What is our primary use case?
VulnCheck serves as our primary vulnerability management platform for managing organizational vulnerabilities.
VulnCheck is exceptional because it provides not only CVE listings of exploited vulnerabilities but also known exploited vulnerabilities, referred to as KEV, enabling us to assess ransomware associations and proof-of-concept availability. This allows us to ensure that our EPSS score is reliable and receive notifications for any vulnerabilities that are globally exposed.
As a vulnerability management tool, VulnCheck scans our on-premise environment and cloud infrastructure, primarily on AWS. It provides comprehensive results of all vulnerabilities present on our endpoints, servers, hosts, or network devices. VulnCheck also provides the initial CVSS score for all vulnerabilities, which is later elevated to EPSS scores based on breaches recorded worldwide, including known exploited vulnerabilities, ransomware associations, proof-of-concept availability, and attacker activity in the environment. We conduct these local and hybrid scans throughout our organization and prioritize the vulnerabilities for remediation.
We have scheduled scans during our downtimes on Sundays and Saturdays, allowing us to receive comprehensive updates regarding vulnerabilities across our public cloud and on-premises environments. This approach ensures reliable updates and visibility on vulnerabilities, where VulnCheck's scans are quick and efficient, unlike Rapid7, which often fails to accurately scan cloud resources.
How has it helped my organization?
VulnCheck has positively impacted our organization. Initially, we had thousands of vulnerabilities on the server side. After introducing VulnCheck, we constantly monitor the vulnerabilities and the EPSS score, which updates based on real threats associated with existing vulnerabilities in the market. This has enabled us to identify, correlate, and find solutions to upgrade our systems, servers, hosts, and network devices, ensuring everything is up-to-date and secure from potential attackers. Therefore, VulnCheck plays a crucial role for us, and the reporting is clear and to the point, making the major vulnerability patching process simple and efficient.
Before using VulnCheck, our vulnerability count exceeded 4,000, but after three to four months of using it, we are down to just hundreds, which represents the major improvement we have seen on the server level. The endpoints and network devices are managed effectively because we can reboot and patch them as needed.
What is most valuable?
The best features VulnCheck offers are the feasible scans it provides and the local and hybrid scans that are very helpful for gathering vulnerability details and prioritizing the exploits or vulnerabilities happening worldwide. Additionally, the comprehensive exploit intelligence, including all the POCs and ransomware associations, stands out. The detailed descriptions of all present vulnerabilities along with emerging threats, well-documented details, and frequent updates of threat intelligence contribute significantly to reducing the remediation workload by prioritizing the vulnerabilities that matter most.
VulnCheck is an emerging next-generation AI-implemented vulnerability security tool, and its governance and security capabilities are impressive. The AI capabilities enhance the EPSS scores, making them more specific and helpful for prioritizing remediation. VulnCheck is a reliable tool that supports multi-tenancy and multi-cloud environments, with effective scans for both on-premises and cloud assets. It is essentially a one-stop solution for all vulnerability management needs.
VulnCheck outputs are very consistent, with a level of precision in outputs, and the remediation status for vulnerabilities is immediately actionable as soon as we complete remediation. The stability of daily vulnerability intelligence operations is maintained, with a consistent threat integration feed and API responses delivering smooth updates.
What needs improvement?
Regarding improvements needed for VulnCheck, there are not many areas, as the pre-built integrations with common vulnerability scanners and SIMS are seamless. Integration with
ITSM ticketing tools is also quite good. However, it would be beneficial to have more customizable dashboards and executive-level reporting, as well as improved visibility into vulnerability remediation.
I chose a rating of nine for VulnCheck because some parts, such as the implementation aspect and the patch remediation trackers, are lacking. Additionally, VulnCheck could benefit from providing simpler executable dashboards and more conceptual insights, potentially taking references from Rapid7 for the reporting and remediation project areas.
For how long have I used the solution?
I have been using VulnCheck for more than 1.5 years.
What do I think about the stability of the solution?
VulnCheck is stable, and I have not experienced any issues with uptime or reliability.
What do I think about the scalability of the solution?
VulnCheck scales exceptionally in our organization, regardless of size. As an AI-driven and cloud-hosted tool, it integrates efficiently with enterprise vulnerability management workflows and supports a large number of assets and vulnerability records without needing additional infrastructure.
How are customer service and support?
We have not engaged with VulnCheck's customer support because we already use multiple vulnerability tools. However, others have reported positive responses and helpful documentation available regarding various reports missing in the tool.
Which solution did I use previously and why did I switch?
Before utilizing VulnCheck, we used
Rapid7 InsightIDR. Switching to VulnCheck is cost-effective and reliable, using VulnCheck intelligence for risk-based remediation instead of merely prioritizing vulnerabilities by CVSS score. We continuously monitor newly published KEVs and exploit intelligence for timely risk management, highlighting significant improvements in risk-based vulnerability management and efficient remediation processes.
We previously used Rapid7 due to scanning issues, but after switching to VulnCheck, our operations have improved considerably. Pricing for VulnCheck is more favorable compared to Rapid7.
What was our ROI?
Since using VulnCheck, we see a significant return on investment as we no longer spend excessive time on scanning, which was an issue with Rapid7. VulnCheck provides a solid security vulnerability management solution that allows SOC analysts to work more efficiently without wasting time.
What's my experience with pricing, setup cost, and licensing?
I do not have visibility on the pricing, setup costs, and licensing for VulnCheck, as only higher management is involved in those decision-making processes.
Which other solutions did I evaluate?
We did not evaluate other options before selecting VulnCheck.
What other advice do I have?
I have completed everything regarding my main use case and any unique ways I use VulnCheck in my environment. I have added all the points regarding VulnCheck. If you are looking for a one-stop solution for vulnerability management that offers lower costs and superior visibility into vulnerabilities, then VulnCheck is the right choice. We do not use the operational exploit artifacts provided by VulnCheck. My overall rating for VulnCheck is nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?