Pentera vs Picus Security comparison

Read 6 Picus Security reviews

2,424 Views
1,753 Comparison Views

100% willing to recommend

Pentera

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Pentera and Picus Security based on real PeerSpot user reviews.

Find out in this report how the two Breach and Attack Simulation (BAS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Pentera vs. Picus Security Report (Updated: March 2025).

Pentera vs. Picus Security

March 2025

Download the complete report

Helped 842,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Pentera

Ranking in Breach and Attack Simulation (BAS)

1st

Average Rating

7.8

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Penetration Testing Services (1st)

Picus Security

Ranking in Breach and Attack Simulation (BAS)

3rd

Average Rating

9.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of March 2025, in the Breach and Attack Simulation (BAS) category, the mindshare of Pentera is 30.6%, up from 27.1% compared to the previous year. The mindshare of Picus Security is 18.6%, up from 16.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Breach and Attack Simulation (BAS)

Featured Reviews

Richard Marlow

Vulnerability Testing Manager at Frasers Group

Provides good features and helps monitor the status of ransomware protection in an organization

The tool is quite scalable. There's a one-to-one relationship between the engine and how many scans we can do. We can only do one scan with one engine. We had some issues around the password assessments because we added a lot of users. It took a long time. I rate the scalability a seven out of ten. We have three users in our organization.

Read full review

erdemerdag

Cybersecurity Operations Engineer at a tech services company with 201-500 employees

Breach and attack simulation software that provides network, endpoint, and email vectors

According to the attack vectors, you cannot specify which product is failing or which product is working well because there's no agent. The best case scenario is to add an agent solution where an agent would have the ability to actually detect which programs aren't working. For the attack software, you put a peer on the cloud site, and you have another peer internal network. There is IPS, firewall, WAF, and DBS amongst these peers. The cloud's peer is trying to send the attack file to the internal network. Maybe the firewall is blocking it, maybe the IP, maybe the WAF, but you cannot see the details. You can say, "Yes, my security product is blocking that attack scenario," or, "I cannot block this attack."

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Pentera has many authentic features."

"The tool showed us that our ransomware protection wasn’t working on some machines."

"The solution is SaaS-based. From a cloud perspective, it has Pentera Surface and Pentera Core. The Core is the on-prem deployed solution, while the Surface is the cloud-hosted solution that scans your public infrastructure. From the Surface perspective, the most valuable feature so far has been the attack surface mapping."

"The vulnerability scanner, exploit achievements, and remediation actions are all great."

"The product is easy to use."

"The most valuable feature of Pentera is that you can do continuous vulnerability assessment, which is automated."

"Maybe there are some remediation steps on the website, we can mask sensitive information on the website better."

"The platform's most valuable features are credential management and vulnerability management."

More Pentera pros

"The most valuable feature of Picus Security is its threat intelligence, providing suggestions to block and prevent attacks by identifying malicious files and providing threat IDs."

"It's very useful software because the customer mostly configures their IPS and manages their firewalls, WAF, and the DBS according to the latest update, latest news, or according to the situation."

"You have the liberty of physically executing a specific set of rules in your environment."

"The most valuable feature of the solution is its integration capabilities with the other security tools."

"It provides good reports and offers signature-based solutions."

"One of the most valuable features would be the detection capability, specifically the ability to detect alarms and logs collected from SIEM tools."

Cons

"One of the big issues we have is that the tool has an additional license for compromised credentials. Suppose compromised credentials for any of your domains appear in leaks, dumps, or are being sold. In that case, they try to aggregate that data and highlight that, for example, ten users appeared in recent dumps as compromised credentials. However, they don't provide much information about where those compromises came from or their source information, probably to protect their sources."

"The price could be improved."

"Maybe scalability. I know that the Pentera right now is high level in order to scan big deals over 500 IPs and not less, and not less. That can be more granular. This will be useful."

"There is room for improvement in virtualization compatibility."

"The licensing and IP management need improvement. When the IP is imported into a system, we cannot withdraw or revoke the license."

"Pentera's general dashboards could be improved and made more specific in terms of vulnerabilities that I'm discovering."

"The licensing and IP management need improvement."

"The vulnerability scanner, exploit achievements, and remediation actions are all great."

More Pentera cons

"Let's say if a customer's environment has 10 security devices and they need to know that there is an attack that has bypassed their devices, they cannot go and inspect every device and every rule in their security devices."

"The amount of integrations that the product can handle is an area of concern, making it one of the aspects where improvements are required."

"According to the attack vectors, you cannot specify which product is failing or which product is working well because there's no agent."

"The reporting and data analysis could be improved. Specifically, the analysis of the results."

"To improve, Picus Security could consider establishing a data center in India to address trust issues and increase interest from Indian customers."

"There is room for improvement in the response rate provided by customer support."

Pricing and Cost Advice

"The product's cost is reasonable. I rate the pricing a three out of ten."

"We have to pay a yearly licensing cost for Pentera."

"The tool is relatively cheap."

"It's not that expensive, but it could be more cost-effective."

"There is a yearly license according to the number of vectors. The pricing is moderate."

"They have certain price ranges for their products, depending upon the use cases, and the number of applications the customer wants to try."

See which vendors are best for you

Use our free recommendation engine to learn which Breach and Attack Simulation (BAS) solutions are best for your needs.

See recommendations

842,592 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

14%

Computer Software Company

14%

Manufacturing Company

Educational Organization

Financial Services Firm

23%

Computer Software Company

11%

Manufacturing Company

10%

Energy/Utilities Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Pentera?

What I like the most about Pentera is its solution-oriented approach.

What needs improvement with Pentera?

The licensing and IP management need improvement. When the IP is imported into a system, we cannot withdraw or revoke the license.

What is your primary use case for Pentera?

I am using the OpenIntra solution for pentesting and managing candidates in my environment. I also use this solution for house customers.

What do you like most about Picus Security?

The most valuable feature of Picus Security is its threat intelligence, providing suggestions to block and prevent attacks by identifying malicious files and providing threat IDs.

What is your experience regarding pricing and costs for Picus Security?

The pricing of Picus Security is average, and it offers a good value for money.

What needs improvement with Picus Security?

There is room for improvement in the response rate provided by customer support. Picus Security could improve the response time.

Tenable Nessus vs Pentera

Comparisons

Cymulate vs Pentera

Compared 22% of the time

Compared 12% of the time

The NodeZero Platform vs Pentera

Compared 12% of the time

XM Cyber vs Pentera

Compared 8% of the time

Qualys VMDR vs Pentera

Compared 8% of the time

More Pentera Competitors

Cymulate vs Picus Security

Compared 32% of the time

AttackIQ vs Picus Security

Compared 12% of the time

SafeBreach vs Picus Security

Compared 10% of the time

XM Cyber vs Picus Security

Compared 4% of the time

Tenable One Exposure Management Platform vs Picus Security

Compared 3% of the time

More Picus Security Competitors

Product Reports

Breach and Attack Simulation (BAS)

February 2025

Download Pentera product report

Download Picus Security product report

March 2025

Overview

Pentera is the category leader for Automated Security Validation, allowing every organization to evaluate its security readiness, to know its real security risk at any given moment. Test all cybersecurity layers across the attack surface – inside and out – by safely emulating attacks & prioritize patching with a risk-based remediation roadmap.

Thousands of security professionals and service providers around the world use Pentera to guide remediation and close security gaps before they are exploited. For more info visit: pentera.io

Pentera

Independent from any vendor or technology, the unparalleled Picus Platform is designed to continuously measure the effectiveness of security defenses by using emerging threat samples in production environments. Created by a team that’s been working together more than 10 years already and has proven their expertise in enterprise cybersecurity, Picus is trusted by many large multinational corporations and government agencies.

Sample Customers

Blackstone Group Caterpillar Apria Healthcare Taylor Vinters Sandler Capital Management Drawbridge BNP Paribas British Red Cross

Akbank, Exclusive Networks, Garanti, ING Bank, QNB Finansbank, Turkcell, Vodafone, Yapı Kredi