security Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** July 17, 2025 **What do you like best about Cymulate?** Ease of use and implementation. Great CS support **What do you dislike about Cymulate?** Support tickets takes time for resolution **What problems is Cymulate solving and how is that benefiting you?** Identifying misconfigurations and gaps in security controls, product evaluation and detection engineering **Official Response from Aviva Spotts:** > Thank you for your thoughtful review. We’re glad Cymulate’s ease of use and straightforward implementation are helping you quickly identify misconfigurations, evaluate products, and strengthen detection engineering—and we’re especially pleased our customer success team has been valuable to you. We apologize for the delay you experienced and want to assure you that we always strive to respond quickly and professionally. Stay secure! ### 21. Cymulate is one of the best security validation and exposure management platforms. **Rating:** 4.5/5.0 stars **Reviewed by:** Yan (Rockey) W. | Senior Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** November 05, 2024 **What do you like best about Cymulate?** Overall, Cymulate products are very easy to implement, integrate and use. It have various of different features which cover the majority of the common requirements for security validation and exposure management purposes. It has the nice and user friendly GUI for the management and reporting purposes **What do you dislike about Cymulate?** The validation processes of the playbooks need some improvements. The validations on per scenario basis can cause the assessment processes extremely long. Also, the vaildation processes should focus on the end results of the assessments rather than whether the security tools picking up the assessments. In the modern environments with onion defenses, some of the attackes might have been mitigated/prevented on the attack paths before the security tools noticed and this should not be treated as assessment failures. **What problems is Cymulate solving and how is that benefiting you?** With Cymulate, we can cross validate the vulnerabilities associated with the systems and applications and mitigate them with the proper priorities. **Official Response from Aviva Spotts:** > Thank you for your detailed feedback on Cymulate's Security Validation and Exposure Management Platform. We're glad you find our products easy to implement and user-friendly. Your insights on validation processes and the focus on end results are greatly appreciated and help guide our improvements. If you have additional suggestions or need assistance, our support team is always here to help. Thank you for choosing Cymulate to support your security and exposure management needs. ### 22. Cymulate Bolsters Cybersecurity with User-Friendly Interface and Safer Approach **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** August 06, 2025 **What do you like best about Cymulate?** The platform's user-friendly interface, automation and safer simulation logic and mechanism helps us in taking pro-active approach in strengthening the cybersecurity posture of our organization. **What do you dislike about Cymulate?** The CONs of platform are : 1. Application (BAS legacy) is heavy and crashes sometimes. 2.CART module is debatable. 3.Fine-tuning and bug-fixing on time is required. **What problems is Cymulate solving and how is that benefiting you?** The platform's advance scenarios help us better understand our resilience beyond conventional MITRE ATT&CKs. Earlier, Traditional VAPT and Sandboxing took ages to complete, But Cymulate circumnavigates us through these challenges. **Official Response from Aviva Spotts:** > Thank you for sharing thoughtful feedback and highlighting how Cymulate’s user-friendly interface, automation, and safer simulations help strengthen your organization’s cybersecurity posture. We’re thrilled to know the platform supports your proactive approach and provides deeper visibility into real attack paths. We also appreciate your candid notes on areas for improvement. We recognize the BAS legacy application can feel heavy at times, and we’re actively transitioning to our next-generation Exposure Validation platform, which is designed to be faster, lighter, and more reliable. Your comments on the CART module are equally valuable—our product team is already incorporating customer input to refine CART’s functionality and make it more intuitive and impactful. Timely bug-fixing and fine-tuning remain top priorities as we continue to roll out updates. Our mission is to make cybersecurity validation effortless and impactful. Our Customer Success and Support teams are committed to enterprise-grade service, quick resolutions, and proactive guidance to ensure you get maximum value as these enhancements go live. Thank you again for helping us improve—your feedback directly shapes the innovations we deliver. ### 23. Excellent experience, and above all, they are constantly updating features. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** September 17, 2025 **What do you like best about Cymulate?** What I like the most is being able to perform tests with cutting-edge technology and scenarios. **What do you dislike about Cymulate?** What I like the least is that in many scenarios it is not specifically known what tools are being used or the methodology. **What problems is Cymulate solving and how is that benefiting you?** In the company, exercises of this caliber had never been conducted, and it helps us to enhance our security posture. **Official Response from Aviva Spotts:** > Thank you for the great review! We’re glad Cymulate’s cutting-edge tests and continuous updates are bringing value and helping strengthen your security posture. We appreciate your feedback about visibility into tools and methodologies and will share it with our product team. ### 24. cymulate gives confidence in security validation **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** August 05, 2025 **What do you like best about Cymulate?** Cymulate helps in getting ROI in security investments with validation strategy , mitigation approach , constant support and smooth operating platform **What do you dislike about Cymulate?** Integration issue needs stabilization throughout the platform **What problems is Cymulate solving and how is that benefiting you?** Security control validation with automated purple teaming capabilities helps us achieve our goal **Official Response from Aviva Spotts:** > Thanks for the great review! We’re proud that Cymulate is giving you confidence through real, continuous security validation—that’s exactly where we strive to lead. It’s great to hear the platform, mitigation insights, and support are delivering ROI. We appreciate the note on integration stability and are working to keep improving across the board! ### 25. Exceptional in terms of making best use of BAS **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** August 05, 2025 **What do you like best about Cymulate?** Automated assessments and reporting, threat library with extensive coverage, easy to manage and administration. **What do you dislike about Cymulate?** not that i can think of any part which i dislike **What problems is Cymulate solving and how is that benefiting you?** Managing all exposure from Single platform along with validation of them is our main use case **Official Response from Aviva Spotts:** > Thanks so much for your kind words! We're glad Cymulate is helping you simplify exposure management while making the most of your BAS strategy. It's great to hear that automation, ease of use, and coverage are all supporting your goals. We're here if you need anything! ### 26. Good **Rating:** 5.0/5.0 stars **Reviewed by:** Mohit N. | Cloud security lead, Enterprise (> 1000 emp.) **Reviewed Date:** June 13, 2025 **What do you like best about Cymulate?** Waf testing is good it is helping us validate our rules. **What do you dislike about Cymulate?** Cloud security part can be done better . **What problems is Cymulate solving and how is that benefiting you?** WAF validation is helping sure our application better. **Official Response from Aviva Spotts:** > Thanks for the feedback! We're glad to hear Cymulate is helping you validate your WAF rules and strengthen your application security. We’ll pass your input on cloud security to the right team—it’s a growing focus for us. Appreciate you being part of the Cymulate community! ### 27. My Take: Cymulate Helps Us Think Like Attackers, Act Like Defenders **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** September 06, 2025 **What do you like best about Cymulate?** Contextual Security validation, Dynamic reporting , time saving opeartion. **What do you dislike about Cymulate?** No shortcomings have been encountered yet **What problems is Cymulate solving and how is that benefiting you?** Detection Engineering along with Security controls validation **Official Response from Aviva Spotts:** > Thank you for sharing your experience! We’re delighted that Cymulate’s contextual validation, dynamic reporting, and operational efficiency are helping your team stay proactive. It’s great to hear the platform supports your detection engineering and control validation efforts, and we appreciate your feedback. ### 28. scoping, validating and prioritizing the threats with Cymulate **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** July 31, 2025 **What do you like best about Cymulate?** Single platform for both Red and Blue teamers, long list and subtle scenarios to validate against , updated library of threats. **What do you dislike about Cymulate?** Integration with Threat Intelligence platform is needed **What problems is Cymulate solving and how is that benefiting you?** Threat validation and control validation was our primary use case **Official Response from Aviva Spotts:** > Thank you for the great review! We’re glad Cymulate helps you scope, validate, and prioritize threats across Red and Blue team efforts. It’s great to hear our threat library and scenarios are hitting the mark. We’ve noted your feedback on threat intelligence integration and appreciate the insight! ### 29. Cymulate journey started from assumptions to actual assurance **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** July 31, 2025 **What do you like best about Cymulate?** Integration with multiple security solution- all in our stack, Insightful Dashboards, custom reporting's, best customer service **What do you dislike about Cymulate?** There is nothing that i believe needs dislike **What problems is Cymulate solving and how is that benefiting you?** Security control validation across all infrastructure with threat aspects **Official Response from Aviva Spotts:** > Thanks for the thoughtful feedback! We’re excited to hear that Cymulate helped move you from assumptions to assurance. It’s great to know that the integrations, dashboards, and reporting are delivering value and that our customer service stands out. We're proud to support your security control validation journey! ### 30. Cymulate is impactful and creating differences **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Automotive | Mid-Market (51-1000 emp.) **Reviewed Date:** July 04, 2025 **What do you like best about Cymulate?** Multiples sue cases to validate, subtle platform with catchy reports and Remedition guidance, updated libraries of threat and simulations. **What do you dislike about Cymulate?** Nothing so far, all look good without any hicupps **What problems is Cymulate solving and how is that benefiting you?** Threat validation against latest APTs were our focus to enhance our security posture **Official Response from Aviva Spotts:** > Thanks for the great review! We're glad Cymulate’s platform, use cases, and remediation guidance are making a difference and that threat validation against the latest APTs is helping boost your security posture. We appreciate the feedback! ### 31. Cymulate helps us validate security posture daily, not just during annual audits. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** September 06, 2025 **What do you like best about Cymulate?** Ability to continuously run assessments without any overhead, Immediate threat validation, automated assessments and reporting **What do you dislike about Cymulate?** Email notifications segregation can be made better **What problems is Cymulate solving and how is that benefiting you?** Cymulate not only helps with validation of threats across different techniques but also helps us with reporting including executive level summaries and detailed mitigation guidance. **Official Response from Aviva Spotts:** > Thank you for sharing how daily validation, instant threat checks, and detailed reporting fit into your security routine—that’s exactly what we aim for. We’ve also passed along your feedback on email notifications to our product team so they can keep improving the experience. ### 32. Amazing Session by Ranjeet **Rating:** 5.0/5.0 stars **Reviewed by:** Vijay F. | Red Team, Enterprise (> 1000 emp.) **Reviewed Date:** June 13, 2025 **What do you like best about Cymulate?** The session was highly informative and interactive. Great to see new improvements and attack vector. Would highly recommend others to use cymulate in their organization. **What do you dislike about Cymulate?** Everything thing was good. Like the way it was well organized. **What problems is Cymulate solving and how is that benefiting you?** Still new to cymulate and learning how tools work and it performs different attacks **Official Response from Aviva Spotts:** > Thank you for the amazing feedback! We're so glad you enjoyed the local customer session and found it informative and engaging—Ranjeet will be thrilled to hear it! As you continue exploring Cymulate, don’t hesitate to reach out to your CSM or support team for any guidance. We're excited to be part of your security journey! ### 33. Cymulate powering Red team and providing insights to Blue team **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** September 06, 2025 **What do you like best about Cymulate?** Purple team module of Cymulate is extraordinary in its capability to validation detection and prevention **What do you dislike about Cymulate?** Purple teaming can be made more user friendly **What problems is Cymulate solving and how is that benefiting you?** Cloud security validation , lateral movement validation and SIEM detection validation are our primary focus where Cymulate proved its worth **Official Response from Aviva Spotts:** > Thanks for sharing your experience! We’re excited to hear how the Purple Team module is helping you validate detection and prevention while supporting both Red and Blue teams—especially in cloud security, lateral movement, and SIEM detection. We appreciate the note on usability and are working to make Purple Teaming even easier to use. Your feedback helps us keep improving. ### 34. Winning fight against threats with Cymulate **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Automotive | Mid-Market (51-1000 emp.) **Reviewed Date:** July 07, 2025 **What do you like best about Cymulate?** Automated assessment and mitigations, 24*7 support , responsive customer service manager, extended and detailed knowledge base. **What do you dislike about Cymulate?** Integration with DNIF SIEM is not available at this moment **What problems is Cymulate solving and how is that benefiting you?** Threat validation, Detection validation were our focus area ### 35. cymulate drives from blind spots to clear visibility **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Transportation/Trucking/Railroad | Mid-Market (51-1000 emp.) **Reviewed Date:** September 03, 2025 **What do you like best about Cymulate?** Mapping of threats and assessments against relevant mitre framework, updated library of attack, user friendly dashboards, easy to integrate **What do you dislike about Cymulate?** Reporting can be better in terms of presenting to board **What problems is Cymulate solving and how is that benefiting you?** Threat and control validation along with exposures from outside the organisation **Official Response from Aviva Spotts:** > We appreciate your thoughtful review! It’s great to hear that Cymulate is helping you connect the dots between threat exposure and actionable insights through intuitive dashboards and MITRE-aligned assessments. Thanks as well for your feedback on board-level reporting—it’s on our radar as we continue refining the platform to better support executive visibility. Thanks again. ### 36. Cymulate is excellent in value delivery for continuous validation **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Mid-Market (51-1000 emp.) **Reviewed Date:** July 15, 2025 **What do you like best about Cymulate?** ready to use threat libraries, dedicated team of support , easy to deploy and integrate **What do you dislike about Cymulate?** Integration with Firewalls are something which i would recommend **What problems is Cymulate solving and how is that benefiting you?** continuous security validation **Official Response from Aviva Spotts:** > Thank you for the thoughtful review! We're glad Cymulate is delivering real value for your continuous security validation, and that the threat libraries, ease of integration, and support team are contributing to that success. Your feedback on firewall integration is appreciated and will be shared with our product team! ### 37. Good Experience A The **Rating:** 4.0/5.0 stars **Reviewed by:** Sarita P. | Associate Vice President, Enterprise (> 1000 emp.) **Reviewed Date:** June 13, 2025 **What do you like best about Cymulate?** The platform has provided a good experience and knowledge for the recent threat actor identification and mitigation measures required . **What do you dislike about Cymulate?** Reporting is time consuming which need to be bit faster **What problems is Cymulate solving and how is that benefiting you?** Finding the new issue and resolution on the same **Official Response from Aviva Spotts:** > Thanks for the thoughtful review! We're glad Cymulate is helping you identify and respond to threats effectively. We’ll be sure to share your feedback on reporting speed with the right team. Great to have you with us on this journey! ### 38. Overall, highly recommend Cymulate to any organization. a top-notch BAS solution **Rating:** 5.0/5.0 stars **Reviewed by:** Itzik M. | VP Global IT & Information Security, Enterprise (> 1000 emp.) **Reviewed Date:** October 28, 2024 **What do you like best about Cymulate?** Ease of Deployment: Cymulate can be deployed within an hour, making it accessible and quick to integrate into existing security frameworks. Comprehensive Coverage: The platform provides end-to-end visualization across the MITRE ATT&CK framework, helping organizations identify and address potential threats and vulnerabilities effectively. Continuous Testing: It allows for continuous assessment and improvement of cybersecurity defenses, ensuring that security measures are always up-to-date against emerging threats. User-Friendly Interface: Customers appreciate the intuitive and easy-to-navigate interface, which simplifies the process of running simulations and understanding results. Excellent Support: The support team is highly responsive and knowledgeable, providing exceptional assistance whenever needed. Ease of Implementation: super straightforward fast implementation and easy The platform in use weekly and supports the automation of red and purple teaming exercises, allowing security teams to create tailored penetration scenarios and advanced attack campaigns/ Overall, Cymulate’s platform effectively enhances an organization’s cybersecurity posture through continuous validation and exposure management. **What do you dislike about Cymulate?** there are a few areas where users have noted room for improvement: Test Execution Delays: Some users have mentioned that there can be delays in carrying out certain tests, which can impact the speed of obtaining results but recently it has been much faster Integration Challenges: There have been reports of instabilities and difficulties when integrating Cymulate with other security solutions like SIEMs Despite these points, many users still find Cymulate a valuable tool for enhancing their cybersecurity posture. **What problems is Cymulate solving and how is that benefiting you?** 1. Identifying Security Gaps: Cymulate helps organizations ppinpointvulnerabilities and weaknesses in their security infrastructure. This allows for targeted remediation, improving overall security posture¹ 2. Continuous Testing and Validation: The platform enables continuous assessment of security controls against the latest threats, ensuring defenses are always up-to-date and effective 3. Comprehensive Coverage: It offers end-to-end visibility across cloud, on-premise, and hybrid environments, helping organizations manage and mitigate risks across their entire IT landscape 4. Prioritizing Mitigation Efforts: By providing actionable insights and prioritizing remediation activities based on risk, Cymulate helps organizations focus their efforts on the most critical issues 5. Improving Incident Response: The platform's simulations and attack scenarios enhance the preparedness of security teams, improving their ability to respond to real-world incidents 6. Enhancing Security Investments: Cymulate optimizes existing security investments by identifying which controls are effective and which need adjustments, maximizing the return on security expenditures Overall, Cymulate's platform significantly enhances an organization's ability to proactively manage and improve its cybersecurity defenses, leading to a more resilient and secure environment. **Official Response from Aviva Spotts:** > Thank you for your thoughtful and positive review of Cymulate's Security Validation and Exposure Management Platform! We’re thrilled to hear that you value its ease of deployment, comprehensive coverage, continuous testing capabilities, user-friendly interface, and excellent support. We also appreciate your constructive feedback regarding test execution delays and integration challenges. Your insights are invaluable, and we are committed to continuously improving our platform to deliver a seamless and efficient experience. It’s fantastic to know that Cymulate is helping you identify security gaps, conduct continuous testing, prioritize mitigation efforts, enhance incident response, and optimize your security investments. Your success is our top priority, and we’re here to support you every step of the way. Thank you for recommending Cymulate! ### 39. Cymulate helping us mature our security procedure **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** September 04, 2025 **What do you like best about Cymulate?** Validation of threats made easy, easy to integrate and simulate, production safe simulations **What do you dislike about Cymulate?** expansion of use of AI capabilities is recommended **What problems is Cymulate solving and how is that benefiting you?** Managing exposures across different realms of Cyber security from a single platform. **Official Response from Aviva Spotts:** > Thanks for the great review! We're excited to hear that Cymulate supports your journey toward stronger, more mature security practices—with easy threat validation, safe simulations, and streamlined integration. And you're absolutely right: there’s more to come on the AI front—stay tuned! ### 40. Cymulate has helped us with exceptionally well curated insights of our security posture **Rating:** 5.0/5.0 stars **Reviewed by:** Rakesh Kr P. | Assistant Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** May 20, 2025 **What do you like best about Cymulate?** Amount of validation scenarios, regular update and multiple use cases depending upon our increased demand **What do you dislike about Cymulate?** There is nothing specific that i dislike about Cymulate **What problems is Cymulate solving and how is that benefiting you?** Validating SOC efficacy , ROI of our security investment and being on the top of all new threats with the help of Cymulate **Official Response from Aviva Spotts:** > Thank you for the kind words! We're so glad Cymulate is helping you gain clear insights into your security posture. Great to hear the wide range of scenarios and regular updates are meeting your needs! ### 41. Good **Rating:** 5.0/5.0 stars **Reviewed by:** Jayati S. | Senior offensive security analyst, Enterprise (> 1000 emp.) **Reviewed Date:** June 13, 2025 **What do you like best about Cymulate?** Ask ai was good but need a little bit more **What do you dislike about Cymulate?** Dislike would be that for exporting the report i need to select 25 at one time that’s it **What problems is Cymulate solving and how is that benefiting you?** Already replied in dislike section **Official Response from Aviva Spotts:** > Thanks for the feedback! We're glad you're exploring Ask AI. More enhancements are on the way, and your input is key. For report exporting or any other questions, feel free to contact your CSM or our support team—we’re here to help. We appreciate you being part of the Cymulate community! ### 42. Granular and contextual security validation by Cymulate **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** May 27, 2025 **What do you like best about Cymulate?** Basic to advance threat validation, integrations ecosystem , regular update , mitigation guidance **What do you dislike about Cymulate?** I don't have anything to express dislike about Cymulate as of today. **What problems is Cymulate solving and how is that benefiting you?** Validation of internal security policies and controls against real static and dynamic threats, EDR detection validation. **Official Response from Aviva Spotts:** > Thank you for the fantastic review! We're thrilled Cymulate is delivering value through both basic and advanced threat validation, a strong integration ecosystem, and actionable mitigation guidance. It's great to hear we're helping you validate internal policies and EDR effectiveness against both static and dynamic threats—exactly what Cymulate is built for. We truly appreciate your support. ### 43. Good experience, simple to use. **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Construction | Mid-Market (51-1000 emp.) **Reviewed Date:** March 26, 2025 **What do you like best about Cymulate?** It can be quite Granular so we can go into depth with our prevention methods for different types of attacks. Our csm Ian Waters is also quite helpful and friendly, assisting with any issues we may have. **What do you dislike about Cymulate?** Some attacks such as in Data Exfil are missing details and remediation/prevention techniques. So we are unable to identify where we can prevent the same attack. **What problems is Cymulate solving and how is that benefiting you?** Helps us identify gaps in our security. **Official Response from Aviva Spotts:** > Thank you for the great feedback! We're glad Cymulate’s depth and ease of use are helping you strengthen your prevention methods—and we’ll definitely pass your kind words along to Ian! Also, thanks for the heads-up regarding the missing details in the Data Exfiltration scenarios. We've shared this with our product team for review. Feedback like yours is key to helping us improve. Appreciate you taking the time to share your experience! ### 44. BAS is important pillar in cyber security maturity **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** August 06, 2025 **What do you like best about Cymulate?** Cymulate helps validate against threats and highlights risk associated with each of the threats in efficient manner either on dashboard or reports **What do you dislike about Cymulate?** Integration with Threat Intel platform is needed **What problems is Cymulate solving and how is that benefiting you?** Breach and attack simulation across different security stacks **Official Response from Aviva Spotts:** > Thanks for the great review! We're glad Cymulate is helping you efficiently validate threats and surface risk insights through both dashboards and reports. It's great to hear the platform is supporting your efforts across different parts of the security stack. We appreciate the suggestion on threat intel integration—feedback like this helps us keep improving. ### 45. The overall experience using the product is good and it helped identify gaps in our security control **Rating:** 5.0/5.0 stars **Reviewed by:** Shriganesh K. | Assistant Vice President - Risk Management, Enterprise (> 1000 emp.) **Reviewed Date:** March 05, 2025 **What do you like best about Cymulate?** Ease of use and implementation, Continuous customer success support **What do you dislike about Cymulate?** low severity payloads in WAF can be streamlined **What problems is Cymulate solving and how is that benefiting you?** Nice Product, helped us identify many misconfigurations on security controls which we were not aware of as part of assessments **Official Response from Aviva Spotts:** > Thank you for your feedback! We're glad Cymulate has helped you identify security gaps and misconfigurations. Ease of use and strong customer support are our key priorities, so we’re happy to hear that’s been your experience. We appreciate your input on WAF low-severity payloads and will pass it along to the appropriate teams for review. If you have any further suggestions, we’d love to hear them! Thanks for choosing Cymulate! ### 46. Cymulate: A Valuable and User-Friendly Tool **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** November 29, 2024 **What do you like best about Cymulate?** Ease of Use. The platform is intuitive and user-friendly, making it accessible for organizations of varying sizes and levels of cybersecurity expertise. Cymulate KB is also very detailed so any one can follow the guided steps. **What do you dislike about Cymulate?** Integration with few technology is still not there. If Cymulate can accomodate those than it will be very good. Solution is very technical and demands high involvement and engagement. Teams without adequate staffing may find it hard to keep the platform optimized. **What problems is Cymulate solving and how is that benefiting you?** Cymulate is helping us to identify weather our security solutions are implemented and getting use with their highest capacity. With use of cymulate we are accessing our investments are getting used properly or is there is any overlap in capabilities of security control. **Official Response from Aviva Spotts:** > Thank you for your thoughtful review! We’re glad to hear that you find Cymulate intuitive, user-friendly, and supported by detailed knowledge base guidance, making it accessible for teams of all sizes and expertise levels. It’s great to know that Cymulate is helping you assess the effectiveness of your security solutions and optimize your investments. We also appreciate your feedback on integrations and the platform's technical demands. Your insights will be shared with the appropriate teams as we continue improving our platform to better meet user needs. Thank you for sharing your experience with Cymulate! ### 47. Cymulate brings value in validation strategy **Rating:** 5.0/5.0 stars **Reviewed by:** Mohammed A. | Cyber Security Administrator, Mid-Market (51-1000 emp.) **Reviewed Date:** February 19, 2025 **What do you like best about Cymulate?** Cymulate has intutuive and dynamic dashboard with auto update and auto remediation feature. **What do you dislike about Cymulate?** Auto remeditaion is recommended to be extended to behaviour based scenario as well. **What problems is Cymulate solving and how is that benefiting you?** Cymulate gives peace of mind to CISO by validating security controls effectively against emergent threat **Official Response from Aviva Spotts:** > Thank you for your review! We're glad you find value in Cymulate’s validation strategy and appreciate the intuitive dashboard and automation features. Your feedback on extending auto-remediation to behavior-based scenarios is valuable, and we’ll pass it along to the right team. It's great to hear that Cymulate provides peace of mind by validating security controls effectively. Thanks for your support! ### 48. The platform is an efficient way to do risk management with simpler instructions **Rating:** 5.0/5.0 stars **Reviewed by:** Ashish J. | Consultant, Mid-Market (51-1000 emp.) **Reviewed Date:** September 30, 2024 **What do you like best about Cymulate?** It is easy to use and setup & integrate and the platform is very easy to understand for making the team understand about the potential threats. **What do you dislike about Cymulate?** The use cases are currently limited because of lesser number of endpoints, which can be increased to advance this platform further. **What problems is Cymulate solving and how is that benefiting you?** This platform has helped us analyze and asses any new cyber threats by giving us a immediate reports and insights about them and helps us simulate them to analayze those attacks. The stakeholders can easily understand because of this platform and at the same time we have realtime protection. **Official Response from Liron Meron:** > Thank you for sharing your feedback on the Cymulate Platform! We're thrilled to hear that you find our platform easy to use and understand for your risk management needs. We appreciate your suggestion regarding increasing the number of endpoints to enhance the platform's capabilities further. At Cymulate, we are committed to continuously improving our services to provide you with the best possible experience. Your insights on the use cases and endpoint limitations are valuable to us, and we will take them into consideration for future enhancements. If you have any further suggestions or need assistance, please feel free to reach out to us. We're here to support you every step of the way in your cyber threat analysis and protection journey. Thank you for choosing Cymulate! ### 49. Cymulate is very helpful in security validation program **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** June 30, 2025 **What do you like best about Cymulate?** Validation program is made easy by Cymulate due to 24*7 assessment , auto update of IOCs , SIEM detection validation **What do you dislike about Cymulate?** There is nothing that i can think of at this moment **What problems is Cymulate solving and how is that benefiting you?** Detection engineering, Security control validation are out top priority use cases **Official Response from Aviva Spotts:** > Thanks so much for the great review! We’re thrilled to hear Cymulate is making your validation program easier and supporting your top use cases like detection engineering and control validation. We’ve got a customer-only webinar coming up soon that dives into this exact topic—hope you’ll join us! ### 50. Great experience for carrying out BAS assessment. **Rating:** 5.0/5.0 stars **Reviewed by:** Akshay R. | Security Operation Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** January 30, 2025 **What do you like best about Cymulate?** Ease of use, implemantation and frequent CS connects for assitance. **What do you dislike about Cymulate?** Sometime we face issue while configuring SMTP settings. **What problems is Cymulate solving and how is that benefiting you?** It helps in identify misconfiguration and security gaps in our implemanted security controls. Also helps with steps to mitigate them. **Official Response from Aviva Spotts:** > Thank you for sharing your experience! It’s great to hear that Cymulate has been easy to implement and that our Customer Success team has been a helpful resource along the way. We’re also glad the platform is helping you uncover misconfigurations and security gaps while providing clear guidance on mitigation. We appreciate your feedback on SMTP configuration challenges and will pass it along to the relevant team. Thanks again for your insights! - [View Cymulate pricing details and edition comparison](https://www.g2.com/products/cymulate/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-13+11%3A27%3A02+-0500&secure%5Bsession_id%5D=b76c57b1-2d22-4ebd-9f93-0721c5ebabea&secure%5Btoken%5D=21150fcf366c5dd12fd52f83b6abbf5011f3343d342366655fb2593263d02e37&format=llm_user) ## Cymulate Integrations - [Carbon Black EDR](https://www.g2.com/products/carbon-black-edr/reviews) - [Cisco Secure Endpoints](https://www.g2.com/products/cisco-secure-endpoints/reviews) - [CloudGuard](https://www.g2.com/products/cloudguard/reviews) - [Cortex](https://www.g2.com/products/cortex-automation-inc-cortex/reviews) - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - [CrowdStrike Falcon Exposure Management](https://www.g2.com/products/crowdstrike-falcon-exposure-management/reviews) - [Cybereason Managed Detection and Response](https://www.g2.com/products/cybereason-managed-detection-and-response/reviews) - [Cynet](https://www.g2.com/products/cynet/reviews) - [Devo](https://www.g2.com/products/devo/reviews) - [Elastic Security](https://www.g2.com/products/elastic-elastic-security/reviews) - [Exabeam New-Scale Platform](https://www.g2.com/products/exabeam-new-scale-platform/reviews) - [Fortinet Endpoint Visibility & Control](https://www.g2.com/products/fortinet-endpoint-visibility-control/reviews) - [Harmony](https://www.g2.com/products/harmony-2025-06-13/reviews) - [IBM Security QRadar Log Insights](https://www.g2.com/products/ibm-security-qradar-log-insights/reviews) - [InsightVM (Nexpose)](https://www.g2.com/products/insightvm-nexpose/reviews) - [Jira](https://www.g2.com/products/jira/reviews) - [Kaspersky Next EDR Expert](https://www.g2.com/products/kaspersky-next-edr-expert/reviews) - [LogRhythm SIEM](https://www.g2.com/products/exabeam-logrhythm-siem/reviews) - [Microsoft Active Directory Certificate Services (AD CS)](https://www.g2.com/products/microsoft-active-directory-certificate-services-ad-cs/reviews) - [Microsoft Defender for Endpoint](https://www.g2.com/products/microsoft-defender-for-endpoint/reviews) - [Microsoft Defender for Office 365](https://www.g2.com/products/microsoft-microsoft-defender-for-office-365/reviews) - [Microsoft Defender Vulnerability Management](https://www.g2.com/products/microsoft-defender-vulnerability-management/reviews) - [Microsoft Entra](https://www.g2.com/products/microsoft-entra/reviews) - [Microsoft Entra ID](https://www.g2.com/products/microsoft-entra-id/reviews) - [Microsoft Sentinel](https://www.g2.com/products/microsoft-sentinel/reviews) - [NetWitness Platform](https://www.g2.com/products/netwitness-platform/reviews) - [Palo Alto Cortex XSIAM](https://www.g2.com/products/palo-alto-cortex-xsiam/reviews) - [Panther](https://www.g2.com/products/panther/reviews) - [Qualys VM](https://www.g2.com/products/qualys-vm/reviews) - [Securonix Security Operations and Analytics Platform](https://www.g2.com/products/securonix-security-operations-and-analytics-platform/reviews) - [SentinelOne Singularity Identity Detection & Response](https://www.g2.com/products/sentinelone-singularity-identity-detection-response/reviews) - [ServiceNow AI Platform](https://www.g2.com/products/servicenow-ai-platform/reviews) - [ServiceNow IT Service Management](https://www.g2.com/products/servicenow-it-service-management/reviews) - [Snowflake](https://www.g2.com/products/snowflake/reviews) - [Sophos Endpoint](https://www.g2.com/products/sophos-endpoint/reviews) - [Splunk Enterprise](https://www.g2.com/products/splunk-enterprise/reviews) - [Splunk Enterprise Security](https://www.g2.com/products/splunk-enterprise-security/reviews) - [Splunk IT Cloud](https://www.g2.com/products/splunk-it-cloud/reviews) - [Sumo Logic](https://www.g2.com/products/sumo-logic/reviews) - [Symantec Endpoint Detection and Response (EDR)](https://www.g2.com/products/symantec-symantec-endpoint-detection-and-response-edr/reviews) - [Tanium](https://www.g2.com/products/tanium/reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) - [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) - [Trellix Endpoint Security](https://www.g2.com/products/trellix-endpoint-security/reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - [Zscaler Internet Access](https://www.g2.com/products/zscaler-internet-access/reviews) ## Cymulate Features **Simulation** - Test Agent Deployment - Breach Simulation - Attack Simulation - Resolution Guidance **Configuration** - Configuration Monitoring - API / Integrations **Generative AI - Exposure Management Platforms** - Predictive Analytics - Automated Threat Detection **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Customization** - Multi-Vector Assessment - Scenario Customization - Range of Attack Types **Visibility** - Asset Discovery **Risk Identification and Assessment - Exposure Management Platforms** - Comprehensive Risk Assessment - Advanced Analytics and Reporting **Administration** - Reporting - Risk Evaluation - Automated Testing **Vulnerability Management** - Threat Hunting - Vulnerability Scanning - Vulnerability Intelligence - Risk-Prioritization **Monitoring and Integration - Exposure Management Platforms** - Integration and Data Consolidation - Real-time Monitoring and Alerts **Identity** - SSO - Governance - User Analytics ## Top Cymulate Alternatives - [Pentera](https://www.g2.com/products/pentera/reviews) - 4.5/5.0 (141 reviews) - [Picus Security](https://www.g2.com/products/picus-security/reviews) - 4.8/5.0 (229 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (773 reviews)