Picus Security vs XM Cyber comparison

Picus Security and XM Cyber are both solutions in the Breach and Attack Simulation (BAS) category. Picus Security is ranked #3 with an average rating of 9.0, while XM Cyber is ranked #5 with an average rating of 8.0. Picus Security holds a 16.8% mindshare in BAS, compared to XM Cyber’s 8.6% mindshare. Additionally, 100% of Picus Security users are willing to recommend the solution, compared to 100% of XM Cyber users who would recommend it.

Picus Security

Read 5 Picus Security reviews

2,749 Views
1,883 Comparison Views

100% willing to recommend

XM Cyber

Read 2 XM Cyber reviews

1,843 Views
1,060 Comparison Views

100% willing to recommend

Picus Security

XM Cyber

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Picus Security and XM Cyber based on real PeerSpot user reviews.

Find out in this report how the two Breach and Attack Simulation (BAS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Picus Security vs. XM Cyber Report (Updated: October 2024).

Buyer's Guide

Picus Security vs. XM Cyber

October 2024

Download the complete report

Helped 815,854 peers since 2012

Categories and Ranking

Picus Security

Ranking in Breach and Attack Simulation (BAS)

3rd

Average Rating

9.0

Number of Reviews

Ranking in other categories

No ranking in other categories

XM Cyber

Ranking in Breach and Attack Simulation (BAS)

5th

Average Rating

8.0

Number of Reviews

Ranking in other categories

Vulnerability Management (29th), Cloud Security Posture Management (CSPM) (25th)

Mindshare comparison

As of November 2024, in the Breach and Attack Simulation (BAS) category, the mindshare of Picus Security is 16.8%, up from 13.4% compared to the previous year. The mindshare of XM Cyber is 8.6%, up from 8.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Breach and Attack Simulation (BAS)

Featured Reviews

erdemerdag

Cybersecurity Operations Engineer at a tech services company with 201-500 employees

May 23, 2022

Breach and attack simulation software that provides network, endpoint, and email vectors

According to the attack vectors, you cannot specify which product is failing or which product is working well because there's no agent. The best case scenario is to add an agent solution where an agent would have the ability to actually detect which programs aren't working. For the attack software, you put a peer on the cloud site, and you have another peer internal network. There is IPS, firewall, WAF, and DBS amongst these peers. The cloud's peer is trying to send the attack file to the internal network. Maybe the firewall is blocking it, maybe the IP, maybe the WAF, but you cannot see the details. You can say, "Yes, my security product is blocking that attack scenario," or, "I cannot block this attack."

Read full review

Chee Young Tan

Director at ST Electronics

Feb 9, 2024

Has a valuable feature for attack simulation; it highlights the vulnerability and offers recommendations for improvement

We use the product to identify the vulnerabilities in the network The platform's most valuable feature is attack simulation. It provides an efficient testing ground for security functionalities. XM Cyber could identify all areas of vulnerability. They could expand the identification span for…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"You have the liberty of physically executing a specific set of rules in your environment."

"The most valuable feature of Picus Security is its threat intelligence, providing suggestions to block and prevent attacks by identifying malicious files and providing threat IDs."

"It's very useful software because the customer mostly configures their IPS and manages their firewalls, WAF, and the DBS according to the latest update, latest news, or according to the situation."

"One of the most valuable features would be the detection capability, specifically the ability to detect alarms and logs collected from SIEM tools."

"The most valuable feature of the solution is its integration capabilities with the other security tools."

"The platform's most valuable feature is attack simulation."

"What I personally like very much, from my experience, is that it is very reliable."

Cons

"According to the attack vectors, you cannot specify which product is failing or which product is working well because there's no agent."

"The amount of integrations that the product can handle is an area of concern, making it one of the aspects where improvements are required."

"Let's say if a customer's environment has 10 security devices and they need to know that there is an attack that has bypassed their devices, they cannot go and inspect every device and every rule in their security devices."

"To improve, Picus Security could consider establishing a data center in India to address trust issues and increase interest from Indian customers."

"The reporting and data analysis could be improved. Specifically, the analysis of the results."

"XM Cyber could identify all areas of vulnerability. They could expand the identification span for different areas."

"We'd like to see a cheaper price."

Pricing and Cost Advice

"There is a yearly license according to the number of vectors. The pricing is moderate."

"They have certain price ranges for their products, depending upon the use cases, and the number of applications the customer wants to try."

"We have to pay standard licensing fees."

See which vendors are best for you

Use our free recommendation engine to learn which Breach and Attack Simulation (BAS) solutions are best for your needs.

See recommendations

815,854 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

26%

Computer Software Company

14%

Manufacturing Company

Media Company

Computer Software Company

15%

Financial Services Firm

14%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Picus Security?

The most valuable feature of Picus Security is its threat intelligence, providing suggestions to block and prevent attacks by identifying malicious files and providing threat IDs.

See all answers

What is your experience regarding pricing and costs for Picus Security?

Picus Security offers good value for money.

See all answers

What needs improvement with Picus Security?

To improve, Picus Security could consider establishing a data center in India to address trust issues and increase interest from Indian customers, potentially boosting revenue.

See all answers

What do you like most about XM Cyber?

The platform's most valuable feature is attack simulation.

See all answers

What is your experience regarding pricing and costs for XM Cyber?

We have to pay standard licensing fees. There are no additional costs. It is an expensive product. I rate the pricing a seven out of ten.

See all answers

What needs improvement with XM Cyber?

XM Cyber could identify all areas of vulnerability. They could expand the identification span for different areas.

See all answers

Comparisons

Pentera vs Picus Security

Compared 37% of the time

Cymulate vs Picus Security

Compared 28% of the time

AttackIQ vs Picus Security

Compared 12% of the time

SafeBreach vs Picus Security

Compared 11% of the time

Tenable One Exposure Management Platform vs Picus Security

Compared 4% of the time

More Picus Security Competitors

Pentera vs XM Cyber

Compared 26% of the time

Cymulate vs XM Cyber

Compared 14% of the time

SafeBreach vs XM Cyber

Compared 11% of the time

Wiz vs XM Cyber

Compared 7% of the time

Tenable Security Center vs XM Cyber

Compared 7% of the time

More XM Cyber Competitors

Product Reports

Buyer's Guide

Picus Security

November 2024

Download Picus Security product report

Buyer's Guide

Cloud Security Posture Management (CSPM)

October 2024

Download XM Cyber product report

Learn More

Picus Security

XM Cyber

Overview

Independent from any vendor or technology, the unparalleled Picus Platform is designed to continuously measure the effectiveness of security defenses by using emerging threat samples in production environments. Created by a team that’s been working together more than 10 years already and has proven their expertise in enterprise cybersecurity, Picus is trusted by many large multinational corporations and government agencies.

XM Cyber is a leading hybrid cloud security company that’s changing the way innovative organizations approach cyber risk. Our attack path management platform continuously uncovers hidden attack paths to your critical assets across cloud and on-prem environments, so you can cut them off at key junctures and eradicate risk with a fraction of the effort. This overcomes the big disconnect that security teams experience when they’re presented with endless alerts, yet can’t see which exposures impact risk the most, how they come together to be exploited by an attacker, or how to efficiently eliminate them. This approach is a complete game-changer, which is why some of the world’s largest, most complex organizations choose XM Cyber to help eradicate risk. Founded by top executives from the Israeli cyber intelligence community, XM Cyber has offices in North America, Europe, and Israel.

Sample Customers

Akbank, Exclusive Networks, Garanti, ING Bank, QNB Finansbank, Turkcell, Vodafone, Yapı Kredi

Hamburg Port Authority, Plymouth Rock Corporation

Buyer's Guide

Picus Security vs. XM Cyber

October 2024

Free Report: Picus Security vs. XM Cyber

Find out what your peers are saying about Picus Security vs. XM Cyber and other solutions. Updated: October 2024.

DOWNLOAD NOW

815,854 professionals have used our research since 2012.

See our Picus Security vs. XM Cyber report.

See our list of best Breach and Attack Simulation (BAS) vendors.

We monitor all Breach and Attack Simulation (BAS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.