Top Rated Pynt - API Security Testing Alternatives
1. It has the best native integrations with most of the tools
2. Faster run
3. Quick validations
4. Early threats deductions
5. No-code security platform
6. Easy and seamless integration run in CICD Review collected by and hosted on G2.com.
1. Reporting should be improved
2. Need a good user interface
3. Installations are a bit challenging Review collected by and hosted on G2.com.
30 out of 31 Total Reviews for Pynt - API Security Testing
Overall Review Sentiment for Pynt - API Security Testing
Log in to view review sentiment.
Pynt is an useful security testing tooldesigned to help in API testing.Postman is my go to tool for API testing and Postman integrated with Pynt is useful to detect potential vulnerabilities.
As pynt is docker based, it needs very minimal set up and users can easily start using it.
In order to enhance your API security testing , I recommend Pynt as it helps to improve the robustness of your APIs Review collected by and hosted on G2.com.
When I first set up Pynt, I encountered some difficulties, but I must say the Pynt team was incredibly responsive and helpful in resolving my queries quickly. Their Slack channel is a valuable resource and made the entire process much smoother. Review collected by and hosted on G2.com.
- It covers OWASP TOP 10 API vulnerabilities and the tests are executed flawlessly with minimum to no efforts.
- Supports NEWMAN for command line execution or execution via Gitlab actions/Jenkins, etc.
- They provide free version which is also great for starters.
- The implementation is super easy Review collected by and hosted on G2.com.
The only hiccup I faced is "Having docker as a mandatory step", our organisation doesn't recommend using Docker but suggest different alternatives, so I cannot use Pynt as a free version due to this limitation for me. Review collected by and hosted on G2.com.
Pynt is crafted to be ease of use, allowing developers and security professionals to automate the task or testing that the testers done that manually. And it helps for saving time and efforts for manual testing. The implementation of the tool is easy. Review collected by and hosted on G2.com.
Pynt is only foucsing on API testings, it can be cover some of the other test like performance and load testing.And limitations in detecting complex vulnerabilites and some time it may provides false alarms, so it needs manual validations. The customer support is very slow in responsive. Review collected by and hosted on G2.com.
Pynt makes API security testing easy by working directly with tools like Postman. It’s simple to set up and works well in our CI/CD pipeline. The Slack community is helpful and quick to respond to any issues. Review collected by and hosted on G2.com.
The user interface is challenging. As a beginner, it’s hard for me to set up Postman. I recommend making it more user-friendly. Review collected by and hosted on G2.com.
Pynt is a remarkable no-code security scanning tool that fills a significant gap in API testing. While many companies rely on Postman for API execution and testing, Postman lacks the capability to validate security vulnerabilities within collections. Pynt steps in to provide that crucial functionality, enabling seamless verification of existing Postman collections to uncover potential vulnerabilities.
One of the standout features of Pynt is its ease of use. Being Docker-based, it requires minimal setup, allowing users to get started quickly. The user interface is intuitive and user-friendly, making it accessible to both technical and non-technical users. I highly recommend Pynt for anyone looking to enhance their API security testing. Review collected by and hosted on G2.com.
At present, I don't see any significant drawbacks with the Pynt tool. I had previously provided feedback on improving the HTML reporting feature, and I'm impressed by how swiftly the Pynt team, especially Ofer and Tzvika, addressed it. Their responsiveness to user feedback and commitment to continuous improvement is commendable. Pynt is a tool that evolves with its users' needs, and I look forward to seeing more enhancements in the future.
Additional Thoughts:
Pynt is not just a tool; it's a solution that empowers teams to elevate their API security practices. Its integration with existing workflows and the proactive support from the Pynt team make it a standout choice for any organization serious about API security. The fact that it's easy to set up and use means it can be quickly adopted without disrupting current processes, making it a vital asset for developers and testers alike. Review collected by and hosted on G2.com.
Being a functional tester, wanted to add security tests into Engineering testing. Pynt integration with Postman was smooth. Started to explore a new tool and the tool does most of the work. Able to see the reports from postman cli, it was helpful. Review collected by and hosted on G2.com.
Being a functional tester, used Pynt for learning purpose. As of now there is no downside. Review collected by and hosted on G2.com.
Pynt integrates easily into development workflows and simplifies and expedites API security testing. Rapid vulnerability discovery without interfering with current procedures is made possible by its automation features. Review collected by and hosted on G2.com.
Despite being simple to use, Pynt occasionally has compatibility issues in specific settings. Concerns over future support are also raised by the absence of active maintenance. Review collected by and hosted on G2.com.
Pynt created a very easy approach to DAST scanning by proxying network calls. This approach helps circumvent the hardest part of setting up DAST - getting authentication working in a test account. Using in CICD pipeline, we are frequently using this tool for our day to day uses. Also it provides slack community support, which caters to resolving issues faster. Review collected by and hosted on G2.com.
While the postman integration works smoothly, it would be better if you can provide out of the box HTML report, which can be readily shared with our stakeholders like CTO and VP of engineering. Review collected by and hosted on G2.com.
I especially like Pynt’s simple approach. Integration and onboarding was super quick and it seamlessly answers all the issues we were struggling with - fixing API vulnerabilities easily and automatically, as well as getting real and accurate results. Review collected by and hosted on G2.com.
Nothing, the app delivers everything you need seamlessly and efficiently. Review collected by and hosted on G2.com.
this is one of the best tool for Api automation testiong but it is hard to setup and not a biggner friendly tool. Review collected by and hosted on G2.com.
not beginner friendly and very hard to setup it need to improve to more userfriendly as a begginer to this tool it was very hard for me to setup Review collected by and hosted on G2.com.
