No more typing reviews! Try our Samantha, our new voice AI agent.
VAPT Logo

VAPT Reviews

Vendor: Lumiverse Solutions
4.5 out of 5
Leave a review

What is VAPT?

VAPT, or Vulnerability Assessment and Penetration Testing, is a dual approach to security testing aimed at identifying system vulnerabilities. It combines automated and manual techniques to deliver comprehensive insights into a network's security posture.

Get the Vulnerability Management Buyer's Guide and find out what your peers are saying about VAPT, Tenable Vulnerability Management, Pentera and more!
VAPT is the #6 ranked solution in top Penetration Testing Services, #12 ranked solution in API Security Solutions, and #46 ranked solution in top Vulnerability Management solutions. PeerSpot users give VAPT an average rating of 9.0 out of 10. VAPT is most commonly compared to Tenable Vulnerability Management: VAPT vs Tenable Vulnerability Management.
Buyer's Guide
Vulnerability Management
June 2026
Get the category report
Helped 900,644 peers since 2012

VAPT mindshare

Product category:
Vulnerability Management
As of June 2026, the mindshare of VAPT in the Vulnerability Management category stands at 0.4%, up from 0.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
VAPT0.4%
Wiz4.5%
Qualys VMDR3.9%
Other91.2%
Vulnerability Management
 
 
Key learnings from peers
Last updated Apr 7, 2026

Valuable Features

  • "Everything feels accurate to me."

Room for Improvement

  • "There are so many challenges while running this vulnerability program."
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Vulnerability Management Buyer's Guide for additional reliable information.

Compare VAPT with alternative products

Go!

Learn more about VAPT

VAPT evaluates security strength by exposing weaknesses through rigorous testing methods, guiding remediation strategies. It aids enterprises in fortifying defenses by scanning and assessing the network infrastructure, applications, and endpoints. It is essential for proactive security management and compliance assurance.

What are the key features of VAPT?
  • Comprehensive Scanning: Identifies vulnerabilities across networks and applications.
  • Automated Testing: Streamlines detection with advanced automation tools.
  • Manual Penetration: Conducts in-depth assessments performed by skilled analysts.
  • Detailed Reporting: Provides actionable insights and remediation recommendations.
  • Continuous Monitoring: Ensures ongoing protection with regular scans.
What ROI should be expected from VAPT?
  • Risk Reduction: Decreases potential security breaches through early detection.
  • Cost Efficiency: Lowers long-term costs by preventing data breaches.
  • Regulatory Compliance: Assists in meeting industry standards and regulations.
  • Enhanced Security Posture: Builds a more robust security framework.

VAPT is widely implemented across industries such as finance, healthcare, and e-commerce. In finance, it ensures the protection of sensitive data against cyber threats. Healthcare benefits from safeguarding patient records, while e-commerce platforms enhance customer trust by securing transactional data. Each industry leverages VAPT for tailored protection strategies suited to specific risk profiles.

Related questions

  • 242
How inadvisable is it to use a single vulnerability analysis tool?
  • 190
What are the benefits of continuous scanning for vulnerability management?
  • 200
When evaluating Vulnerability Management, what aspect do you think is the most important to look for?
  • 193
What is a more effective approach to cyber defense: risk-based vulnerability management or vulnerability assessment?
  • 387
What are the main KPIs that need to be implemented to have better posture in vulnerability projects?
  • 267
Which is the best vulnerability scanner tool?
  • 247
What are your recommended automated penetration testing tools?
  • 261
How do you use the MITRE ATT&CK framework for improving enterprise security?
  • 181
Can you recommend API for Tenable Connector into ServiceNow
  • 171
What penetration testing tool (or tools) do you recommend for SMB/SME?

Product Categories

Product Categories
Vulnerability Management
Penetration Testing Services
API Security

Popular Comparisons

Popular Comparisons
Tenable Vulnerability Management vs VAPT Logo
Tenable Vulnerability Management vs VAPT
Pentera vs VAPT Logo
Pentera vs VAPT
Rapid7 Penetration Testing Services vs VAPT Logo
Rapid7 Penetration Testing Services vs VAPT
Operant AI vs VAPT Logo
Operant AI vs VAPT
See all alternatives
 
VAPT Reviews Summary
Author infoRatingReview Summary
Assistant Manager, Information Security at Birlasoft IndiaLtd.4.5I govern VAPT and vulnerability management programs, overseeing scans and remediation. While managing diverse priorities is challenging, our layered security approach effectively identifies and addresses critical vulnerabilities. I have 10 years of VAPT experience and rate it 9/10.
Suneel Singh Tomar - PeerSpot reviewer
Suneel Singh Tomar
Assistant Manager, Information Security at Birlasoft IndiaLtd.
Apr 7, 2026
Governed layered vulnerability management has improved continuous scanning and remediation

What is our primary use case?



I am in a position where we govern VAPT and vulnerability management programs. My associates initiate quick scans of devices and all environments to identify vulnerabilities, which are then pushed back to the IT team and server owners for patching. I govern this vulnerability management program.

On network flow, my red teamers conduct regular assessments to identify whatever ports are available and open ports. If there is any application-related vulnerability available, an attacker may leverage it. They interact regularly in such scenarios.



What is most valuable?



We are using a couple of tools in terms of scanning and remediation. We leverage some of our in-house tools and some cloud tools, so we have a layered security architecture. Some tools work on the transport layer, some on the network layer, and some on the application layer. The team scans across those tool layers. Based on identifying gaps, they fulfill them.

Everything feels accurate to me. In today's landscape, we have so many threats and threat actors working around that may damage any available entities. The team scans and finds anything that appears immediately necessary to remediate. They follow the steps accordingly.

The team is working around the clock and doing their due diligence on their jobs.



What needs improvement?



There are so many challenges while running this vulnerability program. It is a very complex program where everyone has their own priorities related to running their business. When we pitch in and tell them that something is a priority, there may be big hurdles to remediate it. From an operational point of view, it is too difficult to manage, but it is a key component. We push them and take their confirmation and prioritization by asking every time. That is how we are operating.



For how long have I used the solution?



I have been familiar with VAPT services in my work for almost ten years.



What other advice do I have?



I did not use Redscan at all. I have used formal VAPT services in my SOC role. In terms of focusing on prioritization, zero-day vulnerabilities and high vulnerabilities are part of that. We engage them in the remediation of vulnerabilities and ask and share some justification or key aspects to remediate them. We process this current standard in terms of remediation. I provide this review with an overall rating of nine.



Which deployment model are you using for this solution?



On-premises

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?



Other