# Traceable AI Reviews **Vendor:** Harness **Category:** [API Security Tools](https://www.g2.com/categories/api-security) **Average Rating:** 4.7/5.0 **Total Reviews:** 23 ## About Traceable AI Traceable is the industry’s leading API Security company that helps organizations protect their digital systems and assets in a cloud-first world where everything is interconnected. Traceable is the only intelligent and context-aware platform that powers complete API security. Security Posture Management: Traceable helps organizations dramatically improve their security posture with a real time, risk ranked catalog of all APIs in their ecosystem, conformance analysis, identification of shadow and orphaned APIs, and visibility of sensitive data flows. RunTime Threat Protection: Traceable observes user level transactions and applies mature machine learning algorithms to discover anomalous transactions, alert the security team, and block attacks at the user level. Threat management and analytics: Traceable helps organizations analyze attacks and incidents with its API data lake, which provides rich historical data of nominal and malicious traffic. API Security Testing throughout the SDLC: Traceable connects the security lifecycle together with the DevOps lifecycle providing automated API Security tests to be run within the CI pipeline. Digital Fraud Prevention: Traceable brings together its broad and deep data collection over time and cutting edge machine learning to identify fraud across all API transactions ## Traceable AI Pros & Cons **What users like:** - Users praise the **responsive customer support** of Traceable AI, noting exceptional flexibility and partnership throughout their experience. (11 reviews) - Users commend the **robust security features** of Traceable AI, ensuring comprehensive protection for their APIs from day one. (8 reviews) - Users appreciate the **setup ease** of Traceable AI, noting that installation is straightforward and quick. (4 reviews) - Users value the **powerful API testing and monitoring features** of Traceable AI, enhancing understanding and protection of APIs. (3 reviews) - Users appreciate the **high level of customization** in Traceable AI, enhancing adaptability and functionality for varied needs. (2 reviews) - Features (2 reviews) - Information Analysis (2 reviews) - Monitoring (2 reviews) - Protection (2 reviews) - Scanning Technology (2 reviews) **What users dislike:** - Users note the **limited features** of Traceable AI, expressing a need for enhancements in customization and usability. (3 reviews) - Users struggle with **false positives** in Traceable AI, finding it challenging to configure and manage custom threats. (2 reviews) - Users are frustrated by the **inefficiency of the update process** , requiring unnecessary reinstallation for simple updates. (2 reviews) - Users find the **poor documentation** of Traceable AI challenging, often necessitating additional support for effective use. (2 reviews) - Users highlight the need for improved **reporting capabilities** , citing challenges with historical data and overall functionality. (2 reviews) - API Issues (1 reviews) - Expensive (1 reviews) - Integration Issues (1 reviews) - Limited Automation (1 reviews) - Limited Testing Capabilities (1 reviews) ## Traceable AI Reviews ### 1. Very functional views of what happening **Rating:** 4.0/5.0 stars **Reviewed by:** Tarik G. | Staff Security Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** August 15, 2023 **What do you like best about Traceable AI?** We selected Traceable for it's testing capabilities, but it also gives me so many ways to slice and dice and understand how our APIs are being used and abused. The support is really impressive. Every time I have a question, they either have the answer or can figure it out pretty quickly and they are very willing to walk me through their complex UI to demonstrate how I can figure out more answers. **What do you dislike about Traceable AI?** The UI is confusing and still clearly from a startup. I would like the ability to save queries (in traces), save views and filters, and have it remember how I laid out the screen. **What problems is Traceable AI solving and how is that benefiting you?** We use it to test our APIs for vulnerabilities and are also starting to use it to understand how we are being attacked and how our APIs are designed to help prevent or assist attackers (so that we can change them). ### 2. Traceable **Rating:** 4.0/5.0 stars **Reviewed by:** Scott B. | Mid-Market (51-1000 emp.) **Reviewed Date:** August 10, 2023 **What do you like best about Traceable AI?** Traceable provides an incredibly comprehensive review of our API traffic. I'm especially impressed with the number of integrations with other tooling to help bring a full view of my environment. Support and account teams are very responsive, and always willing to setup last minute calls to worth through issues together. It speaks volumes to their dedication to differentiating the product in a sea of security tools. **What do you dislike about Traceable AI?** The breadth of configuration options and features is impressive, but many are still limited or not feature complete. Find a way to keep going wide, but add depth in certain key areas. **What problems is Traceable AI solving and how is that benefiting you?** We don't have a centralized security control for handling API traffic across our applications, and across the CSP's where they are deployed. Traceable provides that nerve center where we can agnostically detect, prevent, and analyze API based threats. ### 3. Efficient API Inventory triage tool **Rating:** 4.5/5.0 stars **Reviewed by:** sharan n. | Security Researcher, Enterprise (> 1000 emp.) **Reviewed Date:** August 16, 2023 **What do you like best about Traceable AI?** We have found Traceable AI to be an exceptional solution for our API inventory management needs. Our decision to adopt this product has been greatly validated by its performance and compatibility with our environment. We have seamlessly tailored its features to align with our requirements and have even implemented it within our on-premise infrastructure. The comprehensive insights it offers into our inventory have significantly facilitated our triage processes and overall inventory management. One noteworthy aspect of Traceable AI is its remarkable customer support. In particular, I would like to commend Vijay Shankar from the Traceable team for his dedicated assistance. He has been our single point of contact and has consistently provided excellent support. The team's proactive approach, including regular follow-ups and prompt responsiveness, has truly set a high standard for customer service. They have been exceptionally accessible and have ensured timely updates in response to any requests, changes, or feature enhancements. **What do you dislike about Traceable AI?** As for areas of improvement, I have encountered minor issues primarily related to the user interface (UI). Occasionally, certain elements such as page numbers and filters have displayed inaccuracies or inconsistencies. However, it is worth mentioning that the Traceable team is receptive to user feedback and diligently incorporates updates to enhance the platform's functionality. **What problems is Traceable AI solving and how is that benefiting you?** I am truly impressed by the impact of Traceable AI on our API inventory management. The platform's ability to provide a holistic view of our APIs, coupled with its rapid issue identification, customizable features, and on-premise security deployment, has significantly elevated our API management capabilities. Additionally, the team's commitment to refining the platform based on user feedback ensures a responsive and user-centric experience. Traceable AI has undeniably streamlined our operations and empowered us to make more informed decisions regarding our API ecosystem. ### 4. Versatile API Security tool and partnership **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** August 15, 2023 **What do you like best about Traceable AI?** This tool meets and exceeds all expectations within all the API Security areas including shift left. The tool deploys easily and quickly and was able to detect all the tests other vendors missed during PoCs. Support has been working well with our model which has become a good partnership. Their shift left component is an excellent way to verify vulnerabilities don't end up in production and goes beyond what a typical DAST can't test. We look forward to future implementation with their Language Agents so that we can take full advantage of the NextGen WAF capabilities. **What do you dislike about Traceable AI?** For complex environments, a new deployment will take extra coordination with support since their documentation doesn't cover all use cases (how can they?). Integrations with other tools are possible, but require assistance from their support while they continue to build the portfolio. **What problems is Traceable AI solving and how is that benefiting you?** This tool helps us detect and block malicious actors attacking our internally developed and sometimes forgotten APIs. We also scan through our SDLC pipeline to reduce vulnerabilities making their way to production. ### 5. An excelent monitoring platform for your APIs **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Insurance | Small-Business (50 or fewer emp.) **Reviewed Date:** August 11, 2023 **What do you like best about Traceable AI?** Traceable has provided an excellent insight into how our data flows on a day-to-day basis. The platform provides a very detailed overview of how data is able to flow in our environment. The process of installing the Traceable agent on our servers was very straightforward when introducing a new environment. Our team has provided high-quality support throughout the onboarding process. They have been able to promptly address every concern or issue that we have encountered, whether it be a simple regex solution or working with their backend team on correcting an issue in the agent. The support has been top notch. **What do you dislike about Traceable AI?** The update process for our systems has required our Sysadmin to uninstall and reinstall when updates need to be applied. The update process could be more streamlined. Enhancing the reporting capabilities, especially for historical data beyond a month would provide to be useful. **What problems is Traceable AI solving and how is that benefiting you?** Traceable has given our team a much better understanding of where and how our API traffic is flowing. This have given us a much more comprehensive overview of our data, and is allowing us to better plan future projects. ### 6. Great Product for API Security Journey **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** August 08, 2023 **What do you like best about Traceable AI?** The support has been awesome! Fastest turn around time for any support related questions and training I've been a part of. The UI is also very easy to use and understand quickly. It's amazing what Taceable can discover about your API applications such as what types of sensitive data are being passed in API calls. **What do you dislike about Traceable AI?** The only issues I've seen so far have been related to agent performace on Tanzu Applicaiton service. This is a new feature so I'm positive it will be remediated quickly from my experiece with support. **What problems is Traceable AI solving and how is that benefiting you?** Traceable is helping us discover what API applciatios we have an where they are running. It's also enable us to see how secure they are and what changes can be made to make them more secure. Traceable is also helping us see where our sensitive data is going. ### 7. Rockstar product for rockstar teams **Rating:** 5.0/5.0 stars **Reviewed by:** Pathik P. | Head of Cloud Security, Enterprise (> 1000 emp.) **Reviewed Date:** October 18, 2022 **What do you like best about Traceable AI?** Traceable has comprehensive solution for protecting all API endpoints in all deployment models Very customizable and easy to operate. They keep adding new features quickly **What do you dislike about Traceable AI?** Still a growing company. Many challenges to solve. Reporting needs to be improved on larger scale **What problems is Traceable AI solving and how is that benefiting you?** Ability to discover APIs across the boards and implement protection against OWASP API top to. Provide us custom ruleset and capabilities to bot control and rate limiting for our API. We also use their IAST module to secure APIs and applications in QA environment ### 8. A fantastic platform that is almost perfect **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Utilities | Enterprise (> 1000 emp.) **Reviewed Date:** August 14, 2023 **What do you like best about Traceable AI?** Does a great job at showing the information needed to be gleamed from an API call Threat actor/protection portion seems to be extremely useful Fast and great support from the reps. **What do you dislike about Traceable AI?** Wish it had the ability to save analysis queries Needs to be able to save what columns you want to be shown. I have to consistently hide columns in order to fully display the information I want to see. Dark theme please Better and more documentation needs to be done **What problems is Traceable AI solving and how is that benefiting you?** Traceable allows our company to gain insight on data relating to our website/mobile app's API calls. By monitoring these calls, we can see any potential threats or security vulnerabilities that concern our web services. ### 9. Key Takeaways and Observations **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** August 15, 2023 **What do you like best about Traceable AI?** At our organization, we emphasize conducting meticulous Proof of Concept (POC) assessments involving at least three vendors before making product procurement decisions. This evaluation encompasses aligning the vendor's solution with our specific use cases, technical support requirements, and the product team's vision. Our rigorous POC process consistently positioned Traceable at the forefront, achieving top rankings across all evaluated criteria compared to other vendors. The support team's assistance has been phenomenal during the POC phase and throughout the provisioning of both production and non-production environments. With unwavering confidence, I affirm that this tool has significantly elevated the effectiveness of our security program. **What do you dislike about Traceable AI?** It would have been advantageous if the TPA (Traceable Platform Agents) servers could have also been hosted within the vendor's cloud infrastructure. While I understand design constraints might limit this possibility, such an arrangement would have benefitted our organization and other mid-sized customers like us. **What problems is Traceable AI solving and how is that benefiting you?** Assisting in fortifying our API security stance. ### 10. Modern API Security product with great support! **Rating:** 4.5/5.0 stars **Reviewed by:** Satya N. | Startup Mentor , Enterprise (> 1000 emp.) **Reviewed Date:** May 16, 2023 **What do you like best about Traceable AI?** Traceable offers a variety of deployment options, acknowledging the complexity of Cloud Infrastructure. Ensuring complete visibility of API endpoints is crucial, and Traceable's diverse deployment strategies are designed to maximize coverage. The platform is equipped with a powerful blocking mechanism that can operate either at the endpoint level or at the network level, by integrating with third-party Web Application Firewalls (WAFs). This versatility allows us to tailor our inline blocking strategies effectively. Furthermore, the support service provided by Traceable is remarkable. It ranks among the best that my teams have encountered from any vendor. The Traceable team has consistently demonstrated their responsiveness and sensitivity to the timelines and intricacies of our environments. Their strong, dedicated support team is commendable. **What do you dislike about Traceable AI?** There are a few technical limitations that we've encountered, although I understand that Traceable.ai is actively working on improvements in these areas. Our use of the mirroring mechanism for certain endpoints has highlighted a few potential enhancements: Currently, we filter data after it has been sent to the Traceable platform. This process results in us incurring costs for transmitting data that will eventually be redacted or discarded upon reaching Traceable. It would be advantageous if we could implement filtering prior to data transmission. Mirroring traffic is a significant cost factor. If there were a method to compress the data before mirroring, it would lead to considerable savings. We have also faced challenges due to ECS Fargate not supporting PPS Auto Scaling. This issue has necessitated substantial troubleshooting on our part. Any potential solutions to this would be greatly appreciated. **What problems is Traceable AI solving and how is that benefiting you?** API-based attack monitoring & response API Threat Modeling - API Security Testing - Blackbox Vulnerability Management is a secondary use case API UBA - API user's behavior analysis ## Traceable AI Features **Administration** - API / Integrations - Extensibility **Analysis** - Logging and Reporting - Issue Tracking - Security Monitoring **API Management ** - API Discovery - API Monitoring - Reporting - Change Management **Security** - Tampering - Malicious Code - Verification - Security Risks **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Vulnerability Scan - Code Analysis **Controls** - Application-Layer Controls - Traffic Controls - Network Controls **Security Testing** - Compliance Monitoring - API Verification - API Testing **Tracking** - Bill of Materials - Audit Trails - Monitoring **Security** - Data Security - Data loss Prevention - Security Auditing **Testing** - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Functionality** - API / Integrations - Extensibility - Bot Traffic **Security Management** - Security and Policy Enforcement - Anomoly Detection - Bot Detection **Identity** - SSO - Governance - User Analytics **Generative AI** - AI Text Summarization ## Top Traceable AI Alternatives - [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) - 4.5/5.0 (573 reviews) - [Postman](https://www.g2.com/products/postman/reviews) - 4.6/5.0 (1,695 reviews) - [HAProxy](https://www.g2.com/products/haproxy/reviews) - 4.7/5.0 (817 reviews)